Your browser doesn't support the features required by impress.js, so you are presented with a simplified version of this presentation.

For the best experience please use the latest Chrome, Safari or Firefox browser.

Patrick Regan
Identity
Policy
Audit
Is this possible under Linux?
Yes...
Linux
389 Directory Server
(LDAP)

MIT Kerberos
NTP
DNS
Dogtag Certificate System
Enter FreeIPA

FreeIPA!

  • From The Documentation.

    At the most basic level, FreeIPA is a domain controller for Linux and Unix machines. FreeIPA defines the domain, using controlling servers and enrolled client machines. This provides centralized structure that has previously been unavailable to Linux/Unix environments, and it does it using native Linux applications and protocols.

  • In other words, it simplifies the managment of all of these different services.

How?
Restriction of Choice

Restriction!

But that's bad right?

  • By abstracting away a lot of the 'extra' features given by each component, you make it easier and quicker to set up a great identity service

What do I get out of it?

A lot of features. See for yourself:

389 Directory Server
(LDAP)
MIT Kerberos
NTP
DNS
Certificate System
(Dogtag)
SSSD
System Security
Services Daemon
Single Sign On
Multi-Master Replication
Trans-Realm Trust
Auto-Mount
SELinux Integration
And so much
More!
Demo

Sources

This presentation was created with Strut an open source html based slide editor.

Creative Commons License
FreeIPA by Patrick Regan is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
Based on a work at http://www.patrickregan.org/presentations/freeipa.html.

Use a spacebar or arrow keys to navigate