Hi all
I am trying to find the best/proven/preferred solution for a roaming profile equivalence on FreeBSD. The goal is to have a centralised authentication but still be able to log in when a network connection is unavailable.
In the Windows world there are roaming profiles. On FreeBSD one could now mimic the solution using Samba 4. And then, there is SSSD. I have however some difficulties with these solutions:
What I need is:
Thanks in advance for every input!
I am trying to find the best/proven/preferred solution for a roaming profile equivalence on FreeBSD. The goal is to have a centralised authentication but still be able to log in when a network connection is unavailable.
In the Windows world there are roaming profiles. On FreeBSD one could now mimic the solution using Samba 4. And then, there is SSSD. I have however some difficulties with these solutions:
- Samba is a kind of alien in the Unix world, trying to teach Linux/FreeBSD to speak a "foreign language". I prefer to base the home directories on NFS rather than SMB and the authentication on OpenLDAP with Kerberos.
- The FreeBSD port of SSSD seems abandoned at version 1.6 where the current one is 1.10. Furthermore it introduces another layer of complexity and stuff to learn and care of.
What I need is:
- caching of login credentials (i.e. username and password hash)
- home directory synchronisation (probably with rsync?)
- VPN or other kind of end-to-end encryption to the server
Thanks in advance for every input!