Re: centralized user management

[Chuck Yerkes <chuck+obsd_(_at_)_2003_(_dot_)_snew_(_dot_)_com>]

I've just invented NIS and gone back in time to 1987 or so
to plant the seeds for it.  Ha, it's now mature.  Not ideal
where security is a great concern, but good enough for home
and many LANs.

Quoting Matt Van Mater (nutter__(_at_)_hotmail_(_dot_)_com):
> I'm looking for a way to manage user accounts on my small home network, and 
> would like to create a centralized method of authentication.  I have looked 
> into it and have yet to find a solution that meets my needs well.  I am 
> aware of openldap, but i think that implementing LDAP in my small network 
> would be a huge overkill for syncing a few users/groups and things like 
> that.
> 
> One really easy way of doing it would be to set up an nfs mount and use the 
> passwd file on a central computer, but this would be an extremely bad idea 
> i'm sure.
> 
> I looked into kerberos, but I admit I only have a cursory knowledge of how 
> I can use it in an openbsd environment.  I have read several tutorials 
> linked off of deadly.org but they all address the need to kerberize daemons 
> like telnet and ftp, and don't address my need for a simple logon.
> 
> How would you guys suggest I set up a relatively secure, centralized 
> authentication system for a network made up of mostly openbsd machines (I 
> do have some freebsd, mandrake and win2k boxen, but i don't care about them 
> using the same auth)
> 
> Matt
> 
> 
> 
> 
> 
> _________________________________________________________________
> Add photos to your messages with MSN 8. Get 2 months FREE*.  
> http://join.msn.com/?page=features/featuredemail