Re: closer to solving (common) authentication issues

help-cfengine

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: closer to solving (common) authentication issues

From:	paul beard
Subject:	Re: closer to solving (common) authentication issues
Date:	Thu, 9 Feb 2006 09:42:12 -0800


On Feb 9, 2006, at 2:33 AM, Juri Rischel Jensen wrote:

As far as I remember from your previous posts, you didn't show anycfservd.conf files - do you have one...?
You need one, at least on the server, stating which clients ordomains has access to what.

This is the one from my policyhost: I can see some refinements I needto make (I need to add in the classes [linux, freebsd] so theexecutables can be found. It's almost identical to the one on theclient I am working on.


control:
  domain = ( waypath.com )
  cfrunCommand = ( "/usr/local/sbin/cfagent" )
  TrustKeysFrom = ( 192.168.10.0/24 )
  AllowUsers    = (root )
  DenyBadClocks = ( no )
any::

  IfElapsed = ( 1 )
  ExpireAfter = ( 15 )
  MaxConnections = ( 50 )
  MultipleConnections = ( true )


admit:
   # Grant access to all hosts in waypath.com.
   /var/cfengine        *.waypath.com
   /exports/files       *.waypath.com
   /usr/local/sbin/cfagent      *.waypath.com


--
Paul Beard
contact info: www.paulbeard.org/paulbeard.vcf

Are you trying to win an argument or solve a problem?

[Prev in Thread]

Current Thread

[Next in Thread]

closer to solving (common) authentication issues, paul beard, 2006/02/09
- Re: closer to solving (common) authentication issues, Juri Rischel Jensen, 2006/02/09
  - Re: closer to solving (common) authentication issues, paul beard <=

Prev by Date: RE: cfservd under Solaris 10 SMF
Next by Date: "stealing" config files?
Previous by thread: Re: closer to solving (common) authentication issues
Next by thread: exim config and edit files
Index(es):
- Date
- Thread