| From: | "Scot Kreienkamp" <SKreien(at)la-z-boy(dot)com> |
|---|---|
| To: | <ray(at)teladesign(dot)ie> |
| Cc: | <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: slightly off-topic: Central Auth |
| Date: | 2009-10-16 19:43:45 |
| Message-ID: | 37752EAC00ED92488874A27A4554C2F303CA019A@lzbs6301.na.lzb.hq |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On 16/10/2009 19:38, Scot Kreienkamp wrote:
> Hey everyone,
>
>
>
> I apologize in advance for going slightly off topic, but I have never
> setup a centralized authentication scheme under Linux. My question
is,
> what do most people do for centralized command line, X, and PG
> authentication? From what I've read the main choices are NIS or LDAP.
> LDAP would be problematic as I would have to embed a login and plain
> text password in the ldap.conf file for binding to the MS AD. On the
> other hand, it seems like NIS is old, inflexible, outdated, and
possibly
> nearing end of life. We are a largely Windows shop with many app and
> database servers running Linux. The Linux environment is growing too
> large not to do centralized authentication of some kind.
>
>
>
> At this point I'm open to suggestions or comments. SSH and X are
> required, PG would be nice to be able to auth centrally as well while
> I'm at it.
Does "PG" = PostgreSQL? If so, it can do LDAP, Kerberos and PAM, among
other things:
[Scot Kreienkamp]
But of course. :)
So I guess what I see taking shape is setting up everything to auth
against PAM locally, then setting up local PAM to auth to a remote
source.
Thanks,
Scot Kreienkamp
skreien(at)la-z-boy(dot)com
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Christophe Pettus | 2009-10-16 19:51:20 | Re: contrib/plantuner - enable PostgreSQL planner hints |
| Previous Message | Raymond O'Donnell | 2009-10-16 19:38:49 | Re: slightly off-topic: Central Auth |