Announcement

Collapse
No announcement yet.

Restricting Changes in a Multiple User Environment

Collapse
This topic is closed.
X
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

    [CONFIGURATION] Restricting Changes in a Multiple User Environment

    I have a number of laptops in a multi user environment. Each laptop has a couple of logins; one for staff and one for students. For the student login I need to ensure that all system and desktop changes are locked out in all circumstances and that they don't have access to the terminal. Students need to be able to create files and folders as normal but these are purged on logout. It is easy enough to script this purge but it would also be useful to be able to restore the default folder structure.

    I know enough to undertake basic system setup and configuration and I am quite pleased with how the system looks and works but this sort of setup is beyond my limited ability and experience at this stage so I would appreciate a steer. Can anyone walk me through setting this up in 20.04 LTS?

    #2
    It is not overly well documented, but there are methods to restrict changes to Plasma desktop settings
    https://develop.kde.org/deploy/kiosk/introduction/
    This is entirely manually set up, but seems straightforward, if a bit tedious at the beginning.

    As to the rest, being Linux, this is all possible. Essentially, you need a 'guest' account that does not save anything at logout. Kubuntu/KDE's login manmagert does not support this currently afaik, but that can be swappped out for lightdm, which does.But this login manager does not have a kubuntu/kde style theme any longer, though I am sure that there are useful ones out there
    https://linuxconfig.org/how-to-enabl...al-fossa-linux

    I did find this for SDDM, no idea if it is as simple as this

    https://gist.github.com/michel-zimme...2a3e631f6c9392


    As for restricting access to konsole or terminals (or any application or executable), I am sure that is possible via various methods,. Don't forget that there will be other terminals , such as the basic xterm, as well as virtual terminals via tty (ctrl-alt-Fx keys)
    group permissions are likely simplest to set up. An example:
    https://askubuntu.com/questions/8149...er-usersThough Apparmor may be a better choice
    https://www.linux.org/threads/securi...pparmor.26523/

    Comment

    Working...
    X