PAM
From Nuclear Physics Group Documentation Pages
"Pluggable Authentication Module." Programs that are aware of PAM use the modules defined in the PAM configuration files for making authentication/access decisions.
Remote Access Control
/etc/pam.d/sshd contains account required pam_access.so
.
/etc/security/access.conf contains the rules for who can log into the machine.
Chart of what groups can log onto what machines:
name | restricted by access.conf | no group | npg | farm | domain_admins | splunker |
---|---|---|---|---|---|---|
einstein | no | yes | yes | yes | yes | |
lentil | no | yes | yes | yes | yes | |
gourd | yes | no | yes | no | yes | |
roentgen | yes | no | yes | no | yes | |
taro | yes | no | no | yes | yes | |
pepper | yes | no | no | yes | yes | |
jalapeno | yes | no | no | no | yes | yes |
tomato | yes | no | yes | no | yes | |
okra | yes | no | yes | no | yes |