Disable GUI/SSH Login for specific users

I have two groups,
sshonly
guionly
As the name suggestes i want only ssh login permitted to the first group of users and only gui login permitted to the next group of users.
Is it possible?

Ok Solved it. This is what i did.
Create a user with "standard" previlage not "sharing only"
Because "sharing only" user has no shell or no home directory. You need both of that for ssh login.
To Enable sshSelect the user/group in remote access option system preferences -> sharing
To Disable sshDont select the user
To Enable GUI LoginDefault enabled, so dont have to do anything again
To Disable GUI Login
There are two things you can do (http://hints.macworld.com/article.php?story=20080127172157404)
Disable all the user with userid less than 500 to not have a gui login, this is the command for that
$ sudo defaults write /Library/Preferences/com.apple.loginwindow Hide500Users -bool TRUE
Or else add specific users to the hiddenuser list, i prefer this one, because we don't have to change the user id just for this.
$ sudo defaults write /Library/Preferences/com.apple.loginwindow HiddenUsersList -array $USERNAME
And finally remove the other option from the login window
$ sudo defaults write /Library/Preferences/com.apple.loginwindow SHOWOTHERUSERS_MANAGED -bool FALSE

Similar Messages

  • Disable release flag in service entry sheet for specific users

    How can we disable the release flag for specific user/s in Service Entry Sheet(ML81N)?
    Can any one suggest?
    arjman

    Hi dear,
                In the ML81N T code, there is an object M_EINK_FRG Release code and code grp.
    leave it empty. and assign the Role to the user with whoom you dont want to release the SES.
    In this process the system will show you the green flag and also allow you to release the SES but when you will save it the system will give an Error Message about the Authorization.
    this will not allow the user to release the SES.
    Hope it Helps,
    Regards,
    Yawar Khan
    Edited by: 1234_abcd on Jan 21, 2011 12:40 PM

  • Disable sound for specific users

    How do I disable sound for specific users?

    Theoretically if the user's not in the audio group, he shouldn't have access to sound devices.
    $ ll /dev/snd/
    total 0
    drwxr-xr-x 2 root root 80 Oct 2 19:30 by-path
    crw-rw----+ 1 root audio 116, 2 Oct 2 19:30 controlC0
    crw-rw----+ 1 root audio 116, 8 Oct 2 19:30 controlC1
    crw-rw----+ 1 root audio 116, 7 Oct 2 19:30 hwC0D0
    crw-rw----+ 1 root audio 116, 13 Oct 2 19:30 hwC1D0
    crw-rw----+ 1 root audio 116, 14 Oct 2 19:30 hwC1D1
    crw-rw----+ 1 root audio 116, 15 Oct 2 19:30 hwC1D2
    crw-rw----+ 1 root audio 116, 16 Oct 2 19:30 hwC1D3
    crw-rw----+ 1 root audio 116, 4 Oct 4 09:12 pcmC0D0c
    crw-rw----+ 1 root audio 116, 3 Oct 4 10:13 pcmC0D0p
    crw-rw----+ 1 root audio 116, 5 Oct 2 19:30 pcmC0D1p
    crw-rw----+ 1 root audio 116, 6 Oct 2 19:30 pcmC0D2c
    crw-rw----+ 1 root audio 116, 9 Oct 2 19:30 pcmC1D3p
    crw-rw----+ 1 root audio 116, 10 Oct 2 19:30 pcmC1D7p
    crw-rw----+ 1 root audio 116, 11 Oct 2 19:30 pcmC1D8p
    crw-rw----+ 1 root audio 116, 12 Oct 2 19:30 pcmC1D9p
    crw-rw----+ 1 root audio 116, 1 Oct 2 19:30 seq
    crw-rw----+ 1 root audio 116, 33 Oct 2 19:30 timer

  • Lock Transaction for Specifi Users

    Dear All,
    Good Day,
    We are planning to lock the transaction for specific user who doesnot use the transaction more than 3 months.
    Please suggest me what will be the procedure.
    Thanks in advance,.
    Best Regards,
    Suresh Kumar K

    Hi Suresh,
    Your idea of restricting users in using t-code is good practice. But as of now there is nothing like you can restrict user by locking t-code only for tht user/users alone.
    1. You can lock the T-code but this will affect entire system.
    2, You can remove t-code from the role, but this affect other user and if you wanted to make another role for only this user it will start getting to be tedious job, since you have to delete some roles create some other and alos user may use some t-code once every quarter for some of quarter end results and you have to seperate these t-code from others which was not possible, this will not workout so easily.
    The only option could be probably if user doesnot login for more than 3months just lock him.
    Regards...

