On Sun, Nov 25, 2007 at 09:40:34AM +0200, Amir Saad wrote:
> I use MIT Kerberos 5 & OpenLDAP to manage my network users. I can login
> successfully to all machines using my Kerberos principal. I need to create a
> limited account that is able to access only a few hosts/services not all
> machines/services. How can I do this?
> Thank you

Fwiw, needing a similar capability I ended up following the advice given in
https://lists.ubuntu.com/archives/ub...st/120773.html (on
CentOS, in my case).

Jos Backus
jos at catnook.com