Pluggable Authentication (Pluggable AUTH)
As a Server Administrator, I want Pluggable Authentication, so that customers can login via LDAP PAM or any other method.
It would be really nice to have WHM utilise something like PAM (for flexibility) or some other native ability to use user databases outside /etc/shadow and /etc/passwd which are hardcoded in at the moment (PwCache.pm). A native RADIUS or LDAP client would suffice but using PAM would probably be smarter to allow flexibility and avoid reinventing the wheel.
This is a feature that has been migrated over from the cPanel Forums. All previous comments and discussions concerning this feature can be located at:
I like this idea 
cPanel, WebHost Manager and WHM are registered trademarks of cPanel, L.L.C. for providing its computer software that facilitates the management and configuration of Internet web servers.
We implemented OIDC in version 54, which can be read about here:
https://documentation.cpanel.net/display/ALD/54+Release+Notes#id-54ReleaseNotes-Externalauthentication
We implemented OIDC in version 54, which can be read about here:
https://documentation.cpanel.net/display/ALD/54+Release+Notes#id-54ReleaseNotes-Externalauthentication
This would be a great function to enhance security. The original thread has some interest (11 yes votes in the poll) and i cannot believe this has taken over 3 years to develop when the original ETA was scheduled for 11.34 which was already released and we are currently on 11.36
The last update moved it down to 11.36 over a year ago ( http://forums.cpanel.net/f145/whm-pam-ldap-radius-authentication-pluggable-authentication-case-39461-a-154665-p2.html#post958341 ) and still there is no news.
As stated int he thread this is a requirement for PCI compliance and would be a great selling point for cPanel.
This would be a great function to enhance security. The original thread has some interest (11 yes votes in the poll) and i cannot believe this has taken over 3 years to develop when the original ETA was scheduled for 11.34 which was already released and we are currently on 11.36
The last update moved it down to 11.36 over a year ago ( http://forums.cpanel.net/f145/whm-pam-ldap-radius-authentication-pluggable-authentication-case-39461-a-154665-p2.html#post958341 ) and still there is no news.
As stated int he thread this is a requirement for PCI compliance and would be a great selling point for cPanel.
Hi everyone, will this be what I need too? Where do I vote for it?
I got to this threat while getting ready to post for a feature request for CPANEL-LDAP integration.
We are working with owncloud and would like to integrate CPanel users with it, it seem like LDAP will do it is just that... it seams like CPanel does not works with LDAP.
Am I on the right threat or should I still post my own feature request?
Thank you all...
Ricardo.
Hi everyone, will this be what I need too? Where do I vote for it?
I got to this threat while getting ready to post for a feature request for CPANEL-LDAP integration.
We are working with owncloud and would like to integrate CPanel users with it, it seem like LDAP will do it is just that... it seams like CPanel does not works with LDAP.
Am I on the right threat or should I still post my own feature request?
Thank you all...
Ricardo.
I'd be fine with a OAuth-type system as well.
I'd be fine with a OAuth-type system as well.
We have multiple cPanel servers, and it would be great to have central security admin.
We have multiple cPanel servers, and it would be great to have central security admin.
Manage hundred of root passwords is not an easy and secure job, this will help a lot
Manage hundred of root passwords is not an easy and secure job, this will help a lot
Hello,
I just came accross a post on your forums a few years ago that said pluggable authentication was a main feature in an upcomming version (11.34), didn't this make it ?
I'm looking to enforce yubikey authentication for all WHM connections (not cPanel ones) and need a way to create my own plugin and a way to enforce the usage of my plugin for authentication.
Hello,
I just came accross a post on your forums a few years ago that said pluggable authentication was a main feature in an upcomming version (11.34), didn't this make it ?
I'm looking to enforce yubikey authentication for all WHM connections (not cPanel ones) and need a way to create my own plugin and a way to enforce the usage of my plugin for authentication.
Count me in! At Princeton University we would like all systems to authenticate with our Central Authentication Service (CAS).
Dave Herrington
DAS Manager
Princeton University
Count me in! At Princeton University we would like all systems to authenticate with our Central Authentication Service (CAS).
Dave Herrington
DAS Manager
Princeton University
I'm in full agreement here, this is an absolutely essential feature for todays environment
I'm in full agreement here, this is an absolutely essential feature for todays environment
We have recently migrated to WHM 11.42 ... is this feature available yet? It's sorely required ... please let me know where on the roadmap it is.
We have recently migrated to WHM 11.42 ... is this feature available yet? It's sorely required ... please let me know where on the roadmap it is.
Unfortunately the lack of support for this feature is a show stopper for us. We are currently rebuilding our backend infrastructure and would have liked to have incorporated cPanel into the mix.
Unfortunately the lack of support for this feature is a show stopper for us. We are currently rebuilding our backend infrastructure and would have liked to have incorporated cPanel into the mix.
This is being worked on for 11.50 as it is one of the pre-requisites for Two Factor authentication.
This is being worked on for 11.50 as it is one of the pre-requisites for Two Factor authentication.
Cross-referencing related feature request about 2FA, for which this issue is a prerequisite:
https://features.cpanel.net/topic/two-factor-authentication-is-a-must
Cross-referencing related feature request about 2FA, for which this issue is a prerequisite:
https://features.cpanel.net/topic/two-factor-authentication-is-a-must
We implemented OIDC in version 54, which can be read about here:
https://documentation.cpanel.net/display/ALD/54+Release+Notes#id-54ReleaseNotes-Externalauthentication
We implemented OIDC in version 54, which can be read about here:
https://documentation.cpanel.net/display/ALD/54+Release+Notes#id-54ReleaseNotes-Externalauthentication
Replies have been locked on this page!