Ah it seems it can be done in the newer versions of openssh 6.2p2 with the command mentioned on the blog (https://marc.waeckerlin.org/computer/blog/ssh_and_ldap ) , the fix has now been ported to ubuntu also, allowing the AuthorizedKeysCommand to be used without any need for patching. Shame I'm not using openssh 6.2 everywhere :), but well soon see to that.
On 10 January 2014 12:52, Petr Spacek <pspacek@xxxxxxxxxx> wrote:
There is ongoing effort to port it to Debian/Ubuntu. You are more than welcome to contact freeipa-devel list [1] and help us with that.On 10.1.2014 12:06, Conor O'Callaghan wrote:
As an aside, if you're interested in doing Kerberos and LDAP together with
a 389-ds backend you may want to look at the FreeIPA project which handles
a lot of the integration for you. It also supports storing SSH keys.
rob
Freeipa looks very very nice indeed, but it doesn't look like it's built
and available for ubuntu :(
Have a nice day!
[1] https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Petr^2 Spacek
--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users
-- 389 users mailing list 389-users@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-users
