6.2.6.6 EXCLUDEALL

EXCLUDEALL [user|host|group|host_group|internet] <who>

The EXCLUDEALL line prevents usage of all capabilities defined by all privileges by a particular user, host, group, host_group, IP address, or project. If you specify group or host_group, it must be defined by a 6.2.6.7 GROUP or 6.2.6.8 HOST_GROUP line in the RLM options file.

Portions of the INTERNET address can be specified with a '*' (wildcard) which matches any address, e.g., 172.16.7.*

Example exluding the user “mike” from all privileges:

EXCLUDEALL user mike

Note: To use PROJECT the user needs to specify the project name in the environment variable RLM_PROJECT prior to starting RLM. To use INTERNET specify the internal (vs. external) IP address of the client machine.

For a list of the privileges available, see 6.2.6.1 RLM privileges controlled by the RLM options file above.