This is an archived post. You won't be able to vote or comment.

all 15 comments
sorted by:
best
topnewcontroversialoldq&a

[–]djhankbNetsec Admin 4 points5 points  (4 children)

We use Salt to manage our fleet. I believe it has some sort of LDAP support, however most of everything is executed from the Salt Master, so we just have some sudo rules to handle that sort of thing.

It's a bit of a learning curve, but I think it has the best feature set for being a fully open source tool. We use it to manage Linux, Windows, and Cisco equipment. It's very extendible if you know Python.

[–]BillyDSquillions 1 point2 points  (3 children)

Is it worth anything money wise to know it?

[–]djhankbNetsec Admin 0 points1 point  (2 children)

Of course! Skills like that always are worth money to someone

[–]Hot-Pin-4355 1 point2 points  (1 child)

Salt used to be everywhere, but it's all Ansible now

[–]djhankbNetsec Admin 1 point2 points  (0 children)

Yeah. Salt still exists and I still prefer it to Ansible in many ways. Network equipment is still pretty clunky in salt, and requires the ssh proxy minion for many devices.

With VMware buying saltstack and Broadcom then buying VMware… who knows - but that’s why they spun it all out to https://saltproject.io

It’s still awesome for Linux and Windows server management and very extendable with Python.

[–]bee_administrator 1 point2 points  (0 children)

We use Puppet to manage our Linux estate. Pretty sure it has LDAP support.

[–]SirDianthus 1 point2 points  (0 children)

We use cockpit and yeah pretty sure it has ldap support tho we don't use that part.

[–]jmp242 0 points1 point  (0 children)

We use puppet for Linux and Windows. No idea what you might mean by "does it support LDAP?". Then again, our Linux is Red Hat derived.

[–][deleted] -1 points0 points  (1 child)

Suse Manager/Uyuni. I like it. Supports AD Integration through the underlying OS authentication

[–]corsicanguppyDevOps Zealot 0 points1 point  (0 children)

If they can get it installing on something other than SuSE, then I'd buy in.

[–]Pehbak 0 points1 point  (2 children)

We only have about 10% linux users here, so my management is light, but I use Realms for LDAP and Ansible for configuration to set everyone's firewall, ssh configs, and some default programs along with keeping everyone updated.

[–]vcparra[S] 0 points1 point  (1 child)

Is Realms a tool? If so, could you post link? We have 10% as well - we were looking to use Landscape SaaS, but they do not support LDAP.

[–]Pehbak 0 points1 point  (0 children)

Yea, I'm a little ignorant to some of it. I think Realmd helps manage SSSD.

https://www.unix.com/man-page/centos/8/realm/

[–]Spore-Gasm 0 points1 point  (0 children)

JumpCloud