cipher.googlepam

Google PAM Module
Download

cipher.googlepam Ranking & Summary

Advertisement

  • Rating:
  • License:
  • Other/Proprietary Li...
  • Price:
  • FREE
  • Publisher Name:
  • Stephan Richter
  • Publisher web site:
  • http://zope.org

cipher.googlepam Tags


cipher.googlepam Description

cipher.googlepam is a Python module that implements a Python PAM module to authenticate users against a Google domain. The following features are provided:- Select any Google domain.- Allow only users from a certain group.- A script to install all Google users as system users.- Password caching using files or memcached.- Advanced logging setup.The code was inspired by the python_pam.so examples and the TracGoogleAppsAuthPlugin trac authentication plugin.Configuring Google PAM on Ubuntu 12.04 LTS1. Install a few required packages: # apt-get install python-setuptools python-gdata python-bcrypt \ python-memcache libpam-python2. Now install cipher.googlepam using easy install: # easy_install cipher.googlepam3. Add all users to the system: # add-google-users -v -d < domain > -u < admin-user > -p < admin-pwd > \ -g < google-group > -a < system-admin-group > Note: Use the -h option to discover all options.4. Create a /etc/pam_google.conf configuration file: domain=< domain > admin-username=< admin-user > admin-password=< admin-pwd > group=< google-group > excludes = root prompt = Google Password: cache = file|memcache file = /var/lib/pam_google/user-cache lifespan = 1800 key-prefix = googlepam. host = 127.0.0.1 port = 11211 debug = false lifespan = 1800 keys = root, pam handlers = file level = INFO qualname = cipher.googlepam.PAM handlers = file propagate = 0 level = INFO keys = file class = logging.handlers.RotatingFileHandler args = ('/var/log/pam-google.log', 'a', 10*1024*1024, 5) formatter = simple keys = simple format = %(asctime)s %(levelname)s - %(message)s datefmt = %Y-%m-%dT%H:%M:%S5. Hide contents of the config file from the curious users: # chmod 600 /etc/pam_google.conf6. Put the Google PAM module in a sensible location: # ln -s /usr/local/lib/python2.7/dist-packages/cipher.googlepam-< version >-py2.7.egg/cipher/googlepam/pam_google.py /lib/security/pam_google.py7. Enable pam_google for all authentication. Add the following rule as the first rule in file /etc/pam.d/common-auth: auth sufficient pam_python.so /lib/security/pam_google.py -c /etc/pam_google.confProduct's homepage


cipher.googlepam Related Software

About SoftwareSea