I like to deny certain ldap user from ssh to certain hosts. I wonder how this can be done? Is there a way to associate with the /etc/security/access.conf file with ldap?

Thanks.
 
Hai Tao