I have been watching ipsilon for a while now. I thought I might give it a try. Following the documentation on the project site I have done this:
1) Install ipsilon packages
# dnf install ipsilon ipsilon-base ipsilon-openidc ipsilon-saml2 ipsilon-authgssapi ipsilon-authpam ipsilon-authform ipsilon-infosssd
2) Make necessary keytab using Samba as it will be the Kerberos and LDAP backend. kinit administrator@DOMAIN export KRB5_KTNAME=FILE:/etc/httpd/conf/http.keytab net ads keytab CREATE net ads keytab FLUSH net ads keytab ADD HTTP unset KRB5_KTNAME
3) Install Ipsilon ipsilon-server-install --gssapi=yes --pam=yes --openidc=yes --saml2=yes --admin-user administrator@REALM
I cannot login as root, I cannot as the domain administrator or any other Samba known user. This is with gssapi or pam/form.
Is there more documentation for this anywhere? Has anyone set this up to work with Samba or MS AD?
Thank you for any help. Trever