Difference between revisions of "Single sign-on"

From ProgClub
Jump to: navigation, search
Line 54: Line 54:
  
 
* [[User:John|JE]] 2011-08-06: [[Charity_admin#John_2011-08-06_15:30|Installed]] OpenLDAP on [[charity]]
 
* [[User:John|JE]] 2011-08-06: [[Charity_admin#John_2011-08-06_15:30|Installed]] OpenLDAP on [[charity]]
* [[User:John|JE]] 2011-08-05: [[Charity_admin#John_2011-08-04_21:21|Configured]] [[charity]] as the [[Kerberos#KDC_configuration|KDC]]
+
* [[User:John|JE]] 2011-08-04: [[Charity_admin#John_2011-08-04_21:21|Configured]] [[charity]] as the [[Kerberos#KDC_configuration|KDC]]
  
 
== Kerberos ==
 
== Kerberos ==

Revision as of 21:55, 11 August 2011

This is the ProgClub Single sign-on project. The idea is that users can login to our systems using a single username and password. For other projects see Projects.

Project status

Underway. Kerberos has been configured on charity, which is the KDC. Still need to configure NFS for user home directories, get LDAP working, and figure out what the PAM configuration should be.

Contributors

Members who have contributed to this project. Newest on top.

Copyright

Copyright 2011, Contributors. Licensed under the New BSD license.

Links

Single sign-on related information

Kerberos related information

LDAP related information

NFS related information

TODO

Things to do, in rough order of priority:

  • Configure /home mounts for hope and honesty to //charity/home
  • Configure SSH logins to use Kerberos/LDAP on hope, honesty and charity
  • Investigate Svn/Kerberos integration (maybe via Apache?)
  • Investigate MySQL/Kerberos integration

Done

Stuff that's done. Latest stuff on top.

Kerberos

Ports for the KDC and Admin Services: The default ports used by Kerberos are port 88 for the KDC and port 749 for the admin server.

See Kerberos for ProgClub's Kerberos configuration.