Hosting Provided By

RE: OpenSSH and LDAP, or CA, or ???

From: An Lam <An.Lam(at)3pardata.com>
Date: Tue Mar 18 2003 - 12:53:00 EST

One solution is to use NFS. All user home directories should be on NFS and machines should mount the NFS. You only need to store the key on NFS server.

-----Original Message-----

From: John Sasso [mailto:jsassojr@nycap.rr.com] Sent: Monday, March 17, 2003 1:19 PM
To: secureshell@securityfocus.com
Subject: OpenSSH and LDAP, or CA, or ???

Is it possible to interface/integrate OpenSSH with a centralized authentication scheme (e.g. certificate authority, LDAP, etc.)? I want to be have file transfers occur securely via SSH/SCP (we use OpenSSH), but am running into a scalability issue w.r.t. key management, where each machine has to have the public keys of users on other hosts. Well, you get the idea...

Is there a way to integrate OpenSSH with some centralized authentication point (e.g. Certificate Authority, or LDAP, or ...) which will help mitigate this scalability issue? This has become a headache, so any info/advice that would lead to a solution would be greatly appreciated.

--john
Received on Tue Mar 18 21:47:00 2003

This message: [ Message body ]
Next message: Crist J. Clark: "Re: ssh with diskless machines"
Previous message: Attica: "Re: tunnelling ssh apps on Mac OS X?"
Maybe in reply to: John Sasso: "OpenSSH and LDAP, or CA, or ???"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:55 EDT