AuthorizedKeysCommand patch for openssh OR openssh-lpk
There has long been a need to combine opensshd authorized keys with ldap. A couple of solutions have come about, and I would love to see one of these make it mainstream with opensuse.
Here is one patch I have found that is supposedly being implemented on both Fedora and RHEL6 products: https://bugzilla.mindrot.org/show_bug.cgi?id=1663
Of course there is the openssh-lpk patch as well.
My company has standardized on suse some time ago, but by policy we require dual factor authentication (key and password). We can not move to an ldap solution until there is a way to integrate ssh keys into ldap. We are a growing company and it is getting to the stage where it is painful to manage each server individually without a centralized system for authentication.
This would make the SuSE suite of products SOOO much more business friendly while keeping security a priority (also important for businesses).
Set user benefit
You can add different relations here, for example duplicate features, obs projects, urls...
To embedd an image you can simply upload it to paste.opensuse.org and add a relation to its raw url.
Set release notes
If you have 200 servers, and a requirement for ssh keys, you have to install the key on each server every time you hire somebody new. (Or if you let somebody go, you have to remove it from each server.) Using ldap+ssh keys would allow you to do that from one place.
Last change: 4 years ago