[Freeipa-users] Allow IPA Join and remove only
John Moyer
john.moyer at digitalreasoning.com
Fri Mar 15 03:37:15 UTC 2013
Question:
I am trying to reduce the rights to an account so that it can only add and remove machines from the IPA server. It will be used for scripts to run as this user to bind machines that are stood up adhoc to the IPA server, and then clean them up after they are ready for shutdown. However, I don't want users that are allowed this access to be able to do much else (like remove my account or any of my engineers accounts). I was wondering if anyone had any words of wisdom on how to do this before I started doing guess and check research (since a few google search have yielded nothing).
Thanks,
_____________________________________________________
John Moyer
Digital Reasoning Systems, Inc.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20130314/1e2b6e02/attachment.htm>
More information about the Freeipa-users
mailing list