Self-service Password Portal

Provide a simple self-service UI & script to sync passwords on a Samba4 AD DC with Google Apps.

This solves the issue of syncing Samba AD DC passwords to Google Apps. Unfortunately, Google Directory Sync is challenging to configure with Samba, and the classic "unix password sync" and "passwd program" options in Samba 4 no longer work.

=== User workflow:

Sign-in to webapp with Google Apps domain credentials
Change password in web app
Web app updates Google (via Directory API) and Samba AD DC.

===

How to install:

pip install Flask-OAuthlib
Install the app! You can roughly do something like: adduser password-change-user chsh -s /bin/false password-change-user
Other security hardening here
cd /home/password-change-user/ git clone THIS_REPO
Configure apache. You can add something like this to a VirtualHost.

Name		Name	Last commit message	Last commit date
Latest commit History 22 Commits
static		static
templates		templates
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
__init__.py		__init__.py
app.wsgi.example		app.wsgi.example
bower.json		bower.json
main.py		main.py
secrets.cfg.example		secrets.cfg.example

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Self-service Password Portal

Other security hardening here

About

Releases

Packages

Languages

License

cameronbrunner/samba-google-apps-password-self-service-sync

Folders and files

Latest commit

History

Repository files navigation

Self-service Password Portal

Other security hardening here

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages