From: Dobrica Pavlinusic <dpavlin@rot13.org>
Date: Wed, 6 Mar 2019 17:18:46 +0000 (+0100)
Subject: document our pGina setup
X-Git-Url: http://git.rot13.org/?p=safeq;a=commitdiff_plain;h=0ff435332637b7f8f756b1c3eb9a8c9412432353

document our pGina setup
---

diff --git a/doc/pGina-mysql-logger.png b/doc/pGina-mysql-logger.png
new file mode 100644
index 0000000..a8c11fc
Binary files /dev/null and b/doc/pGina-mysql-logger.png differ
diff --git a/doc/pGina.txt b/doc/pGina.txt
new file mode 100644
index 0000000..f9edcc1
--- /dev/null
+++ b/doc/pGina.txt
@@ -0,0 +1,23 @@
+We are using pGina to login into windows using LDAP server. However, since we are using single account on
+windows for all users (to decrease time needed for login since windows would create new account for 10
+minutes) we need to somehow know real user id so we are using pGina mysql logger plugin.
+
+sudo apt-get install mariadb-server
+
+sudo vi /etc/mysql/mariadb.conf.d/50-server.cnf	# modify bind-address if needed
+
+sudo systemctl restart mariadb
+
+sudo mysql
+
+MariaDB [(none)]> create user 'pGina'@'%' identified by 'secret' ;
+Query OK, 0 rows affected (0.001 sec)
+
+MariaDB [(none)]> create database pGinaDB ;
+Query OK, 1 row affected (0.000 sec)
+
+MariaDB [(none)]> grant all on pGinaDB.* to pGina ;
+Query OK, 0 rows affected (0.001 sec)
+
+Now enable all required options in pgina and create tables.
+