Please be advised that this quickstart may require Internet access for things such as downloading updates and other content.
The purpose of this training is to quickly demonstrate Red Hat Identity Management IT architecture that provides an end-to-end solution for managing centralized users, groups, host based access controls, roles, password policies and escalated privileges quickly and reliably.
Assuming you would like to perform all of the steps manually, you will first want to start with the Basic Deployment and then move on to the more Advanced Topics. Afterwards, you will have a suitable environment for
- Prerequisites
- Installation of Red Hat Identity Management
- Managing Identity: Users, Hosts, and Groups
- Joining Clients
- Managing Policy
- Delegating IdM Privileges (RBAC)
- Adding additional IdM Servers (replicas, topology)
- Backup and Restore
- Active Directory Integration (Trust, External Groups, Views)
- Advanced User Features (SSH, OTP, Views)
- Advanced Host Features (SSH, SSL)
- Managing Network Services (Automount, DNS)
For your convenience, there is a simple Vagrantfile that will stand up the quick start environment using CentOS 7 and FreeIPA. It will be stood up with a decent number of users and groups, mostly super heroes and super villians. The Vagrant Demo Script will walk through several real use cases with generated data.
- !! Do not use this for production workloads !!
- IDM Passwords will be randomly generated and stored in
secure.envalongside theVagrantfile - Users are generated using data stored in
fake-users.csvalongside theVagrantfile
To get the VMs up and running, you need Vagrant, a hypervisor and then run:
vagrant up
Watch the output, and if it's your first time, note that it may take a LONG time to get enough entropy to for some of the Kerberos encryption and SSL stuffs. You can speed it up by logging into the VM and playing "smash your face on the keyboard".
Once the VMs are up, you are able to login to each machine by running:
- IDM Master
vagrant ssh idm_1- IDM Replica (if you uncommented it in the Vagrantfile)
vagrant ssh idm_2- IDM NFS Server
vagrant ssh nfs- IDM Client 7
vagrant ssh client7_1- IDM Client 6 (if you uncommented it in the Vagrantfile)
vagrant ssh client6_1