Sure!
What I am working on is a xen server private cloud that needs more
security. I’m getting 2fa working on all of the outside facing servers.
For the internal dev servers, I would like to get shared key working, so
ultimately nothing works solely with a password, all of which will work
through privacyidea.
At the moment, there are only 2 test servers and the privacy idea server as
well as half written chef recipes for the automated deployment.
So far the user store from ad works and the 2fa works for ssh, gdm, and
working on sudo and su.
I am having problems with the ssh keys, but I’ll post that in that thread.
Thanks,
ToddOn Monday, April 13, 2015 at 9:04:11 PM UTC-7, Cornelius Kölbel wrote:
Hi Todd,
in AD the bind DN is
cn=users,
Not ou=
Kind regards
Cornelius
Cornelius Kölbel
Corneliu…@netknights.it <javascript:>
+49 151 2960 1417
NetKnights GmbH
http://netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798
Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel
-------- Ursprüngliche Nachricht --------
Von: Todd F <todd...@gmail.com <javascript:>>
Datum: 14.04.2015 00:59 (GMT+01:00)
An: priva...@googlegroups.com <javascript:>
Betreff: AD ldap resolver Exception(‘Wrong credentials’,)
When I test the ldap resolver I get the below screen and the log says.
[2015-04-13
15:53:48,634][9269][139684671203072][WARNING][privacyidea.lib.config:496]
unable to load resolver module : ‘resolvers.SCIMIdResolver’
(ImportError(‘cannot import name getResolverClass’,))
or if I set the bind type to NTLM I get ValueError(‘need more than 1 value
to unpack’,)
Thanks,
Todd
…