From owner-freebsd-questions@FreeBSD.ORG Sun Mar 12 18:30:57 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5312716A402 for ; Sun, 12 Mar 2006 18:30:56 +0000 (GMT) (envelope-from freebsd@nagilum.org) Received: from p15140542.pureserver.info (papendorf-se.de [217.160.222.163]) by mx1.FreeBSD.org (Postfix) with ESMTP id 982E043D49 for ; Sun, 12 Mar 2006 18:30:55 +0000 (GMT) (envelope-from freebsd@nagilum.org) Received: from localhost (localhost.localdomain [127.0.0.1]) by p15140542.pureserver.info (Postfix) with ESMTP id A58D52F405E; Sun, 12 Mar 2006 19:30:54 +0100 (CET) Received: from p15140542.pureserver.info ([127.0.0.1]) by localhost (p15140542 [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 26203-04; Sun, 12 Mar 2006 19:30:52 +0100 (CET) Received: from cakebox.homeunix.net (p54A03D8A.dip0.t-ipconnect.de [84.160.61.138]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by p15140542.pureserver.info (Postfix) with ESMTP id 6FCB12F405C; Sun, 12 Mar 2006 19:30:52 +0100 (CET) Received: from localhost (localhost [127.0.0.1]) by cakebox.homeunix.net (Postfix) with ESMTP id 4F54B304719; Sun, 12 Mar 2006 19:30:45 +0100 (CET) Received: from cakebox.homeunix.net ([127.0.0.1]) by localhost (cakebox.tis [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 66202-04; Sun, 12 Mar 2006 19:30:16 +0100 (CET) Received: from [10.1.1.4] (scorpio.tis [10.1.1.4]) by cakebox.homeunix.net (Postfix) with ESMTP id 42A24304716; Sun, 12 Mar 2006 19:30:10 +0100 (CET) Message-ID: <441468B3.4090307@nagilum.org> Date: Sun, 12 Mar 2006 19:30:11 +0100 From: Nagilum User-Agent: Mozilla Thunderbird 1.0.7 (Macintosh/20050923) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Olivier Nicole References: <200603070852.k278qxag067840@banyan.cs.ait.ac.th> In-Reply-To: <200603070852.k278qxag067840@banyan.cs.ait.ac.th> X-Enigmail-Version: 0.93.0.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Virus-Scanned: amavisd-new at cakebox.homeunix.net X-Virus-Scanned: amavisd-new at papendorf-se.de Cc: freebsd-questions@freebsd.org Subject: Re: Authentication with auto replication X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 12 Mar 2006 18:30:58 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 Olivier Nicole wrote: > Hi, > > I have a system that needs user authentication. > > Right now I am using NIS to share the users password between all > the machines that need it: one machine is the primary server, > others clients are also running a secondary server: so would a > machine get isolated, it could still do authentication with the > secondary server that it is running. This is all smooth and > transparent, files replication is done automatically. > > I am considering moving away from NIS (because its lack of > security). Radius could do the trick, I can run several radius > servers. But then I need to manually synchronize the data between > the various radius servers. > > Does it exists another authentication system that would do the > automatic data replication like NIS does? I'm not entirely sure but I think ldap should do the trick (pam_ldap + nss_ldap). Good luck, Nagilum. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (Darwin) iD8DBQFEFGiyAKWN2UY+sLwRA901AJ0a0pqCZ9+Pv82Z04VW4pCbQfthRQCgu5eW tr1J3JMd3mv9F9ddxFYs/Dc= =2YiR -----END PGP SIGNATURE-----