Novell is now a part of Micro Focus

Improve Security Using 2 Factor Authentication with SSSD via LDAP, OAuth, Centralized SSH Keys and Sudoers

1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)

Mark Gardner – Federal Reserve Bank of Kansas City
Noor Kreadly – Federal Reserve Bank of Kansas City

Recorded at SUSECON 2016 as session TUT83954

Tutorial on how to use SSSD as a cross Linux platform (RHEL, SLES, Ubuntu, et. al) authentication agent instead of painful and often times disparate pam_ldap and sudoers configurations. Centralized user and group management using existing directory infrastructure. Learn how centrally store SSH key and sudoer configurations in LDAP. No more having to copy your SSH key to each new server. Create a SSH Key based single sign on solution. Your sudo commands are authenticated against your Directory.

Expand the configuration of SSSD clients for 2 factor authentication using a HOTP configured YubiKey that does not require any changes on the authenticating client. Integration with eDirectory. Explore SSO Kerberized options with Active Directory and MIT Kerberos.


No comments yet.

Name (required)
E-mail (required - never shown publicly)
Your Comment (smaller size | larger size)
You may use <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong> in your comment.

RSS feed

© Copyright Micro Focus or one of its affiliates