Ah it seems it can be done in the newer versions of openssh 6.2p2 with the
command mentioned on the blog (
https://marc.waeckerlin.org/computer/blog/ssh_and_ldap ) , the fix has now
been ported to ubuntu also, allowing the AuthorizedKeysCommand to be used
without any need for patching. Shame I'm not using openssh 6.2 everywhere
:), but well soon see to that.
On 10 January 2014 12:52, Petr Spacek <pspacek(a)redhat.com> wrote:
On 10.1.2014 12:06, Conor O'Callaghan wrote:
>
>> As an aside, if you're interested in doing Kerberos and LDAP together
>> with
>> a 389-ds backend you may want to look at the FreeIPA project which
>> handles
>> a lot of the integration for you. It also supports storing SSH keys.
>>
>> rob
>>
>>
> Freeipa looks very very nice indeed, but it doesn't look like it's built
> and available for ubuntu :(
>
There is ongoing effort to port it to Debian/Ubuntu. You are more than
welcome to contact freeipa-devel list [1] and help us with that.
Have a nice day!
[1]
https://www.redhat.com/mailman/listinfo/freeipa-devel
--
Petr^2 Spacek
--
389 users mailing list
389-users(a)lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users