I have been watching ipsilon for a while now. I thought I might give it
a try.
Following the documentation on the project site I have done this:
1) Install ipsilon packages
# dnf install ipsilon ipsilon-base ipsilon-openidc ipsilon-saml2
ipsilon-authgssapi ipsilon-authpam ipsilon-authform ipsilon-infosssd
2) Make necessary keytab using Samba as it will be the Kerberos and LDAP
backend. kinit administrator@DOMAIN export
KRB5_KTNAME=FILE:/etc/httpd/conf/http.keytab net ads keytab CREATE net
ads keytab FLUSH net ads keytab ADD HTTP unset KRB5_KTNAME
3) Install Ipsilon
ipsilon-server-install --gssapi=yes --pam=yes --openidc=yes --saml2=yes
--admin-user administrator@REALM
I cannot login as root, I cannot as the domain administrator or any
other Samba known user. This is with gssapi or pam/form.
Is there more documentation for this anywhere? Has anyone set this up to
work with Samba or MS AD?
Thank you for any help.
Trever
Show replies by date