  • How to restrict login for multiple users having same Role

    Our Web Application is deployed on Tomcat 5.5
    The requirement is ?
    There are roles in application like "operator", "admin"?
    There are multiple users created for each of the above role.
    When one user of "operator" role is logged in, then
    It should not allow to login for another user of "operator" role.
    Also, if user did not log out & application gets close, then
    It should not allow to login for another user of "operator" role.
    Also, it should not allow to login for multiple requests of same user
    (using another browser instance...)
    Is it possible using session object?
    But, using session object, it will create separate objects for different users,
    So here I will not be able to restrict session object creation rolewise.
    Also, how to retrieve these multiple session objects created for different users on server?
    If anyone is having the solution please reply as soon as possible,
    Thank you.

    To tell you the truth, this is a stupid requirement. It must be an extremely fragile application.
    In any case, you will have to write your stuff for that. Probably a filter that on login, logout, and session expiration checks, makes, or removes entries in a DB (using a synchronized resource to prevent race conditions) or possibly even simply in an application context object.

  • How to apply Software Restriction policy for specific user in local group policy object ?

    I am working on implementing user based software restriction policy programmatically for local group policy object.
    If i create a policy through Domain Controller,i do have option for software restriction policy in user configuration but in local group policy editor i don't have option for that.
    When i look for the changes made by policy applied from Domain Controller in registry, they modifies registry values for specific users on path HKEY_USERS\(SID of User)\Softwares\Policies\Microsoft\Windows\Safer\Codeidentifiers
    They also have registry.pol stored in SYSvol folder in Domain Controller. When i make the same changes in registry to block any other application, application is getting blocked.
    I achieved what i wanted but is it right to modify registry values ?  
    PS:- I am using Igrouppolicyobject API

    I achieved what I wanted but is it right to modify registry values ?
    You also can modify a registry programmatically based policy. Check this:
    http://blogs.msdn.com/b/dsadsi/archive/2009/07/23/working-with-group-policy-objects-programmatically-simple-c-example-illustrating-how-to-modify-a-registry-based-policy.aspx
    We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
    Click
    HERE to participate the survey.

  • Find Label Missing in Advanced Search For Specific User

    for specifi users FIND label is showing but some of the users in advanced search this find label is missing . top of the applictaion it is there
    plz let me know why this is problem is coming
    find button should visible to all users......................
    give me repaly ASAP

    Hi
    CRM 5.0
    its not related to application,modification ..but my problem is the find label is working for some of the users.but some of the users find label is not there,
    plz let me know where i have to make corrections for this problem........

  • How do I turn off password at login for all users?

    I want to keep separate users but I don't want a password requirement to login for any user. How do I turn off the password requirement at login altogether?

    Its not only a matter of other people, but also any software-based threats or even mishaps. For instance, there are some Terminal commands that can be executed by a program, script, or even another user that require authentication. If you do not have a password set then these can be executed directly with administrative privileges. Some of these can be disastrous to the system if used incorrectly.
    I agree for the most part if your system is fairly isolated then this is not much of an issue, but there is the rare possibility of malware or simple user mistakes that a good password helps guard against.

  • Data Level security for specific Users

    Hi,
    Can you please suggest some ideas on by-passing the Data Level security for specific users or specific group?
    Currently, we have data level security defined on a group permissions for one group and for people belonging to another group, the security should not apply and they should see entire data.
    But, key thing here is that, the user belongs to both the groups.
    Any ideas helps.
    Thanks,
    Chandu.

    So you are saying you want a user to belong to a group with data-level security filters, but you don't want the filters to apply to that user?
    Why are they in the group then?
    Are the data filter defined with variables or are the hard-coded?
    If variables, you may be able to put logic in initialization block to set the variable appropriately for specific users.
    I'd rethink the security model - when I define data level security filters, I tend to force users to only belong to a single group/role.

  • Hide settings icon for specific users

    Hi
    In share point 2013 we have settings icon at top right corner.
    Is there any way, I can hide this icon for specific users.
    Please help in this regard.
    Thanks,
    Anil

    Hi Kumar,
    Its possible.
    1.Open the .master page in some textpad/SP Designer.
    2.Look for below tag. This is the holder for SITE ACTIONS
    <SharePoint:SiteActions
    3.Look for the Menu item templates. These will clearly give you an idea on wht they will hold.
    <SharePoint:MenuItemTemplate
    4.There will be 2 attributes for each menu item called
    PermissionsString & PermissionMode.
    In the permission string give the required permission to the user to be shown or hide.
    http://sharepoint.stackexchange.com/questions/66628/edit-settings-gear-icon
    Please remember to click 'Mark as Answer' on the answer if it helps you

  • Hiding P0002-PERID for specific users

    Does anyone know how to hide the social security number field field for specific users?  We are trying to hide it both at the header level and detail level of IT 0002.
    Thanks

    Jeff,
    Follow this link http://www.*********************/hr_security/hr_security.htm, otherwise request your SAP Security person/team.
    Thanks,
    Kiran.

  • Log transactions for specific users

    Hi, How can I get the log for specific users, such as SAP_ALL : I want to know which transactions they have accessed in the last month for example or if they have accessed to a specific transaction.
    Thks !

    Hi,
    try tranction ST03N (Workload Monitor)and select "User Profile" in the Analysis View. There, you can see a list of Users. Double click on any of them to see the accessed transactions.
    Kind regards
    Dirk

  • How to get Reports for specific User that how many password has been reset using FIM SSPR in FIM 2010 R2 SSPR

    Hi,
    How to get Reports for specific User that how many password has been reset using FIM SSPR in FIM 2010 R2 SSPR
    Regards
    Anil Kumar

    Hello there Anil,
    A simple way to quickly get a overview is to look at the request history within the portal environment (note that this will expire in a few day based on your environment, after that you would need to FIM Reporting Module - but you could increase this to
    maybe 60 days to so, watch the DB size).
    To do this you could create some custom search scopes of do some custom queries. The creator of the SSPR activities always has the same GUID so you can use that so search.
    In your search scope you can use the following XPath to play with.
    - All Password Reset Requests - /Request[Creator='b0b36673-d43b-4cfa-a7a2-aff14fd90522' and Operation='Put']
    - All Completed Password Reset Requests - /Request[Creator='b0b36673-d43b-4cfa-a7a2-aff14fd90522' and RequestStatus=‘Completed']
    You can play with the "RequestStatus".
    Hope this helps.
    Almero Steyn (http://www.puttyq.com) [If a post helps to resolve your issue, please click the "Mark as Answer" of that post or "Helpful" button of that post. By marking a post as Answered or Helpful, you help others find the answer
    faster.]

  • MIGO - Challan NO :  Feild mandatory for specific user

    Hi Experts,
    I want to make the Callan No in the MIGO  as mandatory for specific users.Can any body tell me how to do this ?
    Regards,
    Lakshmi.

    Dear
    There is two possibility.
    1 - SPRO->Material Management->IM and PI-> Settings for enjoy transactions ->settings for goods Movements (MIGO)->Field selection for MIGO.Then against Field name choose the radio button Req.
    This will impact for all the user.
    2 - If you would like to restrict for particuar user than use of SHD0.
    Create screen/transaction variant of MIGO through SHd0. In this put your req. field compulsory.Revoke the authorization of MIGO from particular user and assing the new transaction code done through SDH0 to this user.
    Due to this you can control req. entry in MIGO for particular user.
    Regards
    Rajan

  • Need SP_TN for specific user must use specific document series and warehouse in Marketing Documents

    Hi experts,
       I need SP_TN for specific user must use specific document series and warehouses in Marketing Documents SAP B1.
       Kindly give solution ASAP.
    Thanks in advance

    Hi Nagarajan,
       It show (1) Not allowed to add PO.
       I used the following SP
    IF  @object_type = '22' AND @transaction_type IN (N'A',N'U')
    BEGIN
    IF Exists
    (SELECT T0.DocEntry FROM POR1 T0 INNER JOIN OPOR T1 ON T0.DocEntry = T1.DocEntry
    WHERE  T1.DocType = 'I' AND T1.Series = '142' OR T1.Series = '145' AND T0.[WhsCode] = 'STEX-01'
    or T0.[WhsCode] = 'STNEX-01' and T1.[UserSign] ='1'
    and T1.docentry = @list_of_cols_val_tab_del)
    BEGIN
    SELECT @error = 1
    SELECT @error_message = 'Not allowed to add PO'
    END
    END
    warm regards,
    Guhan

Maybe you are looking for

  • Regarding Logical systems

    Hi all,           when i was trying to create new logical systems in trnsaction code BD54. It is said that you are not authorization to create logical systems. To get authorize what should i required? venkat

  • X  axis labels vanish in P4

    Hi, I am using 8.1.7.0.0 Oracle Database which is on Sun solaris server. I have installed 9ias(1.0.2.2.2a) server on Win2000 server P4. All workbooks that i create in Discoverer plus are available in discoverer viewer but the labels of x axis of grap

  • Podcasts Not Showing in Playlists

    Hi All, I recently upgraded to iOS 6 on my iPhone 3GS and iTunes 10.7.0.21.  I have my podcasts divided into two playlists (one for work and another for when I'm in the car) that I can easily select and shuffle.  Now after these updates, those playli

  • Youtube videos no longer work on facebook

    I can no longer view youtube videos embedded in facebook threads. please see screenshot http://ibanez0r.org/broken.jpg

  • How do i switch firefox to regular connection

    I would like to know how to switch to regular connection using my firefox what i have no is a real pain..Plus when i harvest crops in farmsville on facebook you stop me an i have second bunch of crops growing at 2 different speeds that sucks too