[Midpoint-dev] Support remote SSH on AD LDAP connector

Radovan Semancik radovan.semancik at evolveum.com
Mon Jan 13 10:04:06 UTC 2020


We are planning an ability to combine connectors. E.g. combine AD and 
SSH connector to get AD connector with SSH ability. But this is 
something for a longer run. In 4.1 we will probably split AD and 
powershell into two connectors. And the question is when the SSH 
connector will be created (e.g. separated from UNIX connector). That is 
not in the roadmap yet.

Radovan Semancik
Software Architect

On 1/11/20 3:58 PM, Davy Priem wrote:
> Hi,
> I would normally make a jira issue for this, but seems I’m no longer 
> allowed to do so (error 403 after clicking on create - tried firefox 
> and safari). I have following improvement suggestion:
> The current AD connector has currently some limitations (eg preventing 
> a user to change his password directly on AD instead of using 
> midpoint, exchange stuff,...) that can be bypassed by using powershell 
> over winrm. Experience learns that troubleshooting this is quite 
> difficult. (famous /WinRM cannot process the request/.that does not 
> say anything). Since Windows Server 2019 it's also possible to use SSH 
> for remote management (see 
> https://docs.microsoft.com/en-us/windows-server/administration/openssh/openssh_install_firstuse) 
>  You can even choose the default shell you get (cmd.exe, powershell 
> and even bash). It would be nice if the connector would support ssh 
> (like powerhell and keep connection open from a performance 
> perspective) for resource scripting.
> Best regards
> Davy Priem
> _______________________________________________
> midPoint-dev mailing list
> midPoint-dev at lists.evolveum.com
> http://lists.evolveum.com/mailman/listinfo/midpoint-dev

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.evolveum.com/pipermail/midpoint-dev/attachments/20200113/8d0b28db/attachment.html>

More information about the midPoint-dev mailing list