Enrolling and managing computers using Centrify Clients for Linux

The Centrify Client for Linux is a software package you can install on Linux computers to support agent-based authentication services for all Privileged Access Service users and service-to-service password management for secure communication between accounts stored in the Privileged Access Service.

By installing the Centrify Client for Linux, computer accounts can be used to run services and to check out account passwords that are stored in the Privileged Access Service. This capability enables you to store and rotate managed passwords for service-to-service authentication without user intervention and eliminates the need for shared administrative passwords to run services.

Additionally, on registered computers with the agent-based authentication enabled, visible roles become Unix groups. Each role has a unique name and GID associated with it. Therefore, commands like getent group <rolename> executed on registered computers, will return a valid result. If a cloud user is a member of a visible role (visiblerole), commands like groups <cloudusername> or id <cloudusername> will return a result where the user is considered to be a member of a visible role (visiblerole).

Note:   A role does not need to have any members associated with it to be visible on registered computers.

Also see, Enabling client-based login and Adding a role for client-based authentication.

The Centrify Client for Linux is only available for a limited set of supported platforms. If you are managing computers where the agent is supported, you can download the agent from the Admin Portal, from the Centrify Download Center, or from the Centrify YUM or APT repository.

To download the Centrify Client for Linux:

  1. Click Downloads and review the features available and supported distributions.
  2. Click the appropriate link to download the appropriate software package for a supported platform.

For more information about installing and using the Centrify Client for Linux package, see the following topics: