I would like to put some IP restrictions on login so some users can only connect from their designated workstations. How can I achieve this?
AFAIK there is no such control mechanism in openERP, can I achieve this by moving authentication to the another entity like LDAP or OpenID ?
Still Can't Post Hyperlinks (*grrrrrrr). Please edit as per inline pseudocode.
You're machine's firewall(s) is where policies are enforced concerning the handling of network packets, including connection specific access restrictions for IP ranges. Setting rules like allowing/denying service based on the source's IP address is, in fact, the purpose of a firewall.
If you're running a Linux-based system you can configure the kernel's firewall with
[href="help.ubuntu.com/community/Iptables"]HowToUbuntu's guide on iptables.[/href] Even though it's from Ubuntu, this guide should be relevant to any Linux system.
[href="serverfault.com/questions/30026/whitelist-allowed-ips-in-out-using-iptables"]Advice specific to allowing ip's[/href]
[href="serverfault.com/questions/248384/allow-iptables-to-allow-ip-range-only-on-specifc-port"]Advice specific to allowing ip ranges for specific ports.[/href]
[href="wiki.debian.org/iptables"]Debian's guide on iptables[/href]. Also includes links for a few less technical tools.
If you are running a *nix system, you also may be able to accomplish what you're trying to do by adding entries in the 'hosts.allow' and 'hosts.deny' files respectively (if OpenERP supports it); I would still recommend using your firewall (see [href="https://bbs.archlinux.org/viewtopic.php?id=77481"]this link[/href].
Please try to give a substantial answer. If you wanted to comment on the question or answer, just use the commenting tool. Please remember that you can always revise your answers - no need to answer the same question twice. Also, please don't forget to vote - it really helps to select the best questions and answers!
About This Community
|Asked: 2/13/13, 6:21 AM|
|Seen: 3874 times|
|Last updated: 12/18/15, 4:49 AM|