From Fedora Project Wiki
(Created page with '=== System-config-authentication backend functionality === Here is list of all functions, which should boot backend provide == Basic == {| ! what || where |- || Add and modify b...')
 
 
(6 intermediate revisions by the same user not shown)
Line 2: Line 2:
Here is list of all functions, which should boot backend provide
Here is list of all functions, which should boot backend provide


== Basic ==
== User Information ==
{|
{|
! what || where
! what || where
|-
|-
|| Add and modify bootloader items || boot config file
|| Enable/Disable support for NIS, LDAP, Hesiod, Winbind || /sbin/ypbind, /etc/nsswitch.conf, ???
|-
|-
|| Set default item || boot config file
|| Set NIS domain || /etc/yp.conf
|-
|-
|| Set boot parameters for items || boot config file
|| Set NIS server || /etc/yp.conf
|-
|-
|| Use it for restore MBR || disk
|| Set LDAP Search base DN || /etc/[openldap/]ldap.conf
|-
|-
|| Set boot timeout || boot config file
|| Set LDAP Server || /etc/[openldap/]ldap.conf
|-
|| Set usage of TLS in LDAP || /etc/[openldap/]ldap.conf
|-
|| Set Hesiod LHS || /etc/hesiod.conf
|-
|| Set Hesiod RHS || /etc/hesiod.conf
|-
|| Set Winbind Domain || /etc/samba/smb.conf
|-
|| Set Security Model (one from list) || /etc/samba/smb.conf
|-
|| Set Winbind ADS Realm || /etc/samba/smb.conf
|-
|| Set Winbind Domain Controllers || /etc/samba/smb.conf
|-
|| Set Template Shell (one from list) || /etc/samba/smb.conf
|-
|| Set allowance of offline login || /etc/samba/smb.conf
|-
|| Join Domain??? || ???
|-
|}
 
== Authentication ==
{|
! what || where
|-
|| Enable/Disable Kerberos, LDAP, SmartCard, Fingerprint Reader, Winbind || ???
|-
|| Set Kerberos Realm, KDCs, Admin Servers || /etc/krb[5].conf
|-
|| Whether to use DNS to resolve hosts to realms || /etc/krb[5].conf
|-
|| Whether to use DNS to locate KDCs for realms || /etc/krb[5].conf
|-
|| Set Smart Card Removal Action (from list) || /etc/pam_pkcs11/pam_pkcs11.conf
|-
|| Set Smart Card needed for login || /etc/pam_pkcs11/pam_pkcs11.conf
|-
|}
 
== Options ==
{|
! what || where
|-
|| Set password hashing algorithm (from list) || ???
|-
|-
|-
|}
|}

Latest revision as of 12:08, 4 August 2009

System-config-authentication backend functionality

Here is list of all functions, which should boot backend provide

User Information

what where
Enable/Disable support for NIS, LDAP, Hesiod, Winbind /sbin/ypbind, /etc/nsswitch.conf, ???
Set NIS domain /etc/yp.conf
Set NIS server /etc/yp.conf
Set LDAP Search base DN /etc/[openldap/]ldap.conf
Set LDAP Server /etc/[openldap/]ldap.conf
Set usage of TLS in LDAP /etc/[openldap/]ldap.conf
Set Hesiod LHS /etc/hesiod.conf
Set Hesiod RHS /etc/hesiod.conf
Set Winbind Domain /etc/samba/smb.conf
Set Security Model (one from list) /etc/samba/smb.conf
Set Winbind ADS Realm /etc/samba/smb.conf
Set Winbind Domain Controllers /etc/samba/smb.conf
Set Template Shell (one from list) /etc/samba/smb.conf
Set allowance of offline login /etc/samba/smb.conf
Join Domain??? ???

Authentication

what where
Enable/Disable Kerberos, LDAP, SmartCard, Fingerprint Reader, Winbind ???
Set Kerberos Realm, KDCs, Admin Servers /etc/krb[5].conf
Whether to use DNS to resolve hosts to realms /etc/krb[5].conf
Whether to use DNS to locate KDCs for realms /etc/krb[5].conf
Set Smart Card Removal Action (from list) /etc/pam_pkcs11/pam_pkcs11.conf
Set Smart Card needed for login /etc/pam_pkcs11/pam_pkcs11.conf

Options

what where
Set password hashing algorithm (from list) ???

Other

Please comment
If you don't agree with proposed functionality or have something to add, share it with us in Talk:SystemConfig/authentication/backend