Centrify - Securing the Cross Platform Data Center

Express Tips and Tricks

turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Article Options

How to: Set Up a Centrify-Managed System for Stock SSH

by Centrify on 06-22-2010 01:06 PM

The Centrify DirectControl package automatically installs Centrify's enhanced version of OpenSSH. However, you can configure the system to use stock SSH instead with the few simple steps demonstrated in this video.

 

 

0 Kudos
Comments
by sapg on 10-11-2011 02:23 AM
Options

This information would be better as simple text, it is a little awkward as a video.

0 Kudos
by sapg on 10-11-2011 02:26 AM
Options

I'm actually looking for the documentation on making passwordless SSH work with kerberos.

0 Kudos
by Centrify on 10-11-2011 02:31 PM
Options

First of all make sure the stock OpenSSH running on the machine does indeed have support for Kerberos by running the following command:


ldd /usr/sbin/sshd | grep -i kerberos

If the command returns no output then stock OpenSSH doesn't have the support. If it does proceed further to configure ssh server and ssh client for GSSAPI.

Edit sshd_config and set the following parameters:

GSSAPIKeyExchange yes
GSSAPIAuthentication yes
GSSAPICleanupCredentials yes

Restart the sshd server.

Edit ssh_config and set the following parameters:

GSSAPIAuthentication yes

 

------

 

if you have further questions, please open a new post under OpenSSH message board

 

Thanks

Sumana

Copyright © 2004-2012 Centrify Corporation.   Terms of Use  |   Privacy Policy