2009/12/7 John Joseph <[email protected]> > > > Hi All > I would like to get advice on which authentication to use in an enviornment > in which there are only Linux machine over there, which authentication would > be better for single sign on . > Should I go for LDAP > thanks > Joseph John >
Of course! what would use in its stead ? NIS ? NIS uses clear text passwords. LDAP is Key /w TLS. I don't know of a single sign on solution that isn't LDAP driven. If you are looking at open source then I am quite partial to Fedora's Directory Server. It is very simple to setup and configure, and has an an intuitive gui as well as full openldap Command Line support. I recommend using it with a certifcate base as well, so you shall need to build yourself a certificate authourity, you don't need to go to go daddy etc to but a commerical cert, a 'Snake Oil' cert will work. If you are looking at a commerical single sign on solution, then you shall need to look at a corporate directory service, none (that I know of) support Fedora DS. Dan _____________________________________________________________ "More people are killed every year by pigs than by sharks, which shows you how good we are at evaluating risk." -Bruce Schneier
