Project

General

Profile

Story #3808

Remove single point LDAP failure dependency for authentication

Added by Dave Vieglais almost 11 years ago. Updated over 5 years ago.

Status:
Rejected
Priority:
High
Assignee:
Dave Vieglais
Category:
Support Operations
Target version:
Maintenance Backlog
Start date:
2014-10-01
Due date:
2014-10-01
% Done:

0%

Story Points:
Sprint:
Infrastructure backlog

Description

The DataONE project is currently dependent on a single LDAP instance for account management on web sites (e.g. redmine, ask, notebooks, docs) and SSH access to most servers.

The goal of this story is to ensure that account management, particularly authentication is not impacted by a single source failure. There are a few (non-exclusive) options for this:

  1. For key services, enable local accounts that to ensure that a privileged user may login to perform administrative actions.

  2. Move the LDAP service to a HA environment

  3. Augment the existing infrastructure with HA capabilities

History

#1 Updated by Dave Vieglais over 9 years ago

  • Due date set to 2014-10-01
  • Target version set to Maintenance Backlog
  • Start date set to 2014-10-01

#2 Updated by Dave Vieglais over 6 years ago

  • Sprint set to Infrastructure backlog

#3 Updated by Dave Vieglais over 5 years ago

  • Status changed from New to Rejected

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 14.8 MB)