Skip to content
Projects
Groups
Snippets
Help
Loading...
Sign in
Toggle navigation
W
White Rabbit Switch - Software
Project
Project
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
86
Issues
86
List
Board
Labels
Milestones
Merge Requests
4
Merge Requests
4
CI / CD
CI / CD
Pipelines
Schedules
Wiki
Wiki
image/svg+xml
Discourse
Discourse
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Commits
Issue Boards
Open sidebar
Projects
White Rabbit Switch - Software
Commits
d69d55dc
Commit
d69d55dc
authored
Feb 06, 2019
by
Adam Wujek
💬
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
doc/wrs-user-manual: update with LDAP+Kerberos
Signed-off-by:
Adam Wujek
<
adam.wujek@cern.ch
>
parent
37e53d87
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
35 additions
and
0 deletions
+35
-0
wrs-user-manual.in
doc/wrs-user-manual.in
+35
-0
No files found.
doc/wrs-user-manual.in
View file @
d69d55dc
...
...
@@ -573,6 +573,41 @@ appropriate way, before the respective service is started.
(@t
{
CONFIG
_
HOSTNAME
_
DHCP
}
) or use a predefined value
(@t
{
CONFIG
_
HOSTNAME
_
STATIC
}
) defined in option @t
{
CONFIG
_
HOSTNAME
_
STRING
}
.
@item CONFIG
_
ROOT
_
ACCESS
_
DISABLE
Disable root access via ssh. With this option enabled it is still
possible to use sudo to get root privileges.
@item CONFIG
_
LDAP
_
ENABLE
@itemx CONFIG
_
LDAP
_
SERVER
@itemx CONFIG
_
LDAP
_
SEARCH
_
BASE
@itemx CONFIG
_
LDAP
_
FILTER
_
NONE
@itemx CONFIG
_
LDAP
_
FILTER
_
EGROUP
@itemx CONFIG
_
LDAP
_
FILTER
_
CUSTOM
@itemx CONFIG
_
LDAP
_
FILTER
_
EGROUP
_
STR
@itemx CONFIG
_
LDAP
_
FILTER
_
CUSTOM
_
STR
Set of options related to providing an authorization via LDAP for ssh.
To be able to use LDAP please enable an option @t
{
CONFIG
_
LDAP
_
ENABLE
}
,
provide LDAP server (@t
{
CONFIG
_
LDAP
_
SERVER
}
) and the search base
(@t
{
CONFIG
_
LDAP
_
SEARCH
_
BASE
}
). It is possible to limit the access
to a particular e-group used at CERN (@t
{
CONFIG
_
LDAP
_
FILTER
_
EGROUP
}
to enable and @t
{
CONFIG
_
LDAP
_
FILTER
_
EGROUP
_
STR
}
to provide
the e-group's name) or to provide the custom filtering string
(@t
{
CONFIG
_
LDAP
_
FILTER
_
CUSTOM
}
to enable and
@t
{
CONFIG
_
LDAP
_
FILTER
_
CUSTOM
_
STR
}
to provide the filter).
For more information please refer to the @i
{
Kconfig
}
's help.
@item CONFIG
_
AUTH
_
LDAP
@itemx CONFIG
_
AUTH
_
KRB5
@itemx CONFIG
_
AUTH
_
KRB5
_
SERVER
Choose the authentication method. @t
{
CONFIG
_
AUTH
_
LDAP
}
for LDAP
authentication, @t
{
CONFIG
_
AUTH
_
LDAP
}
for Kerberos authentication.
For the later one it is obligatory to specify Kerberos Realm
@t
{
CONFIG
_
AUTH
_
KRB5
_
SERVER
}
.
@item CONFIG
_
ROOT
_
PWD
_
IS
_
ENCRYPTED
@itemx CONFIG
_
ROOT
_
PWD
_
CLEAR
@itemx CONFIG
_
ROOT
_
PWD
_
CYPHER
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment