------=_NextPart_000_0003_01CEF1F6.79F018B0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Does anyone know how to get external authentication to 389-ds "without" Kerberos support. I am quite happy with LDAPS and would prefer not to introduce more complexity. Thanks ------=_NextPart_000_0003_01CEF1F6.79F018B0 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable <html xmlns:v=3D"urn:schemas-microsoft-com:vml" = xmlns:o=3D"urn:schemas-microsoft-com:office:office" = xmlns:w=3D"urn:schemas-microsoft-com:office:word" = xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" = xmlns=3D"http://www.w3.org/TR/REC-html40"><head><META = HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; = charset=3Dus-ascii"><meta name=3DGenerator content=3D"Microsoft Word 15 = (filtered medium)"><style><!-- /* Font Definitions */ @font-face {font-family:"Cambria Math"; panose-1:2 4 5 3 5 4 6 3 2 4;} @font-face {font-family:Calibri; panose-1:2 15 5 2 2 2 4 3 2 4;} /* Style Definitions */ p.MsoNormal, li.MsoNormal, div.MsoNormal {margin:0in; margin-bottom:.0001pt; font-size:11.0pt; font-family:"Calibri","sans-serif";} a:link, span.MsoHyperlink {mso-style-priority:99; color:#0563C1; text-decoration:underline;} a:visited, span.MsoHyperlinkFollowed {mso-style-priority:99; color:#954F72; text-decoration:underline;} span.EmailStyle17 {mso-style-type:personal-compose; font-family:"Calibri","sans-serif"; color:windowtext;} .MsoChpDefault {mso-style-type:export-only; font-family:"Calibri","sans-serif";} @page WordSection1 {size:8.5in 11.0in; margin:1.0in 1.0in 1.0in 1.0in;} div.WordSection1 {page:WordSection1;} --></style><!--[if gte mso 9]><xml> <o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" /> </xml><![endif]--><!--[if gte mso 9]><xml> <o:shapelayout v:ext=3D"edit"> <o:idmap v:ext=3D"edit" data=3D"1" /> </o:shapelayout></xml><![endif]--></head><body lang=3DEN-US = link=3D"#0563C1" vlink=3D"#954F72"><div class=3DWordSection1><p = class=3DMsoNormal>Does anyone know how to get external authentication to = 389-ds “without” Kerberos support. I am quite happy with = LDAPS and would prefer not to introduce more = complexity.<o:p></o:p></p><p class=3DMsoNormal><o:p> </o:p></p><p = class=3DMsoNormal><o:p> </o:p></p><p = class=3DMsoNormal><o:p> </o:p></p><p = class=3DMsoNormal>Thanks<o:p></o:p></p></div></body></html> ------=_NextPart_000_0003_01CEF1F6.79F018B0--
----- Original Message -----
From: "Maurice James" <midnightsteel@msn.com> To: users@ovirt.org Sent: Friday, December 6, 2013 3:13:34 AM Subject: [Users] External authentication
Does anyone know how to get external authentication to 389-ds "without" Kerberos support. I am quite happy with LDAPS and would prefer not to introduce more complexity.
