[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: closer to solving (common) authentication issues
|
From: |
Juri Rischel Jensen |
|
Subject: |
Re: closer to solving (common) authentication issues |
|
Date: |
Thu, 9 Feb 2006 11:33:10 +0100 |
Hi Paul
On Feb 9, 2006, at 8:08, paul beard wrote:
cfengine:ols5: Can't stat /exports/files/etc/hosts in copy
As far as I remember from your previous posts, you didn't show any
cfservd.conf files - do you have one...?
You need one, at least on the server, stating which clients or
domains has access to what.
F.ex.:
control:
domain = ( example.com )
AllowUsers = ( root )
schedule = ( Min00_05 Min30_35)
IfElapsed = ( 5 )
AllowConnectionsFrom = ( 192.168.1-100
*.example.com )
AllowMultipleConnectionsFrom = ( 192.168.1-100
*.example.com )
MaxConnections = ( 10 )
#TrustKeysFrom = ( 192.168.1-100
*.example.com )
cfrunCommand = ( "/usr/sbin/cfagent" )
HostnameKeys = ( on )
#########################################################
admit:
/srv/cfengine 192.168.1-100 *.example.com
/etc 192.168.1-100 *.example.com
/usr/sbin/cfagent 192.168.1-100 *.example.com
It's the admit section that's important. Here you define which
resources you allow access to. In your case, the first admit line
should read:
/exports/files/ *.waypath.com
The last admit line is for cfrun access. If you want to use cfrun,
you have to run cfservd on all your machines, and have a cfservd.conf
for all machines too.
Hope this was a help to you...
--
Med venlig hilsen/Best regards
Juri Rischel Jensen
Fab:IT ApS
Vesterbrogade 50
DK-1620 København
Tlf: 70 202 407 / Fax: 33 313 640
www.fab-it.dk / juri@fab-it.dk