[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Fwd: Re: [seul-edu] Hello - Introduction - NDS Homedir]

--
- cameron miller
- UNIX Systems Administrator
- Outhouse Attendant
- http://portal.adams.edu/outhouse/
- (719)587-7685
- cdmiller@adams.edu
--- Begin Message --- Early on I found it easy to use the pam_ncp_auth module included in the ncpfs source contrib directory to auth from NDS.

A simple entry like:

auth sufficient /lib/security/pam_ncp_auth.so use_first_pass server=SERVER

Appeared to work great.

You do still need a password and group file or the equivalent for the Linux client to reference when figuring out permissions, (uid gid). So an LDAP or Mysql using nss-ldap or nss-mysql is probably in order, and it will have to be synced with the NDS account info, (username but no password synch is necessary).

Apparently it is possible to use NDS 8 to supply Unix uid's and gid's in some way, and to modify the NDS schema and serve up LDAP from a Novell server, but I don't have the inclination to screw around too much with proprietary solutions.

- cameron

Cory Jaeger wrote:
I actually have that running on the 1TB server and it seems to work pretty good.  As with every solution I've been able to come up with so far, however, I'm still stuck on getting a single authentication point.  Idealy I would like to use NDS for now... no.. ideally I would like to get rid of NetWare altogether, however, that is not an option at this point.  So until that time comes I would like to authenticate against NDS since all of the tech staff know how to work with user accounts on NetWare.



Cameron Miller <cdmiller@adams.edu> 01/21/03 09:37AM >>>
You might want to check out the current status of the MARS-NWE (netware emulator for linux) project, I haven't looked at it for a few years, but it worked pretty nice as a netware 3 server in the past. I had a netware login script mapping drives from the Marws-NWE server after the user logged into an NDS netware 4 server.

Last time I set up a linux all access home directory server, I used a Samba, NFS, and Netatalk combination, but Mars-NWE could be added to the mix.

I don't know if a Netware server itself can actully mount drives form other systems and serve them up, but Linux servers certainly can.

- cameron

Cory Jaeger wrote:

I would even be happy if the Novell server mounted an NFS volume for it's home-dir instead.  In fact that is the main reason for building the 1TB storage server to be honest.




cdmiller@adams.edu 01/21/03 09:07AM >>>


Linux at DCE wrote:



Like many schools in this area, we primarily have NetWare for file
servers and use NDS for authentication.  One of my biggest roadblocks to
Linux on the desktop is finding some way to share a common home
directory between Linux and NetWare and managing a single source for
authentication.  If anyone has done this, I'd love to know the details.


Cory Jaeger
Network Manager
D.C. Everest Area School District
Weston, WI  54476
Hi Corey,

I recently, (yesterday), got Novell automounted home directories for Linux working.

I used the pam_mount module from pam_mount-0.5.10 and ncpfs-2.2.0.19. I had to modify a pam_mount pmhelper.c program to get it to work here. Now pam_mount.so handles NDS authentication and automounting of user home directories stored on a Novell server.

There appear to be some drawbacks to using a Netware home directory, file and directory permissions are immutable, and free disk space detection is affecting OpenOffice client installation. You can apparently gain symbolic link support by enabling the CONFIG_NCPFS_EXTRAS flag at kernel compile time when turning on NCPFS support in the kernel. It does look possible to automount an NFS home directory and submount the Netware directory in there, at which point Netware is not acting as the sole home directory.

I'll be posting a write up on it in the next week or month, (link to a web page). If you need this earlier let me know and I'll send you what details I have right now.

- cameron


--- End Message ---