RHEL 6.X allows any user log in, it does not enforce host based access.

Solution Verified - Updated -

Issue

  • We are using OpenLdap for authentication in our environment.
  • We use the host attribute to specifically allow users access to systems. The server will allow anyone to login, even when the host is not part of the users ldap profile.
  • The people that are able to login to a rhel6 without the host in their profile, all have ldap uid's that are under 500. could this have anything to do with it?

Environment

  • Red Hat Enterprise Linux 6

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content