Skip site navigation (1) Skip section navigation (2)

pg_hba.conf and groups

From: <brook(at)biology(dot)nmsu(dot)edu>
To: pgsql-admin(at)postgresql(dot)org
Cc: brook(at)nmsu(dot)edu
Subject: pg_hba.conf and groups
Date: 2004-05-18 20:26:32
Message-ID: 16554.29048.700551.259036@viola.nmsu.edu (view raw or flat)
Thread:
Lists: pgsql-admin
I am trying to allow individuals within a PostgreSQL (v7.4) group to
connect to the backend.  The relevant line in pg_hba.conf is (I
believe):

	host	<db>	+<group>	<IP address>/32	md5

Note that I have replaced the contents of the real fields with <...>,
but that these match across what follows.  I understand the + to allow
access to members of the group.

The contents of the system catalogs include the following:

     # select * from pg_catalog.pg_shadow;
	usename   | usesysid | usecreatedb | usesuper | usecatupd | passwd | valuntil | useconfig
     -------------+----------+-------------+----------+-----------+--------+----------+-----------
      <name>      |      105 | f           | f        | f         | md5... |          |

     # select * from pg_catalog.pg_group;
      groname | grosysid |        grolist
     ---------+----------+-----------------------
      <group> |      100 | {100,101,102,104,105}

Nevertheless, the following command fails:

     psql --host <dbhost> --dbname=<db> --username=<name>
     psql: FATAL:  no pg_hba.conf entry for host "<IP address>", user "<name>", database "<db>", SSL off

Have I set this up incorrectly?  Is there any way to query the backend
in order to identify who it thinks has access to what?

Thanks for your help.

Cheers,
Brook

Responses

pgsql-admin by date

Next:From: Steve LaneDate: 2004-05-18 23:42:10
Subject: Interpreting query debug output
Previous:From: Mitch PirtleDate: 2004-05-18 19:23:27
Subject: Re: Postgresql ssl mode

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group