Skip to content
This repository has been archived by the owner on Mar 29, 2022. It is now read-only.

kofemann/opendj-kpa-auth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits

ext

ext

 
 

lib

lib

 
 

resource

resource

 
 

src

src

 
 

README.md

README.md

 
 

build.xml

build.xml

 
 

Repository files navigation

Rpository is archived. Concider alternative opendj-kpa

This is an OpenDJ authentication policy plugin for users whose credentials are managed by an external Kerberos realm.

Requirements

  1. Java sdk 1.6 or above
  2. Apache ANT
  3. OpenDJ installation

Build and Install

  1. build and install the extention
```$ ant -Dopends.install.dir=/path/to/opendj install```
  1. restart the server
```$ bin/stop-ds --restart```
  1. configure the pass-through for kerberos
```
$ bin/dsconfig -X create-password-policy \
   --type kerberos-pass-through \
   --policy-name "Krb5 Pass Through" \
   --set krb5-realm:EXAMPLE.COM \
   --set mapped-attribute:uid
 ```
  1. assign pass-through authentication to users
You assign authentication policies in the same way as you assign password
policies, by using the ***ds-pwp-password-policy-dn*** attribute:
```ds-pwp-password-policy-dn: cn=Krb5 Pass Through,cn=Password Policies,cn=config```

Users depending on pass through authentication no longer need a local password policy,
as they no longer authenticate locally.

More Info

Configuring Pass Through Authentication

About

Kerberos Pass-Through Authentication for OpenDJ

Resources

Readme
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Contributors 2

  •  
  •  

Languages