[Users] call for suggests on oVirt authentication back-end (directory service, etc.)
Jason Brooks
jbrooks at redhat.com
Wed Oct 10 16:59:49 UTC 2012
On 10/09/2012 06:56 AM, Alan Johnson wrote:
> Thanks to Tim Hildred, I found out about the need to have a directory
> server. Before I embark on this path, I thought I could ping the
> community to get a since for what is common, easy, and/or available to
> best suit our wants.
>
> First, what's the easiest one to setup and use? Something with a simple
> GUI would be desirable: a webmin module perhaps?
>
> Most ideal would be something that is in line with our desire to move
> towards single sign on, ultimately authenticating against Google Apps.
> Does Google provide something supported? Is there something that can
> proxy google apps auth to an oVirt supported protocol?
I did some testing with FreeIPA:
http://freeipa.org/page/InstallAndDeploy. It was easy to set up, works
with oVirt, and has a web gui.
Jason
>
> Alternately, we have an LDAP server, but it does NOT store passwords,
> and as such, does not provide authentication for anything. Will oVirt
> store passwords for users created from such an LDAP service, or does
> LDAP need to be the authority as well?
>
> Finally, we also have NIS setup (thought we hope to get away from that
> soon), so some means of authenticating through the systems local PAM
> system would be the next most convenient.
>
> These are just thoughts and I am completely open to suggestions. Thanks
> in advance for any input! =)
>
> _______________
> Alan Johnson
> alan at datdec.com <mailto:alan at datdec.com>
>
>
> _______________________________________________
> Users mailing list
> Users at ovirt.org
> http://lists.ovirt.org/mailman/listinfo/users
>
--
@jasonbrooks
More information about the Users
mailing list