Projects

Samba

Samba is an Open Source/Free Software suite that provides file and print services to all manner of SMB/CIFS clients, including the numerous versions of Microsoft Windows operating systems.

Kerberos

Kerberos is a network authentication protocol. It is designed to provide strong authentication for client/server applications by using secret-key cryptography.

OpenAFS

AFS is a distributed filesystem product, pioneered at Carnegie Mellon University and supported and developed as a product by Transarc Corporation (now IBM Pittsburgh Labs). It offers a client-server architecture for file sharing, providing location independence, scalability, security, and ... [More] transparent migration capabilities for data. IBM branched the source of the AFS product, and made a copy of the source available for community development and maintenance. They called the release OpenAFS. [Less]

Heimdal Kerberos

Heimdal is an implementation of Kerberos 5, largely written in Sweden (which was important when we started writing it, less so now). It is freely available under a three clause BSD style license.

LemonLDAP::NG Web-SSO

Lemonldap::NG is a modular Web-SSO based on Apache::Session modules. It simplifies the build of a protected area with a few changes in the application. It manages both authentication and authorization and provides headers for accounting. So you can have a full AAA protection for your web space as ... [More] described below. Lemonldap::NG is a complete rewrite of Lemonldap. All components needed to use it and to aminister it are included in the tarball. Contrary, all modules developed for Lemonldap may not work with Lemonldap::NG. [Less]

FreeIPA

FreeIPA is an integrated solution which combines the following technologies: * 389 Directory Server * MIT Kerberos * NTP * DNS * Web and command-line provisioning and administration tools

Network Identity Manager

Network Identity Manager (NetIdMgr) allows end users to manage multiple network identifies from within a single easy to use interface. NetIdMgr is extensible, enabling organizations to add support for various types of identification providers and the ability to derive new forms from the user's ... [More] initial credentials. For example, MIT Kerberos for Windows 3.0 and future versions of OpenAFS for Windows use NetIdMgr with a Kerberos 5 identity provider. Credential provider plug-ins for Kerberos 5 and Kerberos 4 tickets manage the identification properties as well as the ticket acquisition and renewal process. A credential provider plug-in for AFS tokens is distributed by the OpenAFS project. A credential provider for kx509/kca certificates is distributed by the KCACred project. [Less]

Shishi

A free Kerberos V5 implementation.

Yafc

Yafc is an OpenSource console mode FTP client. It has support for Kerberos 4/5 authentication and sftp (ssh2). Other features include tab completion, directory cache, powerful aliases, recursive file commands and bookmarks with autologin.

pam-krb5

pam-krb5 is a Kerberos v5 PAM module for either MIT Kerberos or Heimdal. It supports ticket refreshing by screen savers, configurable authorization handling, authentication of non-local accounts for network services, password changing, and password expiration, as well as all the standard expected ... [More] PAM features. It works correctly with OpenSSH, even with ChallengeResponseAuthentication and PrivilegeSeparation enabled, and supports configuration either by PAM options or in krb5.conf or both. This is the package in Gentoo named sys-auth/pam_krb5. [Less]