[midPoint] Questions about Unix Resources
Shawn McKinney
smckinney at symas.com
Fri Apr 22 03:27:13 CEST 2016
Hi,
I have been doing some testing lately with the unix resources as described in this document:
https://evolveum.com/blog/provisioning-to-unix-in-5-steps/
And so far it seems to work well.
My question is about the mapping between midpoint and the linux machine. It seems that there is a one-to-one correspondence between a linux machine on the network and the unix resource. That is to say for every new linux machine that must be managed, there must be a new resource that has been loaded into MP.
Is this true? I worry that a very large network could get unwieldy, i.e. 100’s if not 1000’s of machines to manage. Is there a way to establish a unix resource that can be bound to a target IP address at account activation time? That way we just need one unix resource, but it will require input from the user (at the console), to set the IP address of the target machine before activating and adding a new account to that machine.
I suppose this would open a can of worms because you also would need to map the service account to the resource at activation time too. Not sure what other problems would arise with a mapping such as this.
Do these questions make sense, or am I looking at this wrong?
Thanks,
Shawn
More information about the midPoint
mailing list