[Ovirt-devel] ovirt dependencies

Daniel P. Berrange berrange at redhat.com
Tue Mar 4 14:43:18 UTC 2008


On Thu, Feb 28, 2008 at 11:35:11PM -0500, Scott Seago wrote:
> Daniel P. Berrange wrote:
> >On Thu, Feb 28, 2008 at 06:31:28PM +0000, Richard W.M. Jones wrote:
> >It is a shame we can't leverage libvirt's other auth schemes though, since
> >that allows TLS/x509 certs, and even  plain username+password auth. 
> >Supporting
> >this though has implications for policy management / group management, 
> >since
> >we had intended to push this all off to FreeIPA too.
> >
> >Dan.
> >  
> Any chance of FreeIPA supporting other auth schemes directly? Then we 
> could just use those too. Is this on the roadmap, or is the plan to be 
> "all kerberos, all the time"

There's stuff on the roadmap to provide x509 certificate management. When
that gets there, we could use TLS/SSL in libvirt with x509 certs, and the
LDAP plain text auth Simo mentions.

Dan.
-- 
|=- Red Hat, Engineering, Emerging Technologies, Boston.  +1 978 392 2496 -=|
|=-           Perl modules: http://search.cpan.org/~danberr/              -=|
|=-               Projects: http://freshmeat.net/~danielpb/               -=|
|=-  GnuPG: 7D3B9505   F3C9 553F A1DA 4AC2 5648 23C1 B3DF F742 7D3B 9505  -=| 




More information about the ovirt-devel mailing list