Re: SSO on linux
From: Kevin Saenz (ksaenz_at_spinaweb.com.au)
Date: 07/25/04
- Previous message: ET: "Re: SSO on linux"
- In reply to: Spurge: "SSO on linux"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 25 Jul 2004 17:42:10 +1000 To: spurgeonbj@softhome.net
1. Microsoft's version of Kerberos is considered as the flawed version
of Kerberos. Also the kerberos site has a work around for kerberos to
talk to windows.
2. Single signon for linux can be accomplished using a number of methods
a) Winbind (part of samba and will authenticate with windows)
b) Samba authenticate against windows domain, allows you to share files
to windows groups.
It really depends on what your plans are I think the best thing to do is
have kerberos allow authentication though ldap or another system (like
radius)
>Hi,
>
>Could some one gimme some inputs / references about any existing howtos or
>guides on implementing 'Single Sign On' on a linux server using Kerberos,
>which is connected to a Win2K KDC.
>
>Basically, I wish to enable seamless SSO on this heterogenous network
>consisting of both W2K as well as linux (FC1) servers, where some services
>would be provided by W2K machines, while others from linux machines.
>
>I had googled quite a bit and stumbled upon Microsoft Services For Unix (SFU)
>framework, but am a bit wary of it and think there should be some other way
>to implement this.
>
>Samba that ships with FC1 (samba-3.0.0-15) seems to be kerberised out of box
>and could be setup with a few entries like 'security = ADS' and so on...
>
>I am looking for ways to kerberise Apache, VSFTPD, Postfix, MySQL and OpenLDAP
>to start with.
>
>Any help is appreciated.
>Regards.
>
>Spurgen
>
>
- Previous message: ET: "Re: SSO on linux"
- In reply to: Spurge: "SSO on linux"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