No option at the moment, Juan Hernandez (CC'ed) is working on authentication refactor that will allow developing authentication "plugins" in an easier manner (and also will break the tight coupling between authentication and directory services information retrieval)
Thanks
_______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
This is a multi-part message in MIME format. --------------070205010508040103090806 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Dn(a 06.12.2013 08:34, Yair Zaslavsky wrote / napísal(a):
----- Original Message -----
From: "Maurice James" <midnightsteel@msn.com> To: users@ovirt.org Sent: Friday, December 6, 2013 3:13:34 AM Subject: [Users] External authentication
Does anyone know how to get external authentication to 389-ds "without" Kerberos support. I am quite happy with LDAPS and would prefer not to introduce more complexity. No option at the moment, Juan Hernandez (CC'ed) is working on authentication refactor that will allow developing authentication "plugins" in an easier manner (and also will break the tight coupling between authentication and directory services information retrieval)
Just confirming our interest in ldap without kerberos. -- Ernest Beinrohr, AXON PRO DevOps, Ing <http://www.beinrohr.sk/ing.php>, RHCE <http://www.beinrohr.sk/rhce.php>, RHCVA <http://www.beinrohr.sk/rhce.php>, LPIC <http://www.beinrohr.sk/lpic.php>, VCA <http://www.beinrohr.sk/vca.php>, +421-2--6241-0360 <callto://+421-2--6241-0360>, +421-903--482-603 <callto://+421-903--482-603> icq:28153343, skype:oernii-work <callto://oernii-work>, jabber:oernii@jabber.org ------------------------------------------------------------------------ "For a successful technology, reality must take precedence over public relations, for Nature cannot be fooled." Richard Feynman --------------070205010508040103090806 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit <html> <head> <meta content="text/html; charset=ISO-8859-1" http-equiv="Content-Type"> </head> <body bgcolor="#FFFFFF" text="#000000"> <div class="moz-cite-prefix">Dňa 06.12.2013 08:34, Yair Zaslavsky wrote / napísal(a):<br> </div> <blockquote cite="mid:996213093.12637558.1386315264349.JavaMail.root@redhat.com" type="cite"> <pre wrap=""> ----- Original Message ----- </pre> <blockquote type="cite"> <pre wrap="">From: "Maurice James" <a class="moz-txt-link-rfc2396E" href="mailto:midnightsteel@msn.com"><midnightsteel@msn.com></a> To: <a class="moz-txt-link-abbreviated" href="mailto:users@ovirt.org">users@ovirt.org</a> Sent: Friday, December 6, 2013 3:13:34 AM Subject: [Users] External authentication Does anyone know how to get external authentication to 389-ds "without" Kerberos support. I am quite happy with LDAPS and would prefer not to introduce more complexity. </pre> </blockquote> <pre wrap=""> No option at the moment, Juan Hernandez (CC'ed) is working on authentication refactor that will allow developing authentication "plugins" in an easier manner (and also will break the tight coupling between authentication and directory services information retrieval) </pre> </blockquote> <br> Just confirming our interest in ldap without kerberos.<br> <div class="moz-signature">-- <br> <div id="oernii_footer" style="color: gray;"> <span style="font-family: Lucida Console, Luxi Mono, Courier, monospace; font-size: 90%;"> Ernest Beinrohr, AXON PRO<br> DevOps, <a style="text-decoration: none; color: gray;" href="http://www.beinrohr.sk/ing.php">Ing</a>, <a style="text-decoration: none; color: gray;" href="http://www.beinrohr.sk/rhce.php">RHCE</a>, <a style="text-decoration: none; color: gray;" href="http://www.beinrohr.sk/rhce.php">RHCVA</a>, <a style="text-decoration: none; color: gray;" href="http://www.beinrohr.sk/lpic.php">LPIC</a>, <a style="text-decoration: none; color: gray;" href="http://www.beinrohr.sk/vca.php">VCA</a>, <a style="text-decoration: none; color: gray;" href="callto://+421-2--6241-0360">+421-2--6241-0360</a>, <a style="text-decoration: none; color: gray;" href="callto://+421-903--482-603">+421-903--482-603</a><br> icq:28153343, <a style="text-decoration: none; color: gray;" href="callto://oernii-work">skype:oernii-work</a>, <a class="moz-txt-link-abbreviated" href="mailto:jabber:oernii@jabber.org">jabber:oernii@jabber.org</a> <br> </span> <hr style="height: 1px; width: 95%"> <span style="font-size: 70%;"> “For a successful technology, reality must take precedence over public relations, for Nature cannot be fooled.” Richard Feynman </span> </div> </div> <img src="http://nojsstats.appspot.com/UA-44497096-1/email.beinrohr.sk" moz-do-not-send="true" border="0" height="1" width="1"> </body> </html> --------------070205010508040103090806--
participants (3)
-
Ernest Beinrohr -
Maurice James -
Yair Zaslavsky