I'm willing to allow Kerberos from our DMZ. We are using LDAP there too but I am not happy with it, even if it's encrypted and never used for authentication.
*Jeremy Page* | Senior Technical Architect | *Gilbarco Veeder-Root, A Danaher Company* *Office:*336-547-5399 | *Cell:*336-601-7274 | *24x7 Emergency:*336-430-8151 ------------------------------------------------------------------------ On 02/07/2014 10:05 AM, Graham Dunn wrote: > Hi, > > So we're using LDAP/AD pam modules to provide user logins on our Linux > boxen that are inside our network, but what are people doing for > "remote" (ie. colo, DMZ, etc) servers? > > Generating /etc/passwd locally, then shipping it across via scp or > somesuch, or setting up a tunnel back into the local network were two > things I thought about, are there other approaches? > > Thanks, > Graham > > > _______________________________________________ > Tech mailing list > [email protected] > https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech > This list provided by the League of Professional System Administrators > http://lopsa.org/ Please be advised that this email may contain confidential information. If you are not the intended recipient, please notify us by email by replying to the sender and delete this message. The sender disclaims that the content of this email constitutes an offer to enter into, or the acceptance of, any agreement; provided that the foregoing does not invalidate the binding effect of any digital or other electronic reproduction of a manual signature that is included in any attachment.
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Tech mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
