Login

Recent searches

No recent searches

Search options

Not available on hackers.town.
hackers.town is one of the many independent Mastodon servers you can use to participate in the fediverse.
A bunch of technomancers in the fediverse. This arcology is for all who wash up upon it's digital shore.

Administered by:

Server stats:

214
active users

hackers.town: AboutPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.0-alpha.5+glitch

ToroidalCore
Public

Taking a moment to look at a project I shelved a year and a half ago. Or not officially shelved, just planned to look at and forgot about.

I'm trying to set my FreeBSD file server up as a secondary Kerberos/LDAP master. My main machine for this is a Raspberry Pi, which works well, but the file server is on all the time anyways so it may as well be a backup.

This machine is already a client, which is easy thanks to SSSD. And it already exports Kerberos-authenticated NFS one machine, and does SFTP for others. The only thing to be careful of is that official packages aren't compiled with all the options I need, since Kerberos will have to use OpenLDAP as the backend, and OpenLDAP needs to be able to sync. Not a problem, I just have to remove some packages that weren't compiled with the right options, and switch to ports.

ToroidalCore

For anyone messing around with this, I haven't worked with (nothing to do with beer), but it looks like a good solution for single sign-on things. It basically integrates and , with a nice web interface. That said, while those two things are kind of a pain, I think there's some value in looking at how they work in a little more depth. Not to mention how Linux and other systems do authentication.

Feb 11, 2023, 10:19 PM·Public
0boosts·0favorites
Explore
About