Enrolling and managing computers using the Centrify Client for Linux
By installing the Centrify Client for Linux, computer accounts can be used to run services and to check out account passwords that are stored in the Privileged Access Service. This capability enables you to store and rotate managed passwords for service-to-service authentication without user intervention and eliminates the need for shared administrative passwords to run services.
Additionally, on registered computers with the agent-based authentication enabled, visible roles become UNIX groups. Each role has a unique name and GID associated with it. Therefore, commands like
<rolename> executed on registered computers, will return a valid result. If a cloud user is a member of a visible role (
visiblerole), commands like
groups <cloudusername> or
id <cloudusername> will return a result where the user is considered to be a member of a visible role (
Note: A role does not need to have any members associated with it to be visible on registered computers.
The Centrify Client for Linux is only available for a limited set of supported platforms. If you are managing computers where the agent is supported, you can download the agent from the Admin Portal, from the Centrify Download Center, or from the Centrify YUM or APT repository.
To download the Centrify Client for Linux
- Click Downloads and review the features available and supported distributions.
- Click the appropriate link to download the appropriate software package for a supported platform.
For more information about installing and using the Centrify Client for Linux package, see the following topics:
- Verifying a signed package
- Installing the Centrify Client for Linux package
- Enabling client-based login
- Authorizing access for the service user
- Managing passwords for services
- Setting options for registered computers
- Customizing Centrify Client parameters
- Authenticating with a single-use SSH Certificate
- Migrating scripts from the CLI Toolkit