LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 03-19-2006, 11:21 AM   #1
spectre_25gt
LQ Newbie
 
Registered: Mar 2006
Posts: 5

Rep: Reputation: 0
How do you authenticate centrally?


My first real experience setting up services on *nix systems was OS X. I got a bit spoiled with the way things are set up. The best thing that I found about it was that there weren't separate password databases for every program that needs authentication. I don't like the idea of keeping multiple databases like that because it seems too easy for things to become confused.

I've been looking into LDAP authentication, but I don't know whether I'm heading in the right direction.

Any ideas?
 
Old 03-19-2006, 03:05 PM   #2
crimsontide
Member
 
Registered: Aug 2003
Location: Omaha, Nebraska
Distribution: Red Hat, Fedora, Debian
Posts: 65

Rep: Reputation: 15
See if NIS+ is what you are after.
 
Old 03-22-2006, 07:11 AM   #3
timmeke
Senior Member
 
Registered: Nov 2005
Location: Belgium
Distribution: Red Hat, Fedora
Posts: 1,515

Rep: Reputation: 61
LDAP can be a good choice too, if I'm not mistaken.

Otherwise, use PAM to simplify authentication to many applications, including standard logins.
But that's just for authentication on one host, not centrally on a server (like NIS+ or LDAP).
 
Old 03-22-2006, 08:39 AM   #4
sundialsvcs
Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 5,039

Rep: Reputation: 952Reputation: 952Reputation: 952Reputation: 952Reputation: 952Reputation: 952Reputation: 952Reputation: 952
There are books on that subject ... and many of them are on-line. Start by searching for LDAP, look at the OpenLDAP web-site, and follow the various "References" links. Also check out the various Wikipedias, here and elsewhere.

The essential idea is that authentication occurs through a central server (or distributed network). PAM (Pluggable Authentication Modules) is the customary Linux mechanism for interfacing to it, since PAM can handle authentication generically for any application that's aware of PAM. (The applications "just ask PAM," and PAM asks LDAP or whatever.)

Last edited by sundialsvcs; 03-22-2006 at 08:40 AM.
 
Old 03-23-2006, 04:21 PM   #5
spectre_25gt
LQ Newbie
 
Registered: Mar 2006
Posts: 5

Original Poster
Rep: Reputation: 0
Awesome. PAM Sounds like what I'm looking for. Thanks for the tips everyone!

Btw, I have a book on LDAP coming to me soon as well.
 
Old 03-26-2006, 07:02 AM   #6
~=gr3p=~
Member
 
Registered: Feb 2005
Location: ~h3av3n~
Distribution: RHEL 4, Fedora Core 3,6,7 Centos 5, Ubuntu 7.04
Posts: 227

Rep: Reputation: 30
NIS+ sux LDAP rox !

http://directory.fedora.redhat.com/wiki/Main_Page
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Samba Authenticate t.augusto Ubuntu 2 11-04-2005 03:13 PM
authenticate against AD paul_mat Linux - Networking 5 05-28-2005 08:34 AM
Controlling Windows Workstation Settings Centrally flipcode Linux - Software 3 01-02-2005 10:36 PM
Cannot authenticate into KDE??? admstng Mandriva 4 12-26-2004 04:42 AM
centrally scanning data packets for viruses tanmay_79 Linux - General 1 08-28-2001 05:34 AM


All times are GMT -5. The time now is 08:11 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration