[tac_plus] tacacs+ time restricted login
heasley
heas at shrubbery.net
Wed Sep 7 15:23:38 UTC 2016
Tue, Aug 30, 2016 at 01:53:42PM +0000, Pete .:
> I'm using TACACS+ and I would like to grant user on my devices depending on time.
>
> 1)I would like a group of users to be authenticated only from 09:00 to 18:00
>
> => I tryed using PAM pam_time.so without success
PAM configuration can be difficult to do correctly. I suggest googling
for configuration examples.
> 2) I would like to change the group membership of some users depending on time ...
>
> Is it possible ?
Change the config however you wish and kill -1 the daemon. you might also
be able to use an authorization script that returns failures outside when
a user is not allowed access.
More information about the tac_plus
mailing list