Apart from ipa are there any other good tools out there for centralised user auth? thanks -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20100324/588cf392/attachment-0002.html>
On Wed, Mar 24, 2010 at 5:17 PM, Tom Brown <tom at ng23.net> wrote:> Apart from ipa are there any other good tools out there for centralised user > auth? > > thanks > > _______________________________________________LDAP? MySQL based authentication, depending on how / where you want to apply it AD ? -- Kind Regards Rudi Ahlers SoftDux Website: http://www.SoftDux.com Technical Blog: http://Blog.SoftDux.com Office: 087 805 9573 Cell: 082 554 7532
> Apart from ipa are there any other good tools out there for centralised user > auth?I am currently testing LDAP (openldap) combined with nss_ldap, configured with authconfig. It works and the nice thing is that you can have consistent authentication at OS and application level (apache, PHP, java, etc.). Combined with NFS mounted home directories, it also gives you consistent uids across the hosts. However I am still evaluating the security implications of the bind process: if the access rights are too restrictive in openldap it doesn't work. It depends if everything will run in the same LAN or if you need external access. Then you probably need to go the client certificate route + SSL/TLS, which is not trivial to deploy (but works as well). If you go this way, I can share some of my findings in more details.
http://en.wikipedia.org/wiki/Network_Information_Service it used to be called "yp" or "yellow pages". it works with samba too. jobst On Wed, Mar 24, 2010 at 03:17:04PM +0000, Tom Brown (tom at ng23.net) wrote:> Apart from ipa are there any other good tools out there for centralised user > auth? > > thanks> _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos-- When the Pope visits a country he really likes, does he french kiss the ground????????? | |0| | Jobst Schmalenbach, jobst at barrett.com.au, General Manager | | |0| Barrett Consulting Group P/L & The Meditation Room P/L |0|0|0| +61 3 9532 7677, POBox 277, Caulfield South, 3162, Australia
Reasonably Related Threads
- saslauth logging
- sendmail, port 465/587, auth and imap
- how to automount usb drive
- After reboot of web-server accessing website shows "Forbidden", restarting httpd all is fine
- Domain Logout, then domain login again, profile corrupt -> replaced by TEMP profile