Re: pass thru authentication

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

We have a PAM pass thru plugin that allows you to pass through the authentication request from FDS to PAM, and then to kerberos or whatever you want. We use this internally to allow LDAP clients that can only do simple BIND to use their Kerberos password. It's not compiled or enabled by default, but it's pretty simple to do so. 
http://cvs.fedora.redhat.com/viewcvs/ldapserver/ldap/servers/plugins/pam_passthru/?root=dirsec

Derek T. Yarnell wrote:


Does the Fedora DS or RHDS support pass thru authentication via SASL?
For example, openldap can use --enable-spasswd at compile time to allow simple binds be accepted at the LDAP level and then authenticated with SASL (saslauthd in this example) to kerberos underneath and accept the bind.
I need to have kerberos around for AFS but would like to be able to just use the LDAP directory as a way to authenticate clients that are not kerberized.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users
[Index of Archives]     [Fedora Directory Users]     [Fedora Directory Devel]     [Fedora Announce]     [Fedora Legacy Announce]     [Kernel]     [Fedora Legacy]     [Share Photos]     [Fedora Desktop]     [PAM]     [Red Hat Watch]     [Red Hat Development]     [Big List of Linux Books]     [Gimp]     [Yosemite News]

  Powered by Linux