Hi, Cyrus via FreeIPA-users <freeipa-users@lists.fedorahosted.org> writes:
> Anybody uses FreeIPA for home laptops?. My use case includes 3 family > members with laptops running openSUSE/KDE used inside and outside my home. Almost the same here. The laptops are used mostly inside the home, but there are frequent travels. > Back in the day, with LDAP it only would be unthinkable to have seldom > connected clients (everything would block when LDAP server was missing). > > sssd should solve caching when FreeIPA is unreachable, also thought about > using Zerotier to connect clients and server more frequently. sssd solves the credential problem nicely. My laptop is configured to connect to my wireguard VPN iff it is in a foreign network and has connectivity (e.g. no captive portal). With that I also get a kerberos ticket. Formerly I used openconnect and kdcproxy, but that stopped working as simple as it was (sssd goes ofline because LDAP is not reachable and doesn't get a TGT even if it would work...) I do use a local /home/<user> and autofs/NFS to accedd central storage at another path. Jochen -- This space is intentionally left blank. -- _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
