[ovirt-users] adding machine to openldap + kerberos with a keytab

[William Law]

Cool - I'll start looking at that now. 

Regards,

Will

On Sep 10, 2014, at 4:28 PM, Yair Zaslavsky <yzaslavs at redhat.com> wrote:

> 
> 
> ----- Original Message -----
>> From: "William Law" <wlaw at stanford.edu>
>> To: "Yair Zaslavsky" <yzaslavs at redhat.com>
>> Cc: "users" <users at ovirt.org>
>> Sent: Thursday, September 11, 2014 2:11:08 AM
>> Subject: Re: [ovirt-users] adding machine to openldap + kerberos with a keytab
>> 
>> OK, thanks.  Is there a way to perform it without manage-domains currently or
>> in 3.5?
> 
> in 3.5  - you can add new authn (authentication) and authz (authorization) providers by using configuration files.
> 
>> 
>> Regards,
>> 
>> Will
>> 
>> On Sep 10, 2014, at 4:07 PM, Yair Zaslavsky <yzaslavs at redhat.com> wrote:
>> 
>>> 
>>> 
>>> ----- Original Message -----
>>>> From: "William Law" <wlaw at stanford.edu>
>>>> To: "users" <users at ovirt.org>
>>>> Sent: Thursday, September 11, 2014 1:53:04 AM
>>>> Subject: [ovirt-users] adding machine to openldap + kerberos with a keytab
>>>> 
>>>> Hi,
>>>> 
>>>> When I try to use engine-manage-domains it seems to expect an account to
>>>> sign
>>>> in with.  Is there any way to use a key tab?  It seems like it does all
>>>> this
>>>> under the surface eventually; I'd just like to do it up front.
>>>> 
>>>> Even a pointer to "manual" adding instructions would be very helpful.
>>>> 
>>>> Thanks,
>>>> 
>>>> Will
>>> 
>>> Hi Will,
>>> No way to perform this with manage domains at the moment.
>>> 
>>> Not sure if we will invest in this, as in oVirt 3.5 we introduce a
>>> pluggable architecture for AAA, based on extensions + configuration files
>>> managed-domains should be used to support existing setups that will undergo
>>> upgrade to 3.5 (or of course, will remain in their current versions).
>>> 
>>>> _______________________________________________
>>>> Users mailing list
>>>> Users at ovirt.org
>>>> http://lists.ovirt.org/mailman/listinfo/users
>>>> 
>> 
>> 
>>