< ^ txt
Wed Nov 25 07:16:51 EST 2015
Went to bed a little after ten last night, slept well, and woke up around six.
Partly sunny with a high of forty-eight today. The low tonight will be forty-three, so I imagine most of this snow will melt by tomorrow.
Goals:
Work:
- Work on remote access
Mainly, I'd like to figure out today what pieces we need and roughly how they fit together.
- RADIUS server (Win2012R2 NPS): authentication (and authorization and accounting?)
- Accounting, yes, logging of session starts and stops
- EAP-RADIUS plugin for strongSwan: bridge between client and RADIUS server (IKE <--> RADIUS)
https://wiki.strongswan.org/projects/strongswan/wiki/EapRadius
https://technet.microsoft.com/en-us/library/cc770622%28v=ws.10%29.aspx
- EAP = Extensible Authentication Protocol
- Accounting is optional
- Supports EAP or XAuth authentication
- Multiple RADIUS servers supported (for high availability)
- Communication between EAP plugin and RADIUS server is secured by a pre-shared key
- Supports multiple authentication methods (e.g. --- password with list of one-time codes)
- strongSwan: handle ipsec
https://www.strongswan.org/uml/testresults/ikev2/rw-eap-mschapv2-id-rsa/
- Temporarily modify security system alert times
Done.
- Work on Hazel Park network map
Worked on.
- Order more digital security recorders for properties
No.
- Review annual projects status
Done.
Half hour walk at lunch. Nice, sunny day. A lot of the snow has melted. Saw a blue jay and some crows.
Home:
- Read and make notes on the Red Hat NFS guide
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Storage_Administration_Guide/ch-nfs.html
No.
- Read and make notes on the Red Hat FS-Cache guide
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Storage_Administration_Guide/ch-fscache.html
No.
I did end up reading about Kerberos, which will be necessary for NFSv4.
< ^ txt