[GLLUG] CUPS policy settings

Richard Houser rick at divinesymphony.net
Mon May 7 22:48:16 EDT 2007


Does http://printing.kde.org/overview/ help you at all?

Michael George wrote:
> Well, I'm thinking about an LTSP cluster (like mille-xterm) and all the 
> printers which would be available to the cluster.  We have very 
> fine-grained control over people's access to the printers, but I'd 
> rather people only have the printers that they have access to appear in 
> their list.  So even if we have 300 printers, I only need to see the 3 
> that are in our suite...
> 
> Richard Houser wrote:
>> I'm afraid I can't give you the answer that you want, but are you sure 
>> that you really want to restrict users from printing to remote printers?
>> In most cases, I'd just assume it would be preferable to just remove 
>> excess printers from the default printer lists or force the 
>> appropriate defaults at login?
>>
>> I'm planning on migrating my CUPS setup into a one spanning two 
>> physically separate networks connected by a low bandwidth IPSEC link 
>> over the Internet.  In my case, I want to allow users to print across 
>> that link, but make it difficult to accidentally do so (as moving a 
>> 20MB printout over a 5-10KBps link will hurt a bit).
>>
>> Anyhow, best of luck to you in this setup.  I wouldn't mind hearing 
>> about the solution you settle on, either.
>>
>> Michael George wrote:
>>> I'm curious if any of you have done complex setup of CUPS, like for 
>>> an enterprise...  What we did for CRMC was interesting and cool and 
>>> all that,but I need something a bit different.
>>>
>>> Currently, we are using Netware to manage printer policies for the 
>>> accounts in our building so that people only see listed in their apps 
>>> the printers to which they are allowed to print.
>>>
>>> I know CUPS has the Policy section in their config files that can be 
>>> configured to limit access to job submission to printers with pretty 
>>> fine-grained control.  Only works for local unix users, but I can 
>>> kinda live with that for now.
>>>
>>> My question is, has anyone here used these policies successfully?  If 
>>> so, when someone tries to print from an app like OOo, does their list 
>>> of possible printers include only those to which they can submit a 
>>> job, or does it include all printers and they will get an error if 
>>> they submit to a forbidden one?
>>>
> 



More information about the linux-user mailing list