On Thu, Feb 08, 2007 at 09:48:24PM -0500, Stefan Kraus wrote: > I want to set up a server system where I can add one user/password which > is system-wide used for serveral services like mail, ssh, ftp, samba and > so on.
You just described Kerberos. > I think the use of LDAP is a good approach for this. Unfortunately, I > could not find any howtos or documentations. Possibly because, although LDAP can be overloaded to do this, authentication is not the primary function of a directory service. Nevertheless, there are plenty of people using LDAP that way and you should be able to find a lot of discussion if you keep looking. > I just found documentations about how to use ftp with LDAP or samba with > LDAP etc. But I could not find any documentation for an "all-in-one" > solution. Authentication is something that each application must initiate, even if it depends on some other subsystem to do most of the work. So we are stuck with a piecemeal approach. To get the OS to step in and demand authentication without any code for it in the application requires the sort of filesystem and kernel modifications you find mostly at military and national policy agencies. -- Mark H. Wood, Lead System Programmer [EMAIL PROTECTED] Typically when a software vendor says that a product is "intuitive" he means the exact opposite.
pgpFLumlUNHpq.pgp
Description: PGP signature
--- You are currently subscribed to [email protected] as: [EMAIL PROTECTED] To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message.
