| From: | Raymond O'Donnell <ray(at)teladesign(dot)ie> |
|---|---|
| To: | Scot Kreienkamp <SKreien(at)la-z-boy(dot)com> |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: slightly off-topic: Central Auth |
| Date: | 2009-10-16 19:38:49 |
| Message-ID: | 4AD8CBC9.101@teladesign.ie |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On 16/10/2009 19:38, Scot Kreienkamp wrote:
> Hey everyone,
>
>
>
> I apologize in advance for going slightly off topic, but I have never
> setup a centralized authentication scheme under Linux. My question is,
> what do most people do for centralized command line, X, and PG
> authentication? From what I've read the main choices are NIS or LDAP.
> LDAP would be problematic as I would have to embed a login and plain
> text password in the ldap.conf file for binding to the MS AD. On the
> other hand, it seems like NIS is old, inflexible, outdated, and possibly
> nearing end of life. We are a largely Windows shop with many app and
> database servers running Linux. The Linux environment is growing too
> large not to do centralized authentication of some kind.
>
>
>
> At this point I'm open to suggestions or comments. SSH and X are
> required, PG would be nice to be able to auth centrally as well while
> I'm at it.
Does "PG" = PostgreSQL? If so, it can do LDAP, Kerberos and PAM, among
other things:
http://www.postgresql.org/docs/8.4/static/client-authentication.html
Ray.
--
-- Raymond O'Donnell
-- Tela Design Ltd, Craughwell, Co. Galway, Ireland.
-- Software & graphic design and consultancy
-- ray(at)teladesign(dot)ie
--
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Scot Kreienkamp | 2009-10-16 19:43:45 | Re: slightly off-topic: Central Auth |
| Previous Message | Peter Hunsberger | 2009-10-16 19:19:51 | Partitioned tables as a poor mans columnar index? |