Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Kerberos authentication for Chocolatey Central Management #398

Open
2 tasks done
0xjosim opened this issue Jul 4, 2024 · 0 comments
Open
2 tasks done

Kerberos authentication for Chocolatey Central Management #398

0xjosim opened this issue Jul 4, 2024 · 0 comments
Labels
0 - _Triaging New tickets that need to be hashed out a bit more before they hit the backlog. CentralManagement Issues affecting Central Management Enhancement Enhancements are things that are improvements or features. Security Related to security in some way. Much of what we do is centered around security, this is higher.

Comments

@0xjosim
Copy link

0xjosim commented Jul 4, 2024
edited by sync-by-unito bot
Loading

Checklist

  • I have verified this is the correct repository for opening this issue.
  • I have verified no other issues exist related to my request.

Is Your Feature Request Related To A Problem? Please describe.

In business environments where security is important, it makes sense to authenticate to the Central Management web interface with Active Directory accounts, which you can monitor and control centrally. For another layer of security, one might add these users to the "Protected Users" group, which disallows NTLM as authentication method. Therefore, this security feature cannot be used by the current LDAP auth in CCM, which uses NTLM.

Describe The Solution. Why is it needed?

For added security when managing a large amount of clients through Chocolatey Central Management, Kerberos authentication to the web interface would be a good security improvement (the LDAP auth uses NTLM which Microsoft added to its deprecated features).

Additional Context

No response

Related Issues

No response

┆Issue is synchronized with this Gitlab issue by Unito
@pauby pauby transferred this issue from chocolatey/choco Jul 29, 2024
@pauby pauby added Enhancement Enhancements are things that are improvements or features. Security Related to security in some way. Much of what we do is centered around security, this is higher. 0 - _Triaging New tickets that need to be hashed out a bit more before they hit the backlog. CentralManagement Issues affecting Central Management labels Jul 29, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
0 - _Triaging New tickets that need to be hashed out a bit more before they hit the backlog. CentralManagement Issues affecting Central Management Enhancement Enhancements are things that are improvements or features. Security Related to security in some way. Much of what we do is centered around security, this is higher.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@pauby @0xjosim