Re: [Freeipa-users] Integrating with Smart Cards
Hi Dmitri, Thanks for the response. As frustrating as it is, I think my management team is looking for an out-of-the box solution right now. But I'll take a look at your contributors page and download the source and see if I can convince them that this would be a good route. Leigh On 5/1/2014 1:30 PM, Dmitri Pal wrote: On 04/30/2014 06:45 PM, Leigh Moulder wrote: Hi all, I'm very new to FreeIPA, so I hope this isn't answered in documentation somewhere already. I'm working to get my infrastructure DIACAP approved, and part of this process includes unique user accounts with smart card integration. I was hoping that since FreeIPA utilizes Dogtag, I'd be able to use it for essentially everything, from LDAP, to certificate store, to smart card management. Unfortunately, the only references I was able to find were a handful of emails from a few years ago. I was wondering what the status of smart card integration was, and if it was completed yet. If so, where can I find the documentation to configure it. And if it's not currently in the works, does anyone know a viable solution. I'm currently running everything on RHEL 6.5, but would really rather stay away from their directory and certificate servers. Right now, I can't justify the price they're quoting me. The short answer is: we do not have it yet, we want to build it but other things have been taking precedence so far. Are you willing to put a skin into the game and do some development? We can help you and guide you with what actually can be done short term and long term. Thanks in Advance, Leigh ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users -- Thank you, Dmitri Pal Sr. Engineering Manager IdM portfolio Red Hat, Inc. ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users smime.p7s Description: S/MIME Cryptographic Signature ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
Re: [Freeipa-users] Integrating with Smart Cards
On 04/30/2014 06:45 PM, Leigh Moulder wrote: Hi all, I'm very new to FreeIPA, so I hope this isn't answered in documentation somewhere already. I'm working to get my infrastructure DIACAP approved, and part of this process includes unique user accounts with smart card integration. I was hoping that since FreeIPA utilizes Dogtag, I'd be able to use it for essentially everything, from LDAP, to certificate store, to smart card management. Unfortunately, the only references I was able to find were a handful of emails from a few years ago. I was wondering what the status of smart card integration was, and if it was completed yet. If so, where can I find the documentation to configure it. And if it's not currently in the works, does anyone know a viable solution. I'm currently running everything on RHEL 6.5, but would really rather stay away from their directory and certificate servers. Right now, I can't justify the price they're quoting me. The short answer is: we do not have it yet, we want to build it but other things have been taking precedence so far. Are you willing to put a skin into the game and do some development? We can help you and guide you with what actually can be done short term and long term. Thanks in Advance, Leigh ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users -- Thank you, Dmitri Pal Sr. Engineering Manager IdM portfolio Red Hat, Inc. ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
Re: [Freeipa-users] Integrating with Smart Cards
Hi, We want to use 2FA tokens and cant because of a Kerberos issue. I assume if this hasnt been upgraded yet that you cant get the passthrough? I'll we interested to know if that is now not the case or at least an idea when it will be GA. regards Steven Jones Technical Specialist - Linux RHCE Victoria University ITS, Level 8 Rankin Brown Building, Wellington, NZ 6012 0064 4 463 6272 ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users