#169 Allow one-time password to be used for SP registration
Opened 7 years ago by nkinder. Modified 5 years ago

With ipsilon-client-install, it is currently possible to register the SP in the Ipsilon server if you have the admin password. There might be cases where we want to automate installation of a SP, but we don't want to embed the admin password in the automation scripts. We should invistigate using a one-time password approach, similar to what FreeIPA supports for IPA client installation. The flow would be:

  • Admin user pre-creates an SP in Ipsilon without metadata and sets/generates a random one-time password.

  • SP installation is performed using ipsilon-client-install, specifying the SP name and matching one-time password.

Fields changed

milestone: => Backlog

Metadata Update from @nkinder:
- Issue set to the milestone: Backlog

5 years ago

Login to comment on this ticket.