In /etc/security/access.conf with CentOS (kernel 2.6.9-42.0.10.ELsmp) I have the following:
-:ALL EXCEPT root:LOCAL
Which I thought would ALLOW root to login at the console, but it's not. I tried to login as another user on the console, also didn't allow.
Then I saw on the Internet some people using "CONSOLE" instead of "LOCAL" but I don't understand the difference.
I want root and others to be able to SSH and I want root to be able to login at the console.
Then I also saw + instead of - and now I'm just confused. I need it to work. I wouldn't even mind if everybody could logon at the console, although that's less desirable.