Re: [Rdo-list] Fwd: RDO with Red Hat IDM
On 06/14/2013 06:23 PM, Michael Solberg wrote:
On 06/14/2013 02:40 PM, Dave Neary wrote:
> Hi Michael,
>
> How is IDM integration different from FreeIPA integrations?
I don't have a lot of experience with FreeIPA, but I'd imagine that
they're very similar - perhaps identical, depending on how far IdM
lags upstream.
Fairly identical.
Upstream FreeIPA has support for cross realm trusts, which is a preetty
high demand item: users in the corporate LDAP can authenticate against
it instead of having to have an entry in a local FreeIPA server. One of
the most high demand items in IdM development. I still haven't quite
figured out what the Keystone integration with this will require. It
might mess things up if there is no user record in LDAP, but I think
that there is a lazy-load placeholder for users and group lists.
Michael.
> On 06/13/2013 10:57 PM, Michael Solberg wrote:
>> On 06/13/2013 04:20 PM, Dave Neary wrote:
>>> Hi,
>>>
>>> Yes! Please create a page in the wiki and link to it from
>>> http://openstack.redhat.com/Troubleshooting please.
>>
>> It could probably use some editing, but it's a start:
>>
>> http://openstack.redhat.com/KeystoneIDMIntegration
>>
>> It'd be nice to go into how to set up SSL and PKI for the various
>> services.
>>
>> Michael.
>>
>> _______________________________________________
>> Rdo-list mailing list
>> Rdo-list(a)redhat.com
>> https://www.redhat.com/mailman/listinfo/rdo-list
>