Translate

Archives

IPA – Indentity Policy Audit 3.1

Identity Policy Audit (IPA) 3.1 was released in recent weeks. IPA is also known as Red Hat Enterprise Identity Management and is part of RHEL6 along with SSSD.

Identify Management (IdM) describes the management of individual identifiers, their authentication, authorization, and privileges within or across system and enterprise boundaries with the goal of increasing security and productivity. If you’re not familiar with IPA, you should become familiar with it. It is basically the IdM for POSIX systems.

This release is significant because it adds Active Directory (AD) trusts and Server 2012 support. You now can run an IPA Domain that is separate from an Active Directory domain, but Kerberos principals (users) can authorize and access Kerberos services (resources) in either domain. Trusts are completely different than just authentication. Trusts allow Kerberos principals in one domain to access resources in another.

Comments are closed.