It was mostly about syncing groups with proxmox. Worked by patching the LDAP pro... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		riedel 8 months ago \| parent \| context \| favorite \| on: Proxmox Virtual Environment 9.0 with Debian 13 rel... It was mostly about syncing groups with proxmox. Worked by patching the LDAP provider to support our schema. Comment was more about the extensibility problem when doing this. Actually when you say this, I wonder how PAM could work, only ever used it for providing shell access: we typically do not have any local users on the machine. Never used PAM in a way not providing any local execution privileges (which is the whole point of a VM host).

woleium 8 months ago [–]

pam groups are not synced into proxmox for permission management :(

Apparently with OIDC (with group claims), Proxmox can map group membership from OIDC tokens and autocreate or map groups dynamically at user login

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact