Taskforce Mobility Mailarchive

Subject	Re: RE: [tf-emc2] Comments please: notes of Beyond Web SSO BoF
From	"Diego R. Lopez" <diego.lopez@xxxxxxxxxx>
Date	Tue, 27 May 2008 23:32:47 +0200


On 27 May 2008, at 19:12, Leif Johansson wrote:

Its a federated interface for ssh key provisioning. I'm curious howhe mapsposix user/group id's on the remote system though - I'm assuming theidp
doesn't get to set those...

Obviously not. The uid/gid have to previously exist at the remotesystem. TheSP extracts both the username and the key to be associated, so it ispossible

to associate each user with a remote account, or a group or users with a
remote account, etc.

There is another user case (and application) for remote accountprovision underdiscussion in CONFIA (the federation in which the SSH system has beendeployed),but this is another story... May be Luis or Dani can tell you more onthis.


Be goode,


--
"Esta vez no fallaremos, Doctor Infierno"

Dr Diego R. Lopez

Red.es - RedIRIS
The Spanish NREN

e-mail: diego.lopez@xxxxxxxxxx
jid:        diego.lopez@xxxxxxxxxx
Tel:    +34 955 056 621
Mobile: +34 669 898 094
-----------------------------------------

References:
- Comments please: notes of Beyond Web SSO BoF
  - From: Josh Howlett
- Re: [tf-emc2] Comments please: notes of Beyond Web SSO BoF
  - From: Diego R . Lopez
- RE: [tf-emc2] Comments please: notes of Beyond Web SSO BoF
  - From: Josh Howlett
- Re: RE: [tf-emc2] Comments please: notes of Beyond Web SSO BoF
  - From: Leif Johansson

Prev by Date: RE: [tf-emc2] Comments please: notes of Beyond Web SSO BoF
Next by Date: eduroam tech workshop held in Sydney today
Previous by thread: Re: RE: [tf-emc2] Comments please: notes of Beyond Web SSO BoF
Next by thread: RE: [tf-emc2] Comments please: notes of Beyond Web SSO BoF
Index(es):
- Date
- Thread