im thinking a socket-based script instead to do the necessary updates from the server box.
On 5/26/06, Kelsey Hartigan Go <[EMAIL PROTECTED]> wrote:
oops...typos!!!On 5/26/06, Kelsey Hartigan Go < [EMAIL PROTECTED]> wrote:While you guys are at it...just a thought...
anybody thought of creating a user provisioning software? Sort of like an identity management?
Get the user names and initials and id numbers from an HR database, the create the accounts.Then update it regularly -- those that are terminated, accounts get removed.
extend the hr database to have a lookup on what servers this user has access to, maybe add a table for roles (maybe groups), and another table for user to role mapping.
While you're at it, set up a simple website for the user to be able to change their password.
Create a script to update all servers he has access to (probably the access to the server is a role)
Do this via a remote ssh execution.
Voila you just made yourself an expensive identity management software. There's not much development out there yet in sourceforge...any takers?
_________________________________________________
Philippine Linux Users' Group (PLUG) Mailing List
[email protected] (#PLUG @ irc.free.net.ph)
Read the Guidelines: http://linux.org.ph/lists
Searchable Archives: http://archives.free.net.ph
_________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
