Project Description

SSH key distribution solution that is in comply with POSIX LDAP requirements and UserDB usernames. The existing LDAP service will be used for the distribution of the SSH keys.

Goal for this Hackweek

Build up the solution as PoC for SSH key distribution that meets requirements for UserDB usernames.

Step by step guide: 1. Backup the existing slapd.conf (on all of the servers), backup LDAP data. 2. Copy the public keys from the mounted user directories locally and sort them by usernames. 3. Configure SSSD by adding required attributes. 4. As it is not a good practice to modify existing schema, will add a new one. 5. SSHD configuration to point to ssssshauthorizedkeys 6. Test client server and check it's configuration

Out of scope

Server side implementation of the privacyIDEA endpoints.

Resources

Looking for hackers with the skills:

ssh key-distribution privacyidea pam packaging

This project is part of:

Hack Week 23

Activity

  • about 1 year ago: kstaneva joined this project.
  • about 1 year ago: uncomfyhalomacro liked this project.
  • about 1 year ago: mkoci joined this project.
  • about 1 year ago: thavel joined this project.
  • about 1 year ago: vgrinco started this project.
  • about 1 year ago: vgrinco added keyword "ssh" to this project.
  • about 1 year ago: vgrinco added keyword "key-distribution" to this project.
  • about 1 year ago: vgrinco added keyword "privacyidea" to this project.
  • about 1 year ago: vgrinco added keyword "pam" to this project.
  • about 1 year ago: vgrinco added keyword "packaging" to this project.
  • about 1 year ago: vgrinco originated this project.

  • Comments

    Be the first to comment!

    Similar Projects

    Packaging Mu on OBS by joeyli

    Description

    Packaging Microsoft Mu project

    Goals

    Packaging Mu RPM on OBS.

    Resources

    https://microsoft.github.io/mu/

    https://github.com/microsoft/mu

    https://github.com/microsoft/mu_basecore

    https://github.com/microsoft/mutianoplatforms

    https://github.com/microsoft/mutianoplus

    https://github.com/microsoft/mu_plus

    Hackweek 22: Look at Microsoft Mu project

    https://hackweek.opensuse.org/22/projects/look-at-microsoft-mu-project

    https://drive.google.com/file/d/1BT31i7z3qh13adj9pdRz3lTUkqIsXvjY/view?usp=drive_link


    Update Haskell ecosystem in Tumbleweed to GHC-9.10.x by psimons

    Description

    We are currently at GHC-9.8.x, which a bit old. So I'd like to take a shot at the latest version of the compiler, GHC-9.10.x. This is gonna be interesting because the new version requires major updates to all kinds of libraries and base packages, which typically means patching lots of packages to make them build again.

    Goals

    Have working builds of GHC-9.10.x and the required Haskell packages in 'devel:languages:haskell` so that we can compile:

    • git-annex
    • pandoc
    • xmonad
    • cabal-install

    Resources

    • https://build.opensuse.org/project/show/devel:languages:haskell/
    • https://github.com/opensuse-haskell/configuration/
    • #discuss-haskell
    • https://www.twitch.tv/peti343


    Framework laptop integration by nkrapp

    Project Description

    Although openSUSE does run on the Framework laptops out-of-the-box, there is still room to improve the experience. The ultimate goal is to get openSUSE on the list of community supported distros

    Goal for this Hackweek

    The goal this year is to at least package all of the soft- and firmware for accessories like the embedded controller, Framework 16 inputmodule and other tools. I already made some progress by packaging the inputmodule control software, but the firmware is still missing

    Resources

    As I only have a Framework laptop 16 and not a 13 I'm looking for people with hardware that can help me test

    Progress:

    Update 1:

    The project lives under my home for now until I can get an independent project on OBS: Framework Laptop project

    Also, the first package is already done, it's the cli for the led-matrix spacer module on the Framework Laptop 16. I am also testing this myself, but any feedback or questions are welcome.

    You can test the package on the Framework 16 by adding this repo and installing the package inputmodule-control

    Update 2:

    I finished packaging the python cli/gui for the inputmodule. It is using a bit of a hack because one of the dependencies (PySimpleGUI) recently switched to a noncommercial license so I cannot ship it. But now you can actually play the games on the led-matrix (the rust package doesn't include controls for the games). I'm also working on the Framework system tools now, which should be more interesting for Framework 13 users.

    You can test the package on the Framework 16 by installing python311-framework16_inputmodule and then running "ledmatrixctl" from the command line.

    Update 3:

    I packaged the framework_tool, a general application for interacting with the system. You can find it some detailed information what it can do here. On my system everything related to the embedded controller functionality doesn't work though, so some help testing and debugging would be appreciated.

    Update 4:

    Today I finished the qmk interface, which gives your cli (and gui) to configure your Framework 16 keyboard. Sadly the Python gui is broken upstream, but I added the qmk_hid package with the cli and from my testing it works well.