Category:I805 Authentication and Authorization: Difference between revisions

From ICO wiki
Jump to navigationJump to search
← Older editNewer edit →
Lvosandi (talk | contribs)
1,257 edits
No edit summary
Lvosandi (talk | contribs)
1,257 edits
No edit summary
Line 23: Line 23:




Tasks:
Tasks, not necessarily all have to be covered. Pick the one you like the most:


* Play the red team: Kustas, Ender, Andris
* Play the red team: Kustas, Ender, Andris
* Set up rocket.chat instead of IRC server: Meelis Hass
* Set up rocket.chat instead of IRC server: Meelis Hass
* Set up file synchronization with NextCloud:  <insert your name here>
* Reconfigure Gogs: <insert your name here>
* Reconfigure Gogs: <insert your name here>
* Reconfigure wiki: <insert your name here>
* Reconfigure wiki: <insert your name here>
* Reconfigure mail server:  <insert your name here>
* Reconfigure webserver/MySQL:  <insert your name here>
* Set up domain controller replication between servers
* Set up domain controller replication between servers
* Set up OpenWrt wifi routers as access points with username/password authentication (like eduroam wireless network)
* Set a blank smartcard as TLS client authentication token:  <insert your name here>
* Set a blank smartcard as TLS client authentication token:  <insert your name here>
* NFC card backups: <insert your name here>
* NFC card backups: <insert your name here>
* OpenVPN with Estonian ID-card howto:  <insert your name here>
* Set up OpenWrt wifi routers as access points with username/password authentication (like eduroam wireless network):  <insert your name here>


With Lauri/Belgin from Linux/Windows admin course:
With Lauri/Belgin from Linux/Windows admin course:


* Set up domain controller /w MS AD/Samba:
* Set up domain controller /w MS AD/Samba:
* Set up fileserver with several shares: <your name>
* Set up fileserver with several shares: <insert your name>
* Use iMac and HP Probook at 412/411 for joining them to domain. Needs some network rewiring first, ask Lauri.
* Use iMac and HP Probook at 412/411 for joining them to domain. Needs some network rewiring first, ask Lauri.
* Set up group policies, eg install software and configure VPN for HP Probook
* Set up group policies, eg install software and configure VPN for HP Probook

Revision as of 14:56, 31 January 2017

Authentication and Authorization

General information

In this course we continue where we left off with Firewalls and VPN/IPsec course.

Relevant topics for research and implementation in the lab. Lectures coming up for most of the topics:

  • File based password stores eg. /etc/shadow, .htaccess
  • Signing and encrypting e-mail using GPG
  • Active Directory protocols: LM, NTLM, Kerberos, GSSAPI, SPNEGO, LDAP
  • More TLS and client side authentication in particular
  • Filesystem permissions: access control lists, selinux, apparmor
  • RADIUS
  • Multi-factor authentication: smartcards, Yubikey, Mobile-ID, etc
  • Contactless cards
  • On the web: Cookies, OAuth, OpenID, iPizza,

Slides:

https://docs.google.com/presentation/d/1NzY8AspqZwrYxoJ3Qi-pBWsMDdiIUeA4lgZnwZGTMVg/edit?usp=sharing


Tasks, not necessarily all have to be covered. Pick the one you like the most:

  • Play the red team: Kustas, Ender, Andris
  • Set up rocket.chat instead of IRC server: Meelis Hass
  • Set up file synchronization with NextCloud: <insert your name here>
  • Reconfigure Gogs: <insert your name here>
  • Reconfigure wiki: <insert your name here>
  • Reconfigure mail server: <insert your name here>
  • Reconfigure webserver/MySQL: <insert your name here>
  • Set up domain controller replication between servers
  • Set a blank smartcard as TLS client authentication token: <insert your name here>
  • NFC card backups: <insert your name here>
  • OpenVPN with Estonian ID-card howto: <insert your name here>
  • Set up OpenWrt wifi routers as access points with username/password authentication (like eduroam wireless network): <insert your name here>

With Lauri/Belgin from Linux/Windows admin course:

  • Set up domain controller /w MS AD/Samba:
  • Set up fileserver with several shares: <insert your name>
  • Use iMac and HP Probook at 412/411 for joining them to domain. Needs some network rewiring first, ask Lauri.
  • Set up group policies, eg install software and configure VPN for HP Probook

With Viktor from Incident management course:

  • Set up incident management software, configure to authenticate with AD

ECTS: 4

Lecturers: Lauri Võsandi

Pages in category "I805 Authentication and Authorization"

This category contains only the following page.

W

Retrieved from "https://wiki.itcollege.ee/index.php?title=Category:I805_Authentication_and_Authorization&oldid=117441"