On Tue, 31 Mar 2015, Dmitri Pal wrote:
On 03/31/2015 05:30 PM, Andrew Holway wrote:
Hello FreeIPA people,
I must say that FreeIPA v4 looks very pretty and I am looking
forward to trying out the new features.
I'm wondering what application and tools can be used to authenticate
with the OTP
Please could someone explain to me what is happening internally?
In my head I have the following process
The openvpn pam module sends the username and password to pam.
Pam passes this onto sssd
sssd then does the kerberos thing
kerberos passes the password to the LDAP
some LDAP module takes
On Wed, 01 Apr 2015, Andrew Holway wrote:
Please could someone explain to me what is happening internally?
In my head I have the following process
The openvpn pam module sends the username and password to pam.
Pam passes this onto sssd
sssd then does the kerberos thing
kerberos passes the
On 04/01/2015 12:29 PM, Andrew Holway wrote:
Yes. But stored in LDAP.
Stored in LDAP salted I assume?
Yes. As the standard prescribes.
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IdM portfolio
Red Hat, Inc.
--
Manage your subscription for the Freeipa-users mailing list:
Yes. But stored in LDAP.
Stored in LDAP salted I assume?
--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project
Thanks Alexander.
What happens to the passwords? Are they hashed by Kerberos?
On 1 April 2015 at 15:14, Alexander Bokovoy aboko...@redhat.com wrote:
On Wed, 01 Apr 2015, Andrew Holway wrote:
Please could someone explain to me what is happening internally?
In my head I have the following
On 04/01/2015 11:46 AM, Andrew Holway wrote:
Thanks Alexander.
What happens to the passwords? Are they hashed by Kerberos?
Yes. But stored in LDAP.
On 1 April 2015 at 15:14, Alexander Bokovoy aboko...@redhat.com
mailto:aboko...@redhat.com wrote:
On Wed, 01 Apr 2015, Andrew Holway
On Wed, 2015-04-01 at 12:33 -0400, Dmitri Pal wrote:
On 04/01/2015 12:29 PM, Andrew Holway wrote:
Yes. But stored in LDAP.
Stored in LDAP salted I assume?
Yes. As the standard prescribes.
Except for the RC4 keys, but the whole keyset is encrypted with the
master key, so the
Hello FreeIPA people,
I must say that FreeIPA v4 looks very pretty and I am looking forward to
trying out the new features.
I'm wondering what application and tools can be used to authenticate with
the OTP in freeipa. For instance, if we wanted to set up a VPN that uses it
how might we go about
On 03/31/2015 05:30 PM, Andrew Holway wrote:
Hello FreeIPA people,
I must say that FreeIPA v4 looks very pretty and I am looking forward
to trying out the new features.
I'm wondering what application and tools can be used to authenticate
with the OTP in freeipa. For instance, if we wanted
10 matches
Mail list logo
