Feature #11936
Support kerberized SSH as an alternative to keys
Status:
Closed
Priority:
Normal
Assignee:
Category:
-
Target version:
Difficulty:
Triaged:
Bugzilla link:
Description
It'd be relatively easy for the proxy to use the existing krb5 infrastructure (used by GSS-TSIG DNS updates and Realm) as an optional alternative to SSH keys.
Related issues
Associated revisions
Fixes #11936 - Add settings for kerberos auth
History
#1
Updated by Stephen Benjamin over 7 years ago
- Tracker changed from Bug to Feature
#2
Updated by Stephen Benjamin over 6 years ago
- Has duplicate Feature #15946: kerberos authentication added
#3
Updated by Daniel Lobato Garcia over 6 years ago
It would be useful to be able to assign the keytab to each job invocation / and provide a default keytab per template.
#4
Updated by Daniel Lobato Garcia over 6 years ago
- Bugzilla link set to 1386266
#5
Updated by Ivan Necas over 5 years ago
- Target version set to 1.13.1
Assigning for iteration 14 although it will probably skip to iteration 15. It seems https://github.com/cbeer/net-ssh-kerberos should be relatively straight forward to use. The majority of the work (I hope) should be around packaging, testing and documentation.
#6
Updated by The Foreman Bot over 5 years ago
- Status changed from New to Ready For Testing
- Assignee set to Adam Ruzicka
- Pull request https://github.com/theforeman/foreman_remote_execution/pull/250 added
#7
Updated by Adam Ruzicka over 5 years ago
- Related to Bug #19918: Allow enabling kerberos auth for REX added
#8
Updated by The Foreman Bot over 5 years ago
- Pull request https://github.com/theforeman/smart_proxy_remote_execution_ssh/pull/33 added
#9
Updated by Anonymous over 5 years ago
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
Applied in changeset foreman_plugin|38635460eaa6b50925da522279473fee44c17cab.
#10
Updated by Ivan Necas over 5 years ago
- Legacy Backlogs Release (now unused) set to 280
Fixes #11936 - Allow authenticating with kerberos