Bug 5634 - tl-ldap-certalias key/cert synchronization has a delay before changes are seen
Summary: tl-ldap-certalias key/cert synchronization has a delay before changes are seen
Status: NEW
Alias: None
Product: ThinLinc
Classification: Unclassified
Component: Smart card (show other bugs)
Version: 4.1.0
Hardware: PC Unknown
: P2 Normal
Target Milestone: LowPrio
Assignee: Pierre Ossman
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-09-09 13:23 CEST by Karl Mikaelsson
Modified: 2023-05-23 13:23 CEST (History)
1 user (show)

See Also:
Acceptance Criteria:


Attachments

Description Karl Mikaelsson cendio 2015-09-09 13:23:42 CEST
Instead of a tool that populates ~/.ssh/authorized_keys for all users, we could have sshd look up authorized keys directly from an LDAP tree (or whatever) using AuthorizedKeyCommand. FreeIPA sets up this with a sssd shim called /usr/bin/sss_ssh_authorizedkeys. The problem with passwdaliases remain, though.
Comment 1 Pierre Ossman cendio 2018-06-05 12:54:45 CEST
sssd supports quite a few backends now, so perhaps we don't need to do our own tool, but rather work well in a sssd environment?

Note You need to log in before you can comment on or make changes to this bug.