AnsweredAssumed Answered

Automatically login towards a Linux host using a Kerberos ticket

Question asked by borpe02 Employee on Mar 28, 2017
Latest reply on Mar 29, 2017 by mulan04

Hi,

customer currently has Quest (Dell) Authenticaion Services installed on their Linux servers (works similar to CA PIM UNAB). They want CA PAM to work in conjunction with Quest (Dell) Authenticaion Services in the following way:

 

1. User log into his Laptop using a smart-card authentication towards AD and hence receives a Kerberos ticket.

2. The user launches CA PAM UI

3. Via the PAM UI the user access a Linux system (using access method SSH) and is automatically logged in using the Kerberos ticket that was received in step 1. I.e. the PAM client need to be able to transfer the Kerberos ticket down to the Linux server.

 

Is this a working scenario?

 

Regards

Per

Outcomes