system: add kanidm PAM/NSS client module

Add homelab.kanidm.enable option for central authentication via Kanidm. The module configures: - PAM/NSS integration with kanidm-unixd - Client connection to auth.home.2rjus.net - Login authorization for ssh-users group Enable on testvm01-03 for testing. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-02-08 13:43:41 +01:00
parent bfbf0cea68
commit b845a8bb8b
6 changed files with 216 additions and 0 deletions
--- a/system/default.nix
+++ b/system/default.nix
@@ -4,6 +4,7 @@
    ./acme.nix
    ./autoupgrade.nix
    ./homelab-deploy.nix
+    ./kanidm-client.nix
    ./monitoring
    ./motd.nix
    ./packages.nix