Last active
August 29, 2015 14:03
-
-
Save trlinkin/993d61c73ec81eb120b4 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| sssd <----- nsswitch (passwd, shadow, autofs) ldap.conf | |
| ^ | | |
| |--------- pam (via pas module) |-------- ? | |
| | | | |
| |------------<-good-<-- sudo -->-bad->----------X-----| | |
| What is involved in getting machine auth functions through SSSD? | |
| + pam config, this comes down to a pam module being added to system-auth | |
| + nsswitch (Theres a module for that [TM]) | |
| + get sssd configured and running | |
| How many Puppet Modules do we need? | |
| * Nsswitch, again, already a thing | |
| * Pam, not really a thing, kinda hard in light of RHEL "magical" commands | |
| * sssd | |
| What would an SSSD module do? | |
| % manage the package for sssd and sssd-client, allowing the version to be controlled explicitly if needed | |
| % manage the service, ensuring it is up and running, restarting when files change | |
| % manage the config file, should be only one config for sssd, has multiple sections that should be declared explicitly |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment