Skip to main content
DevOps Engineer
Background Image
  1. Posts/

Restrict others from login your important Linux machine

·182 words·1 min· ·
Linux
Xianpeng Shen
Author
Xianpeng Shen
Table of Contents

If you have a critical machine like your team’s CI server that runs on Linux, so you don’t want every members in your group to access it.

Modifying this setting /etc/security/access.conf on Linux can do it.

How to setup
#

I commented out the access settings for TEAM A, and add some user accounts can access.

#+ : (SRV_WW_TEAM_A_CompAdmin) : ALL
+ : shenx, map, xiar : ALL

Be careful not to restrict everyone including yourself.

It would be best to allow several people can also access it to prevent any issues to log in with your account or you leave the organization.

Let’s test
#

Then when I try to use another account not in the list to access this machine and the connection shows closed.

$ ssh test@devciserver.organization.com
test@devciserver.organization.com's password:
Connection closed by 10.84.17.119 port 22

转载本站文章请注明作者和出处,请勿用于任何商业用途。欢迎关注公众号「DevOps攻城狮」

Related

How to create GPG keys and add to GitHub
·370 words·1 min
Git GPG
This article explains how to create GPG keys, export the public key, and add it to GitHub for signing commits.
About
How to enable, configure and disable Jenkins LDAP
·183 words·1 min
LDAP Jenkins
This article explains how to enable and configure LDAP authentication in Jenkins, including how to disable it temporarily if needed.
Resolved - The Pip Inspector tree parse failed to produce output
·455 words·1 min
Troubleshooting BlackDuck
This article explains how to resolve the “The Pip Inspector tree parse failed to produce output” error in Black Duck Detect, including the root cause and solution.
How to create GPG keys and add to GitHub How to fix "Temporary Failure in name resolution" in WSL