Hi
so I have a 5 node cluster and I have just installed ipa - as lxc (3 of them) on the cluster.
Now I am thinking to make the nodes a free-ipa client
if I do this will i be able to use the pam auth with a freeipa user
or do I also need to add an auth realm to proxmox realm
do any permissions flow from proxmox into the cli ..
so user jon smit in free ipa - if they can log in via gui .. and also via ssh - is there any protection from the cli doing an lxc attach to any lxc ...
thinking yes to proxmox gui attach to freeipa - and problem yes to ssh access - then just use sudo on the cli to run any commands ?
so I have a 5 node cluster and I have just installed ipa - as lxc (3 of them) on the cluster.
Now I am thinking to make the nodes a free-ipa client
if I do this will i be able to use the pam auth with a freeipa user
or do I also need to add an auth realm to proxmox realm
do any permissions flow from proxmox into the cli ..
so user jon smit in free ipa - if they can log in via gui .. and also via ssh - is there any protection from the cli doing an lxc attach to any lxc ...
thinking yes to proxmox gui attach to freeipa - and problem yes to ssh access - then just use sudo on the cli to run any commands ?
