user access limit

I`m a new user of the linux SuSE prof 7.3 and the computer i use serves as an authentication server.I have added new users and the server can authenticate the users well.My problem is that i have to limit the users by the number of hours they are suppose to connect to my server to obtain services,but now when i use a command like chage,it gives me an opportunity to limit the user by the number of MONTHS and DAYS .Infact my interest is to limit the users by the number of HOURS ,so i dont know this is posible and how.
Does it means linux SuSE is not good at managing users?
Do i also need another server or operating system for controlling my users?
   I will be very grateful for your answers
chickcaneteAsked:
Who is Participating?
 
Karl Heinz KremerCommented:
SuSE is not better or worse than other distributions in controlling users. It's all a matter of which packages you have installed. SuSE 7.3 is pretty old, and I don't remember what exactly it did provide. If you want to limit the times a user can log in (e.g. 10am to 2pm on weekdays, and 8am to 4pm on weekends), you can do this with PAM. See the configuration file /etc/security/time.conf for examples. If you don't have this file, you may need to install the PAM package.

If however you want to limit the user to just e.g. two hours a day in total, regardless of how often they log in, I doubt that this is possible with standard SuSE tools.  

You may be able to do this with a custom program that you use as the login shell for the users that have this restriction: It would first open the wtpm file and add all the login times for the current day and compare them with a set limit. If the limit is not yet exceeded, it would then spawn a shell and let the user in, if the time is already exceeded, it would not spawn the shell, and therefore log the user out again. The only problem is now to log the user out if the time limit is exceeded during the login session. To do that, I would write a data record to a file, which is then parsed at certain times to see if a user needs to be logged out. I did search the internet, but did not find any application that already does this.

BTW: You should consider to update to a more recent version of SuSE. They did just discontinue support for 7.3, which means that you will not get any more security updates for this release.
0
 
devilonnetCommented:
try LDAP and IPTABLES...we r doing it that way...it works just fine...u can define it on days of week, and the hours the user can log in...
0
 
Karl Heinz KremerCommented:
You can also use the ideld daemon (http://www.darkwing.com/idled/) to force a logout after a certain login time. This is pretty old software (I think the last update happend in'99). You need to compile it yourself. Instructions about how to download and compile the software are here:

http://www.experts-exchange.com/Operating_Systems/Linux/Linux_Administration/Q_20837811.html

(The instructions are near the end of the thread).
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.