limit access to a RHEL 7 server with an AD group using centrify express
09-20-2018 02:03 PM
Please what is the easiest way to use centrify express to control access with limited AD groups to access a rhel 7 server?
09-21-2018 05:06 PM
What you could do is use the Centrify Access Manager console. You can specify an AD group by going to 'Role Assignments > Add Role ' > Choose the AD group.
However, you would still need to add each user invidually using 'Unix Data > Users > Add user to zone'
10-01-2018 08:03 AM
Are you using Centrify Express?
If you are, note that Acces control is a feature of the commercial product. The cross-platform feature is called DirectAuthorize. https://community.centrify.com/t5/Centrify-Infrastructure-Services/FAQ-What-is-DirectAuthorize-dzdo-...
With Express can leverage SSH directives or PAM modifications to achieve it.
Some history on this (e.g. access controls features being exclusive to commercial versions): https://community.centrify.com/t5/Centrify-Express/access-controls/td-p/18397