Shared Encrypted disk / files for multiple users?
Hello,
I've been doing a bit of googling but didn't find exactly what I am looking for so thought I'd see what others have to say:
We have a case where we have laptops with windows that are sometimes connected to a network and sometimes not. The filesystem (or parts of it) need to be encrypted. Multiple users should be able to log on. Users should be able to log on when no network is available if they've logged on before (ie credentials are cached). A valid login should be all that is required to access the encrypted file system.
I believe that pam_krb5 and pam_ccreds takes care of the log on process, however I haven't found anything that clearly would take care of the encryption aspect. Users shouldn't have to enter their password more than once. They shouldn't have to do anything to access the encrypted files when their password changes on active directory. A new user shouldn't have to do anything to access the encrypted files if the have valid credentials.
Is this possible?
Thanks.
|