OpenSSH has made some leaps and bounds in the past year with respect to per-user rule policies. The documentation is quite comprehensive, have you been through that yet? I hate to be one of those RTFM guys, but with respect to OpenBSD, it is authoritative, bar none.