Kerberos authentication for Git server?

git kerberos single-sign-on
5,225

Solution 1

Author of out-of-date project here; your best bet is to configure SSH to accept kerberos tickets for authentication -- it's straightforward and well documented across the internet.

If that doesn't meet your requirements for whatever reason, you could fall back to using git-http-backend to serve git over http{,s}, and then apache's mod_auth_kerb to authenticate access to that. I've had success with this, but it's fiddly to set up.

(mod_auth_kerb is libapache-mod-auth-kerb on ubuntu, git comes with git-http-backend)

Solution 2

You can make the server user SSH with kerberos (just google for kerberos and SSH) and then git also will work with those kerberos users when you user git+ssh.

Share:
5,225

Related videos on Youtube

Nicolas Raoul
Author by

Nicolas Raoul

I am Nicolas Raoul, IT consultant in Tokyo. Feel free to copy/paste the source code from my StackExchange answers, I release it to the public domain.

Updated on September 18, 2022

Comments

  • Nicolas Raoul
    Nicolas Raoul over 1 year

    I have a Git server, and I want to make it usable by all Kerberos-logged users.

    eg: if a user has a valid Kerberos ticket, she can start pushing to Git without having to provide any username/password.

    Is it even possible to do this with Git?
    All I could find was this old unanswered question on the Git mailing list (with http://), and this project that says it is out-of-date (with git://).

    Server is on Ubuntu 2012.10, but I could move it to Windows Server 2012 if necessary.
    I can dictate which software to use on client-side.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to get Service Token from Kerberos using SSPI
kerberos request ticket server not found in keytab
Apache 2.2 mod_auth_kerb SSO stopped working
Fallback authentication if mod_auth_kerb fails
SSO with Apache and Kerberos issues
problems creating a keytab file on win server
Apache2, Kerberos: gss_accept_sec_context() failed: An unsupported mechanism was requested
How to force kerberos to use in memory credential cache?
MIT Kerberos keeps asking for password when authenticating to OpenSSH
Apache mod_auth_kerb and LDAP user groups