HPE Community
Operating System - Linux
1828859 Members
2806 Online
109985 Solutions
New Discussion

Login Authenication

 
nash11
Frequent Advisor

‎08-11-2006 10:51 PM

‎08-11-2006 10:51 PM

Login Authenication

We have three server

192.168.0.1 --> LDAP master server
192.168.0.2 --> LDAP slave server
192.168.0.3 --> server
192.168.0.4 --> server

Assume user A want to access server 192.168.0.3 , user B want to access server 192.168.0.4 , now , if I would like all user have one single point login ( so that they don't need to remember so many ip address ) , for example , both of them only login to 192.168.0.1 (single point) , the system can re-direct them to the host they want ( in my case which are 192.168.0.3 and 192.168.0.4 ) , does openldap have such function ?
0 Kudos
Reply
5 REPLIES 5
Steven E. Protter
Exalted Contributor

‎08-12-2006 07:46 AM

‎08-12-2006 07:46 AM

Re: Login Authenication

Shalom,

What you do is change authentication in server 3 and 4 (designated by their ip addresses) to LDAP.

Configure them to connect to the ldap infrastructure and you have single sign on.

The first step is to change /etc/nsswitch.conf and make the passwd entry ldap instead of the default files.

Redirecting logins to another server does not really achieve what you say you want to get done.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Stuart Browne
Honored Contributor

‎08-12-2006 03:09 PM

‎08-12-2006 03:09 PM

Re: Login Authenication

Yea.. If you want the user credentials (i.e. usernames and passwords) to be shared amongst all servers, what SEP said is perfect for you.

But from what I can tell, what you're saying doesn't relate to the authentication directly at all.

It relates more to wanting to access different servers from a single location.

You are wanting to look into passwordless SSH logins which get launched from server 1 when they log in.

LDAP it's self isn't what you want. Look at '.bash_profile' and SSH key sharing without passwords.
One long-haired git at your service...
0 Kudos
Reply
sindodm
Occasional Advisor

‎08-12-2006 03:33 PM

‎08-12-2006 03:33 PM

Re: Login Authenication

thx SEP and SB replies,

Do you mean mean ldap doesn't have the function I mention ? so I need to setup the ssh to redirect the user from 192.168.0.1 to another server ? thx
0 Kudos
Reply
dirk dierickx
Honored Contributor

‎08-13-2006 08:17 PM

‎08-13-2006 08:17 PM

Re: Login Authenication

ldap can do authentication for multiple hosts, but it doesn't do redirects.
0 Kudos
Reply
sindodm
Occasional Advisor

‎08-14-2006 02:49 AM

‎08-14-2006 02:49 AM

Re: Login Authenication

thx Dirk ,

if ldap doesn't has this function , can advise the good practice of it ? thx
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.