Re: CVS Client Authentication Issue

[Todd Denniston]

Raqib_Anwar@BCBSIL.COM wrote, On 05/21/2009 12:46 PM:
> We are having problem authenticating CVS client after LDAP was implemented
> on the server.  After specifying CVSROOT in client side it says user name
> and password does not exist. However when try the same approach using an
> account created locally on the server (nonLDAP), it works fine.  We enabled
> the trace from CVS client, but all we see is the following.
>
>     Sample CVSROOT that is being used to connect is
>    :pserver:user@cvsserver.hcscint.net:cvsport/CVS/repositories/repos_name
>     Trace:
>       When successful:  I LOVE YOU
>       When it fails:           I HATE YOU
> That was all the trace we could get.
>    Version:
> We are currently using CVS version 1.11.22  using Unix on  AIX 5.3
>    Client is CVS plugin through Rational Application Developer V7.x .
>    Corresponding eclipse version is 3.4
>
>
> If there is no resolution to the issue, we may resort to  PAM
> authentication.
>
> Can you please advise which version of CVS can be considered compatible and
> stable for implementing PAM authentication ?

Have you worked out how to get the OS to let you do a normal login to an 
account that has it's information specified only in LDAP?

Once you get the OS to let you log in, then all I think you should have to do 
is let CVS fall back to the OS login (IIRC that is the default way with pserver).

Failing that, a work around I believe would be to use an SSH client and the 
:ext: protocol, which should gain you more ability to audit and is secured 
(for confidentiality and integrity) long haul connection.

--
Todd Denniston
Crane Division, Naval Surface Warfare Center (NSWC Crane)
Harnessing the Power of Technology for the Warfighter