SUMMARY: Question managing common and unique users over several d ifferent groups of Unix servers

From: O'Brien, Pat <pobrien_at_mitidata.com>
Date: Tue, 12 Jun 2001 08:15:13 -0400

Thank you to replies. The concensus was try kerberos and LDAP. Was think
kerberos, and will down load and attempt to get running. Everyone who
suggested kerberos also stated difficult install.

The high level view of my systems are many groups of systems (pods)
dedicated to individual customers. Each customer has a minimum of 3 high-end
servers in their respective pod, and a dedicated network connection to their
respective locations. The user population consists of a core group of
employee's who prepare the data for the customers. Our employees need
access to all systems managed. Each customer has a group of employee's who
utilize at least 2 of their 3 or more systems.

The current solution is a NIS master & slave within each pod. This
arrangement has worked in the past, but continues to become more difficult
to manage as we grow and add additional customers. Our customers demand
high security, and is the main reason we have not consolidated to a single
NIS Master & Slave servers. This is also why we have been implementing
C2(Enhanced) security within some pods. We are mainly a Compaq Tru64 Unix
shop with a splattering of Solaris on Sparc.

Having worked on several platforms, I am aware other vendors have
hierarchical NIS servers, but I know this is not in the plans for Tru64. I
am looking for a Tru64 solution which will allow me to centralize
authentication of my employees across all pods, but will allow sub groups of
customers similar to hierarchical NIS within a local pod. Does anyone here
have a recomendation/solution to simplify managing user accounts?
Received on Tue Jun 12 2001 - 12:17:01 NZST

This archive was generated by hypermail 2.4.0 : Wed Nov 08 2023 - 11:53:42 NZDT