Skip navigation

Console(ssh) LDAP authentication for users with sudo rights to tideway

score 140
You have not voted. Product Team Review

Hello,

 

I suggest enabling an integration with AD for ssh authentication to have a better control  and audit of administrators and not share the tideway password among multiple persons.

This is a security breach and I believe in the future security teams will not allow multiple users to use the same account for administration activities.

 

I would see a high level implementation this way:

-enable AD integration

-disable remote logins for all local accounts, including tideway

-grant sudo rights towards tideway for LDAP users.

Comments

Vote history