We are looking at deploying Kerberos for better user management (SSO)
and 2 factor authentication via pkcs#11 etokens. The servers are all
FreeBSD and the machines principals will login from a mix of FreeBSD,
Windows and MAC OSX using ssh and openvpn. As part of our compliance
project, access must be 2 factor. The Heimdal in RELENG_7 is a
rather old version and doesnt seem to have all the bits needed for
x509 pre-auth so I would probably need to install from the ports
anyways. Does anyone have any suggestions as to which
implementation to use ? We are in Canada so it doesnt matter
regulation wise. Is one better maintained than the other ? There are
no legacy v4 apps
Thanks,
---Mike
--------------------------------------------------------------------
Mike Tancsa, tel +1 519 651 3400
Sentex Communications, [EMAIL PROTECTED]
Providing Internet since 1994 www.sentex.net
Cambridge, Ontario Canada www.sentex.net/mike
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
