Extended attributes best practices

After the release of the NSS plugin for SecurePass and my article on Alessio Treglia’s blog, I received a lot of queries on what are the attributes that are considered as “reserved”.

Well, there are not reserved attributes written on a stone in SecurePass Beta, but the following attributes names have been used in the NSS plugin:

  • posixuid → UID of the user
  • posixgid → GID of the user
  • posixhomedir → Home directory
  • posixshell → Desired shell
  • posixgecos → Gecos (defaults to username)

Also the keywords below have been used in some customers:

  • sshkey → SSH public key
  • bitcoin → Bitcoin address

The current development release of SecurePass tools contain a script to extract user’s ssh key and inject automatically into the ~/.ssh/authorized_keys

[fruitful_btn size=”mini” link=”https://beta.secure-pass.net/enroll/”%5DJoin SecurePass Beta[/fruitful_btn]

%d bloggers like this: