Sure, that would work too, but it does not do Single- Sign- On (SSO). I (my
users) didn't want to have to enter the password of the user twice ;)
That way, the whole login after Client- Logon is just pressing buttons.
On the other Hand its worth to mention: be very carefuly with LDAP as FreeIPA
Interesting, I've had no issue with just using the Nextcloud LDAP plugin
to auth directly to FreeIPA without any addtional stuff. it's just
worked. I use Nextcloud in FreeBSD - so no docker for that. And i use
FreeIPA in as stock a form as possible to prevent issues on upgrades -
done in Rock
For anyone having the same problem - i now solved it like this:
1. Install FreeIPA in Docker
2. Create a User in FreeIPA
3. Client with SSSD + Kerberos and ipa-client integrated to the Domain -> User
can logon to the client as described above
4. Set up Authentik as Docker - Version 10/2024 has Ker
On 2024-10-09 20:35, Daniel Pätzold via FreeIPA-users wrote:
Hello, i have setup Freeipa (on Docker) and was able to logon via pam /
SSSD on some host. Klist shows a valid Ticket and in Firefox i am able
to log into FreeIPAs WebUI using SSO/Kerberos as the User i am logged
in.
I would like
