LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   LDAP Password + Key Authentication (https://www.linuxquestions.org/questions/linux-security-4/ldap-password-key-authentication-4175488714/)

grahamb314 12-20-2013 02:50 PM
LDAP Password + Key Authentication
 
I currently have LDAP setup to authenticate users, so users are not stored on the servers per say.

I want to be able to permit SSH Key authentication for those user accounts too. (Key used to login to the server and the LDAP password for sudo)

I have found ways to centralise key authentication, but only for user accounts that reside and were setup on the servers locally.

Is there a way to allow authentication for an LDAP provisioned user by Keys?

I dont mind if the keys are not centrally managed at this time, but that would be useful..

Many thanks

custangro 12-20-2013 04:54 PM
A couple things come to mind

1) You can actually store the keys on the LDAP server and have it centrally manage them.

2) Set up NFS home directories. That way the keys are the same no matter what server they've log into.

I've done #2 and it's been working out well so far.

--C


All times are GMT -5. The time now is 04:16 PM.