Hello!,
We add all our Linux machines under FreeIPA administration (+AD trust) and would like to include over hosts too to achieve:
- no root password is shared to admins
- named users are always used
- password expiration is handled centrally
- HBAC managed centrally
- sudoers managed centrally
Are there any known drawbacks with this configuration?
We add all our Linux machines under FreeIPA administration (+AD trust) and would like to include over hosts too to achieve:
- no root password is shared to admins
- named users are always used
- password expiration is handled centrally
- HBAC managed centrally
- sudoers managed centrally
Are there any known drawbacks with this configuration?