Learn about the considerations before you get started with Knox.
- Default PAM settings for Knox
- Secure clusters require local OS accounts. Local OS accounts are most often achieved by
using something like SSSD or Centrify which localizes user accounts from user stores or
directories including LDAP/AD and so on.
- This means that you should be able to use PAM and the local OS accounts straight away as
long as they are on the same host as Knox. There are various ways to make local OS accounts
available. SSSD or Centrify are technical solutions that make it seem like there are local OS
accounts even though they are only in LDAP/AD. You can use real local OS accounts as
well.