I'm running FC3 and I'd like to restrict local login to only a certain set of users. Currently, my box is at runlevel 5 so, I do have X running but I may set it to 3 in the future. Also, my PAM will be using /etc/passwd and LDAP *if* I can get it set up.

I was looking for something similar to SSH's /etc/ssh/sshd_config wherein you can specify who can login. For example...
PermitRootLogin no
AllowUsers bob tom jane

I was poking around and noticed /etc/security/access.conf but, I'm not sure if this is the right place to restrict access.

Thoughts?

Cheers

I haven't tried this (yet) ;)

But you might try changing the uid and the gid for the /dev/tty[1-6] files and the /dev/console file.....

Also to prevent ANYBODY from using the console, you can just comment out the "getty" lines in your /etc/inittab file....no more console logins!!!! (at least if you boot into runlevel 3)