Hello,
I'm trying to setup a simple Kerberos/LDAP solution instead of going down the NIS route and I haven't had much luck. I have a mix of around 30 CentOS 5 and 4 machines. I want to use 389 as my directory server. Is anyone aware of a complete howto on how to set this up using 389?
Also I was wondering if someone could clarify the relationship between kerberos and ldap? I've got a functional kerberos and ldap server running on two vm's and i've setup one server as the primary kdc and admin server and configured it to replicate the kerberos data. I've setup both machines to authenticate using kerberos and to obtain user info using ldap. How do i know that i'm actually using ldap + kerberos properly?
checkout http://freeipa.org/page/Main_Page
On Mon, Dec 21, 2009 at 5:46 PM, Scott Kaminski scott.kaminski@gmail.comwrote:
Hello,
I'm trying to setup a simple Kerberos/LDAP solution instead of going down the NIS route and I haven't had much luck. I have a mix of around 30 CentOS 5 and 4 machines. I want to use 389 as my directory server. Is anyone aware of a complete howto on how to set this up using 389?
Also I was wondering if someone could clarify the relationship between kerberos and ldap? I've got a functional kerberos and ldap server running on two vm's and i've setup one server as the primary kdc and admin server and configured it to replicate the kerberos data. I've setup both machines to authenticate using kerberos and to obtain user info using ldap. How do i know that i'm actually using ldap + kerberos properly?
-- 389 users mailing list 389-users@redhat.com https://www.redhat.com/mailman/listinfo/fedora-directory-users
From what i've seen FreeIPA has a major drawback at present, it doesn't work
on EL without hacking. Also from what I've seen it requires Fedora 10, which as I understand is moving into unsupported status already.
-Scott
On Mon, Dec 21, 2009 at 7:04 PM, Doug Chapman prjctgeek@gmail.com wrote:
checkout http://freeipa.org/page/Main_Page
On Mon, Dec 21, 2009 at 5:46 PM, Scott Kaminski scott.kaminski@gmail.comwrote:
Hello,
I'm trying to setup a simple Kerberos/LDAP solution instead of going down the NIS route and I haven't had much luck. I have a mix of around 30 CentOS 5 and 4 machines. I want to use 389 as my directory server. Is anyone aware of a complete howto on how to set this up using 389?
Also I was wondering if someone could clarify the relationship between kerberos and ldap? I've got a functional kerberos and ldap server running on two vm's and i've setup one server as the primary kdc and admin server and configured it to replicate the kerberos data. I've setup both machines to authenticate using kerberos and to obtain user info using ldap. How do i know that i'm actually using ldap + kerberos properly?
-- 389 users mailing list 389-users@redhat.com https://www.redhat.com/mailman/listinfo/fedora-directory-users
-- 389 users mailing list 389-users@redhat.com https://www.redhat.com/mailman/listinfo/fedora-directory-users
Scott Kaminski wrote:
From what i've seen FreeIPA has a major drawback at present, it
doesn't work on EL without hacking.
Check with the IPA guys about this.
Also from what I've seen it requires Fedora 10, which as I understand is moving into unsupported status already.
No, it should not require Fedora 10
-Scott
On Mon, Dec 21, 2009 at 7:04 PM, Doug Chapman <prjctgeek@gmail.com mailto:prjctgeek@gmail.com> wrote:
checkout http://freeipa.org/page/Main_Page On Mon, Dec 21, 2009 at 5:46 PM, Scott Kaminski <scott.kaminski@gmail.com <mailto:scott.kaminski@gmail.com>> wrote: Hello, I'm trying to setup a simple Kerberos/LDAP solution instead of going down the NIS route and I haven't had much luck. I have a mix of around 30 CentOS 5 and 4 machines. I want to use 389 as my directory server. Is anyone aware of a complete howto on how to set this up using 389? Also I was wondering if someone could clarify the relationship between kerberos and ldap? I've got a functional kerberos and ldap server running on two vm's and i've setup one server as the primary kdc and admin server and configured it to replicate the kerberos data. I've setup both machines to authenticate using kerberos and to obtain user info using ldap. How do i know that i'm actually using ldap + kerberos properly? -- 389 users mailing list 389-users@redhat.com <mailto:389-users@redhat.com> https://www.redhat.com/mailman/listinfo/fedora-directory-users -- 389 users mailing list 389-users@redhat.com <mailto:389-users@redhat.com> https://www.redhat.com/mailman/listinfo/fedora-directory-users
-- 389 users mailing list 389-users@redhat.com https://www.redhat.com/mailman/listinfo/fedora-directory-users
389-users@lists.fedoraproject.org