118599 – autconfig should have a way to choose auth for sets of UIDs

Bug 118599 - autconfig should have a way to choose auth for sets of UIDs

Summary: autconfig should have a way to choose auth for sets of UIDs

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	authconfig
Sub Component:
Version:	1
Hardware:	All
OS:	Linux
Priority:	low
Severity:	medium
Target Milestone:	---
Assignee:	Tomas Mraz
QA Contact:	Brian Brock
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2004-03-18 01:53 UTC by Maxwell Kanat-Alexander
Modified:	2007-11-30 22:10 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2005-09-08 13:52:15 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Maxwell Kanat-Alexander 2004-03-18 01:53:10 UTC

It would be nice to have a "use Unix accounts if all else fails"
option for authconfig, in the Authentication section. Or some way of
specifying "Only use method X for UIDs greater than Y" for each
authentication method.

For example, I wanted to set up a system here where UIDs >= 500 were
authenticated against Active Directory (using Kerberos), but UIDs <
500 were authenticated with pam_unix. 

After manually editing /etc/krb5.conf to not auth users with UIDs <
500, I had to edit /etc/pam.d/system-auth manually to change pam_krb5
to [default=ignore ...]

Comment 1 Tomas Mraz 2005-09-08 13:52:15 UTC

This is too complicated request for the authconfig UI which should be as simple
as possible. Sysadmin with such request should be experienced enough to edit the
configuration files by hand.

Note You need to log in before you can comment on or make changes to this bug.