The /etc/security/access.conf file says that it will restrict access (login). However, when you try something like this: -:ALL EXCEPT jason:ALL which should deny access to all except for account jason (connection from all - console & remote) locations. This does not work. Despite the above, other users are able to log in without problem.
Does your /etc/pam.d/login file include the line: account required /lib/security/pam_access.so
That's it! By default installation /etc/pam.d/login file does not include the line: account required /lib/security/pam_access.so Where is this documented? I looked everywhere. I recommend that RH put this in by default if you are going to keep the /etc/security directory. Or, put this required information in the header of the /etc/security/access file. Thanks for the help.
This problem appears to be solved.