On this page you will find instructions on how to install the Moonshot libraries on a RHEL 7, CentOS 7, or Scientific Linux 7 (RHEL/CentOS/SL 7) system, in order to enable applications/services on that system to perform Moonshot-based authentication.
This guide assumes you have a RHEL 7, CentOS 7, or Scientific Linux 7 system (a minimal install will do) and that you have a Moonshot RP Proxy available to connect to.
Turn off SELinux
There are currently no SELinux policies for Moonshot, and SELinux must be run in Permissive mode.
For production deployments, it is recommended that the machine be assigned a static IP address.
The following ports are required to be accessible to the outside world in the local firewall:
Add the required repositories
Moonshot requires three
We are now ready to install the Moonshot software and its required dependencies. Install the software by running the following command:
Configure your Moonshot Libraries to connect to an RP Proxy
The Moonshot GSS-EAP mechanism needs to connect to a local Moonshot RP Proxy (RADIUS server) via RADIUS or RadSec in order to create the first hop between the service and the user's home IdP to allow authentication to happen. See the Configure a Linux Server to Connect to an RP Proxy page for instructions on how to do this.
Configure your Application/Service to use Moonshot
Finally, you may have to install/configure that application/service as necessary.