[Freeipa-devel] HBAC Authorization Alternative to SSSD
JR Aquino
JR.Aquino at citrix.com
Mon Oct 3 17:33:43 UTC 2011
Attached is a pam_python module that can be used to perform FreeIPA HBAC authorization in conjunction with pam_python.so (http://ace-host.stuart.id.au/russell/files/pam_python/)
I have been working on this for a while as an alternative to sssd on systems that cannot support the sssd installation. There is no caching provided by this code, and is intended as a proof of concept or interim fix on a small scale.
I have been craving a more formal c code approach to this general method, but am not adept in the c language. If anyone is feeling savoy, assistance in creating a more formal pam module would be very appreciated!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pam_pyauth.py
Type: text/x-python-script
Size: 12002 bytes
Desc: pam_pyauth.py
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20111003/831ed80b/attachment.bin>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: ATT00001.txt
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20111003/831ed80b/attachment.txt>
More information about the Freeipa-devel
mailing list