Project

General

Profile

Story #3808

Remove single point LDAP failure dependency for authentication

Added by Dave Vieglais over 8 years ago. Updated almost 3 years ago.

Status:
Rejected
Priority:
High
Assignee:
Category:
Support Operations
Target version:
Start date:
2014-10-01
Due date:
2014-10-01
% Done:

0%

Story Points:

Description

The DataONE project is currently dependent on a single LDAP instance for account management on web sites (e.g. redmine, ask, notebooks, docs) and SSH access to most servers.

The goal of this story is to ensure that account management, particularly authentication is not impacted by a single source failure. There are a few (non-exclusive) options for this:

  1. For key services, enable local accounts that to ensure that a privileged user may login to perform administrative actions.

  2. Move the LDAP service to a HA environment

  3. Augment the existing infrastructure with HA capabilities

History

#1 Updated by Dave Vieglais about 7 years ago

  • Due date set to 2014-10-01
  • Target version set to Maintenance Backlog
  • Start date set to 2014-10-01

#2 Updated by Dave Vieglais almost 4 years ago

  • Sprint set to Infrastructure backlog

#3 Updated by Dave Vieglais almost 3 years ago

  • Status changed from New to Rejected

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 14.8 MB)