On Fri, Mar 06, 2015 at 10:56:09AM +0100, Roberto Cornacchia wrote:
> Hi there,
> 
> I'm planning to deploy freeIPA on our lan.
> It's small-ish and completely based on FC21, so I expect everything to work
> like a charm.
> 
> Except one detail. We have Synology NAS station, which uses DSM 5.0.
> The ideal plan is to use it as host for shared NFS home dirs once we switch
> our desktops to freeIPA.
> 
> I've already tried on a VirtualBox replica of our lan how to configure the
> Synology station against freeIPA.
> LDAP enrolling worked, and I created a srv entry in the freeIPA dns, but I
> didn't go further than that.
> 
> SSSD does not seem to exist for DSM 5. What are the implications? Can it do
> without? I understood SSSD works as a caching system, so that the machine
> keeps working when freeIPA is unavailable.

Yes, I think you should configure the regular LDAP and/or Kerberos
authentication.

> Does it have any other vital
> role?

HBAC access control enforcement and setting the SELinux labels. The
latter is not really possible on Synology anyway.

> 
> Thanks for your input.
> 
> Roberto
> 
> PS. This mailing list is pleasantly active. Keep up the good work!

thank you very much, it would be awesome if you could contribute a HOWTO
to freeipa.org..

(I'm a bit selfish here because I also run a Synology NAS at home :-))

-- 
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project

Reply via email to