> I currently use RADIUS (Merit 2.4.4) to authenticate dial-in users with
> Unix-PW, checking against a shadowed password database.
>
> I want to set up a secondary server, but I don't want to allow users to
> login to it. I've seen scattered references to a "FILE" authentication
> method, but I haven't been able to figure out what file it uses for
> lookup, or what its format is (or even how the passwords are encrypted,
> and thus if I can do what I want). Any help?
If you use 100% NIS, then, I guess, the following line at the end of the
file /etc/paaswd wiil help:
+:*::::/dev/null:/bin/false
Users will be authenozed but not allowed to log in.
If you use local /etc/passwd without NIS, create the record like this
for every user
<username>:SHADOW:<uid>:<gid>:<info>:/dev/null:/bin/false
second field depend on the particular system.
Regards,
K
-------------------------------------------------------------------------
Konstantin Beznosov School of Computer Science
Florida International University
Beznosov@FIU.Edu
http://www.cs.fiu.edu/~beznosov