Linux SSO, Replicated Postfix Install & Configuration

Lukket Opslået Jun 5, 2015 Betalt ved levering
Lukket Betalt ved levering

Hello

I need to provide SSO (linux users) to three VPSs with different providers and one Linux Server at my home which uses a local IP subnet (and access internet through the natted adsl router which has a static IP).

In addition the SSO system needs to provide Web Users of various installed domains with authentication services. Need to implement a two way authentication using a permutation of Google Authenticator, Yubikey/Fido U2F & SMS/Twilio.

Am thinking of using freeIPA as the SSO provider layer but am tied to it. Am open to suggestions.

All I want is an integrated and web based management system.

I am aware the web users will use SSO through their own Auth layer but I want ldap based SSO services to be provided through a higher layer so that every webapp does not have to do the base legwork everytime.

One VPS will be primary for DNS, second will be primary for both, both will be secondary for each other, third will be primary for web applications.

You have to provide one shot integration and guide us how to setup SSO for web applications.

Correction:
One VPS will be primary for DNS, second will be primary for EMAIL, both will be secondary for each other, third will be primary for web applications.

Also, the communication between all needs to be on vpn or ssh.

Correction:
Am thinking of using freeIPA as the SSO provider layer but am NOT tied to it. Am open to suggestions.

Also, the third server, which is primary for web apps will be secondary to the other two and it will have virtualmin or some other web hosting manager (use is only to manage our sites...we are not selling hosting) and it will be publishing dns to the dns server. You have to integrate that part as the SSO will have replicated the dns as well.

And postfix is to be secure install.

All web based interfaces available through ssh only.

PKI infrastructure to be used by the SSO system, is not to be self signed certificates. A Certificate Authority is to installed under its own subdomain. I suggest dogtag. Open to suggestions though.

Also, the web hosting server will be creating & deleting emails/email domains/mailing lists too, in addition to modifying dns entries. The postfix install has to deal with those too. However, the postfix install is not to be true replication that includes mails. It will replicate users to the primary Mail server, the secondaries, i.e. the web server & dns servers will only act as backup MX. However, they will have user data, so they do not accept mail blindly. When the primary mail server comes up, they will hand over the mail through a ssh connection that byepasses spamassasin & rbl checks, as they are already done on the backup servers.

As Hosting Manager Virtualmin will be effecting both email & dns, Installation of community edition of virtualmin is now required to be done by the bidder, as required on the webserver vps, plus any modules on dns & mailserver vps.

Sorry, was offline for a week while this project was auto-closed. Am still looking for the right candidate. Will start working from tomorrow onwards.Will be posting a revised requirements brief either tomorrow or day after.

Regret the inconvenience caused.

E-mailhåndtering Linux Script Installering Shell Script System Administrator

Projekt ID: #7805636

Om projektet

7 bud Remote projekt Aktiv Jul 30, 2015