[Freeipa-users] Jabber services for IPA
Dale Macartney
dale at themacartneyclan.com
Thu Feb 9 16:24:16 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hey Erin
that would be fantastic, thanks very much.
I have to admit, i had a bit of a chuckle re: your comment of kerberos
acting in the event of no password. I would have *never* thought of that
haha.
Dale
On 02/09/2012 04:01 PM, Erinn Looney-Triggs wrote:
> On 02/09/2012 06:48 AM, Dale Macartney wrote:
>>
>> Morning all
>>
>> I have a working setup of ejabberd authenticated to pam on an IPA client
>> which works great.. However, unlike my other projects to provide
>> details of integration with IPA, I am struggling with the SSO aspect of
>> it, simply because of a lack of knowledge of jabber packages. (Currently
>> I have used ejabberd and pidgin for testing, and from an end user view
>> point, there doesn't appear to be an option to select kerberos to
>> authenticate with).
>>
>> My goal, like other services is to tap *a* jabber service (can be
>> anything) into ipa for single sign on.
>>
>> What is the general feeling in the community around jabber in the
>> enterprise? (Useful or not? Best practices?)
>> What is your preferred jabber software (server and client would be handy
>> to know for testing) and why?
>> Does it support GSSAPI?
>>
>> Many thanks
>>
>> Dale
>>
>>
>>
>>
>> _______________________________________________
>> Freeipa-users mailing list
>> Freeipa-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/freeipa-users
>
> Dale,
> I built a setup using openfire (the IM server) that utilized kerberos.
> It is slightly tricky unfortunately, kerberos has been the realm of
> universities and big business for a long time so a lot of things are not
> straight forward.
>
> Pidgin does natively support kerberos so you can use that easily, the
> way to use kerberos in pidgin is simply not to provide it with any
> password info, it will try kerberos in the process. This works both on
> windows (using kfw) and linux systems, probably macs too, but I have
> never tested it on macs.
>
> I will see if I can dig up some notes from configuring openfire.
>
> -Erinn
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/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=d5Wc
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0xB5B41FAA.asc
Type: application/pgp-keys
Size: 5790 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120209/a1b03723/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0xB5B41FAA.asc.sig
Type: application/pgp-signature
Size: 543 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120209/a1b03723/attachment.sig>
More information about the Freeipa-users
mailing list