> I'm very interested in using LDAP for single "sign-on" > e.g. Login to server,Client and Samba This is quite easy using samba w/ ldap and pam-ldap.This: > is anyone on this list already using LDAP insted of NIS for local apps ? on the other hand requires (I belive) a plugin from padl.com that is sold comercially and is called ypldap.
I think one way to do this securely is to use some kind of ssh pki authentication to a local ssh daemon on the host. Maybe one way of doing this is to dynamically create pki certificates on each side (server and client) upon logon. I'm not sure how secure this is, but if the certificates created are for single applications etc this could work. This would need a small script on the server that creates and writes the certificates to the /opt/ltsp/i386/etc directory as well as adds them to the users ~/.ssh/authorized_keys2 (and maybe removes them on logon?) Maybe this could be tied to a user attribute? So you could have statments like if ($LOCAL_OO) pki_add_key(oo); or something. Is this possible? Tarjei > Greetings, > Martin Herweg > > _______________________________________________________________ > > Don't miss the 2002 Sprint PCS Application Developer's Conference > August 25-28 in Las Vegas - >http://devcon.sprintpcs.com/adp/index.cfm?source=osdntextlink > > _____________________________________________________________________ > Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto: > https://lists.sourceforge.net/lists/listinfo/ltsp-discuss > For additional LTSP help, try #ltsp channel on irc.openprojects.net _______________________________________________________________ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas - http://devcon.sprintpcs.com/adp/index.cfm?source=osdntextlink _____________________________________________________________________ Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto: https://lists.sourceforge.net/lists/listinfo/ltsp-discuss For additional LTSP help, try #ltsp channel on irc.openprojects.net
