#62d – Ubuntu AD integration 21.04 – restricting who can log on
Here I show how to restrict which users can log on to the Ubuntu linux machine. .
https://www.crazy-logic.co.uk/projects/computing/ubuntu-ad-integration-21-04 for the code snippets.
the default position is sudo realm permit –all
the secure option is sudo realm deny –all
where are these things stored – /etc/sssd/sssd.conf
00:00 – intro
00:16 – in AD creating Users and Group memberships
00:48 – back into the ubuntu world
01:10 – looking at the login policy
01:26 – testing users access using SU in the default state
01:49 – restricting all accounts
02:11 – allowing a user to log on
02:40 – allowing a group to log on
03:13 – testing log on permissions
03:40 – denying a single users access (what to be aware of)
05:30 – where are setting stored
06:16 – the AD ‘Log On To…’ doesn’t seam to work
07:08 – Log on error messages
08:01 – end
——————————————- Get Social ——————————————-
Facebook: https://www.facebook.com/crazylogica
Twitter: https://twitter.com/crazy__logic
Instagram: https://www.instagram.com/crazy__logic
Github: https://github.com/crazy-logic
Webby: http://www.crazy-logic.co.uk.
PayPal: https://paypal.me/CrazyLogica
ubuntu
