• chevron_right

      Keycloak API

      pubsub.slavino.sk / warlord0blog · Tuesday, 26 January, 2021 - 13:16 edit

    Keycloak is a great tool for authentication and I’m bundling it into a package that includes LDAP. What I want to do is automate the deployment of Keycloak so that it is provisioned to work with the LDAP that is also deployed without the using having to fettle with Keycloak manually- This is where the &ellipsisRead the full post »

    Značky: #ldap, #Linux, #keycloak

    • chevron_right

      LDAP Indexes

      pubsub.slavino.sk / warlord0blog · Monday, 19 October, 2020 - 07:49 edit

    On the OpenLDAP server I see a lot of entries in the log file about uidNumber not being indexed. If this is the case I should add an index to try to help with that. First get a list of the current indexes. Add these onto the end of a new ldif file index.ldif and &ellipsisRead the full post »

    Značky: #ldap, #Linux

    • chevron_right

      Apache Directory Studio – JNDI

      Warlord · pubsub.slavino.sk / warlord0blog · Tuesday, 28 July, 2020 - 16:31 edit

    I’ve never had a comfortable relationship with Java. Every time something goes a bit wrong in something that uses Java, I spend hours and even days trying to figure out why the wheels have come off. Given that Apache Directory Studio hasn’t been updated in years, when all of a sudden my remote connection to &ellipsisRead the full post »

    Značky: #Networking, #java, #ldap, #Linux

    • chevron_right

      Nginx and LDAP Authentication

      Warlord · pubsub.slavino.sk / warlord0blog · Saturday, 11 July, 2020 - 16:26 edit

    We want a little more control over some of our reverse proxies and wanted to place a little extra burden on the users as possible. To do this we chose to use the same passwords for authentication as we do everywhere else – hence LDAP. Thankfully Nginx have decided to include the module gx_http_auth_request_module in &ellipsisRead the full post »

    Značky: #Linux, #Web, #ldap, #nginx, #Linux

    • chevron_right

      FreeRADIUS and Docker

      Warlord · pubsub.slavino.sk / warlord0blog · Tuesday, 7 July, 2020 - 19:25 edit

    Today I built a FreeRADIUS server within a Docker container set using docker-compose. As we only have a small number of users on the WiFi system it was setup only as a simple SSID with WPA-PSK that gradually gets spread to every man and his dog. Fortunately it only acts as a Guest network and &ellipsisRead the full post »

    Značky: #Linux, #docker, #ldap, #radius, #security, #Linux

    • chevron_right

      Apache Directory Studio and memberOf

      Warlord · pubsub.slavino.sk / warlord0blog · Thursday, 4 June, 2020 - 17:23 edit

    Life got easier after I found this in Apache Directory Studio – edit your connection go to the “Browser Options” tab and tick the Features option at the bottom for “Fetch operational attributes whilst browsing”. It then shows the memberOf attribute for users!

    Značky: #Linux, #Windows, #ldap, #Linux

    • chevron_right

      PAM_LDAP and uniqueMember

      Warlord · pubsub.slavino.sk / warlord0blog · Sunday, 24 May, 2020 - 09:55 edit

    After upgrading the LDAP server so we could make use of some new features like olc and in particular memberOf I ran into a major issue. Where many programs requiring memberOf work just great, Linux id fails to show anything but the primary group membership from the gid attribute. I discovered the problem when trying &ellipsisRead the full post »

    Značky: #Linux, #ldap, #pam, #ssh, #Linux

    • chevron_right

      XMPP server with LDAP and XMPP as an onion service (and a sprint?)

      debacle · pubsub.movim.eu / berlin-xmpp-meetup · Friday, 7 December, 2018 - 09:37

    Berlin XMPP Meetup! Wednesday, 2018-12-12 18:00 CET Searchmetrics, Greifswalder Straße 212 10405 Berlin

    This time, we actually talk about three things!

    Paul will present us two features, many people would like to implement in their XMPP server, LDAP and TOR:

    XMPP server with LDAP

    We will look into some tricks from the enterprises and learn howto connect user accounts for e.g. XMPP, email, and web applications. Example setup with necessary files included!

    XMPP as onion service (mini bonus talk)

    We talk about using services over TOR and learn how to provide an onion service, with Prosody as example.

    Will we organize a sprint in Berlin?

    Last, but not least, there is the idea about organizing an open XMPP sprint on a weekend in March or April, after Chemnitzer Linux-Tage. Who likes to help? Who has ideas? Who has a room? Who would sponsor pizza and Argentinian mate?

    #xmpp #ldap #tor #onion #meetup #berlin #sprint