On Thu, Aug 14, 2014 at 10:10 AM, Christopher R. Hertel <crh@xxxxxxxxxx> wrote: > Ceph Folks: > > Hi. I am new to Ceph but I've been around in the Open Source world for a > while, working on a variety of different projects (mostly Windows Interop > stuff). I was asked to take a look at the authentication mechanisms used in > Ceph, focusing on two key areas: > > * Calamari > * Ceph client authentication to the Ceph cluster. > > I am purposefully avoiding anything to do with the internal > service-to-service authentication/authorization system (that is, Cephx) for > two reasons. The first is that Cephx is specifically designed for Ceph's > many-to-many environment, and the second is that it is sufficiently isolated > that I don't believe it needs to be modified to work with new external > authentication mechanisms. I'm a little confused here. CephX is how clients authenticate to the Ceph cluster...how are we going to add Kerberos auth or whatever without getting involved in that? Perhaps I'm misunderstanding the scope of what you're trying to do. -Greg -- To unsubscribe from this list: send the line "unsubscribe ceph-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
