Login just at special timeslots / working hours
Hi,
is there a dovecot feature I did not found yet, which can limit the access to the server to special timeslots like working hours?
Or is that a serverside / sssd / auth / pam / account feature?
Thanks for hints to some helpfull documentation and sugesstions.
Regards . GötzOn September 27, 2016 at 5:42 PM Götz Reinicke - IT Koordinator <goetz.reinicke@filmakademie.de> wrote:
Hi,
is there a dovecot feature I did not found yet, which can limit the access to the server to special timeslots like working hours?
Or is that a serverside / sssd / auth / pam / account feature?
Thanks for hints to some helpfull documentation and sugesstions.
Regards . Götz
At least this is doable with PAM. See http://www.linux-pam.org/Linux-PAM-html/sag-pam_time.html
Aki
On 27-09-16 17:03, Aki Tuomi wrote:
On September 27, 2016 at 5:42 PM Götz Reinicke - IT Koordinator <goetz.reinicke@filmakademie.de> wrote:
Hi,
is there a dovecot feature I did not found yet, which can limit the access to the server to special timeslots like working hours?
Or is that a serverside / sssd / auth / pam / account feature?
Thanks for hints to some helpfull documentation and sugesstions.
Regards . GötzAt least this is doable with PAM. See http://www.linux-pam.org/Linux-PAM-html/sag-pam_time.html
Aki
You could also use http://wiki.dovecot.org/PostLoginScripting . There is a nice example named 'Denying connection from some IP/User'.
Regards, Tom
Hi thanks,
Am 27.09.16 um 17:07 schrieb Tom Hendrikx:
On 27-09-16 17:03, Aki Tuomi wrote:
On September 27, 2016 at 5:42 PM Götz Reinicke - IT Koordinator <goetz.reinicke@filmakademie.de> wrote:
Hi,
is there a dovecot feature I did not found yet, which can limit the access to the server to special timeslots like working hours?
Or is that a serverside / sssd / auth / pam / account feature?
Thanks for hints to some helpfull documentation and sugesstions.
Regards . GötzAt least this is doable with PAM. See http://www.linux-pam.org/Linux-PAM-html/sag-pam_time.html
Aki
You could also use http://wiki.dovecot.org/PostLoginScripting . There is a nice example named 'Denying connection from some IP/User'.
Regards, Tom
the PostLoginScripting looks like the best option right now. Our Users aren't authenticated by pam on the dovecot server, so I'll check the script.
Regards . Götz
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Tue, 27 Sep 2016, Aki Tuomi wrote:
On September 27, 2016 at 5:42 PM Götz Reinicke - IT Koordinator <goetz.reinicke@filmakademie.de> wrote:
is there a dovecot feature I did not found yet, which can limit the access to the server to special timeslots like working hours?
Or is that a serverside / sssd / auth / pam / account feature?
Thanks for hints to some helpfull documentation and sugesstions.
At least this is doable with PAM. See http://www.linux-pam.org/Linux-PAM-html/sag-pam_time.html
Should be also doable with SQL-based passdb by adding the check to the WHERE clause - even by user.
Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iQEVAwUBV+zNiHz1H7kL/d9rAQL0Lwf8Ca4frRhb/99pLgFw90XcSnUqbT/AU2dw Nr4xb5uQaT3mkO67aME0jA+0yRW8Bz74qV+ULkC/KxzMo1Oh5f1t+4eeSseZWUBe TZik2z1ypzzAvMOdf8Z/ldkmNibAjiAdE1/WOioefTVL+LYmRwwrc4BBRQGXtLvO Ef3ZcHWPwPJ6JCji0GsYbfR8is2vNj9YJEdhjROAPokWQ6up5fpULWUAVvk5vTxd d6YGrmBpUFydgK36uxB11LefVawd0hFJN+ogFtFiP2J+gZEx+AQ0NgKA+CFwYGxL 4ltCEAN1NYbyuPTezZaZWZBBu2uUXwdXT7oxzzKhZqtpBIJXQUl/NA== =R0HA -----END PGP SIGNATURE-----
participants (4)
-
Aki Tuomi
-
Götz Reinicke - IT Koordinator
-
Steffen Kaiser
-
Tom Hendrikx