Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
03-19-2006, 12:21 PM
|
#1
|
LQ Newbie
Registered: Mar 2006
Posts: 5
Rep:
|
How do you authenticate centrally?
My first real experience setting up services on *nix systems was OS X. I got a bit spoiled with the way things are set up. The best thing that I found about it was that there weren't separate password databases for every program that needs authentication. I don't like the idea of keeping multiple databases like that because it seems too easy for things to become confused.
I've been looking into LDAP authentication, but I don't know whether I'm heading in the right direction.
Any ideas?
|
|
|
03-19-2006, 04:05 PM
|
#2
|
Member
Registered: Aug 2003
Location: Omaha, Nebraska
Distribution: Red Hat, Fedora, Debian
Posts: 65
Rep:
|
See if NIS+ is what you are after.
|
|
|
03-22-2006, 08:11 AM
|
#3
|
Senior Member
Registered: Nov 2005
Location: Belgium
Distribution: Red Hat, Fedora
Posts: 1,515
Rep:
|
LDAP can be a good choice too, if I'm not mistaken.
Otherwise, use PAM to simplify authentication to many applications, including standard logins.
But that's just for authentication on one host, not centrally on a server (like NIS+ or LDAP).
|
|
|
03-22-2006, 09:39 AM
|
#4
|
LQ Guru
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 11,099
|
There are books on that subject ... and many of them are on-line. Start by searching for LDAP, look at the OpenLDAP web-site, and follow the various "References" links. Also check out the various Wikipedias, here and elsewhere.
The essential idea is that authentication occurs through a central server (or distributed network). PAM (Pluggable Authentication Modules) is the customary Linux mechanism for interfacing to it, since PAM can handle authentication generically for any application that's aware of PAM. (The applications "just ask PAM," and PAM asks LDAP or whatever.)
Last edited by sundialsvcs; 03-22-2006 at 09:40 AM.
|
|
|
03-23-2006, 05:21 PM
|
#5
|
LQ Newbie
Registered: Mar 2006
Posts: 5
Original Poster
Rep:
|
Awesome. PAM Sounds like what I'm looking for. Thanks for the tips everyone!
Btw, I have a book on LDAP coming to me soon as well.
|
|
|
03-26-2006, 08:02 AM
|
#6
|
Member
Registered: Feb 2005
Location: ~h3av3n~
Distribution: RHEL 4, Fedora Core 3,6,7 Centos 5, Ubuntu 7.04
Posts: 227
Rep:
|
|
|
|
All times are GMT -5. The time now is 01:44 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|