I am trying to setup an LDAP server for user authentication. The environment I am in has windows XP and 2000, MAC and a couple of different linux, SuSE and Fedora. I have a little test network consisting of three machines, a linux box (SuSE 10.3), a windows XP box and a MAC. I have setup the SuSE box as an LDAP server (via yast2 modules), but am now at a loss of how to include the user information for the authentication. I want to add a couple of users 'Bill' and 'Ben' to the LDAP server and then setup up the client software on the MAC and Windows box to log in. Can anybody point me in the direction of a how to which will demonstrate how I can do this. Thanks in advance Peter -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Peter Bloomfield wrote:
I am trying to setup an LDAP server for user authentication. The environment I am in has windows XP and 2000, MAC and a couple of different linux, SuSE and Fedora.
I have a little test network consisting of three machines, a linux box (SuSE 10.3), a windows XP box and a MAC. I have setup the SuSE box as an LDAP server (via yast2 modules), but am now at a loss of how to include the user information for the authentication.
I want to add a couple of users 'Bill' and 'Ben' to the LDAP server and then setup up the client software on the MAC and Windows box to log in.
Can anybody point me in the direction of a how to which will demonstrate how I can do this.
Thanks in advance
Peter
Peter, See excellent resources for migrating existing user accounts at: http://www.ibm.com/developerworks/library/l-openldap/index.html http://www.linuxjournal.com/article/6266 http://www.linux-mag.com/id/974 Now can you help me with my ldap post from earlier today? -- David C. Rankin, J.D., P.E. Rankin Law Firm, PLLC 510 Ochiltree Street Nacogdoches, Texas 75961 Telephone: (936) 715-9333 Facsimile: (936) 715-9339 www.rankinlawfirm.com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Monday 19 November 2007 17:34:26 Peter Bloomfield wrote:
I am trying to setup an LDAP server for user authentication. The environment I am in has windows XP and 2000, MAC and a couple of different linux, SuSE and Fedora.
I have a little test network consisting of three machines, a linux box (SuSE 10.3), a windows XP box and a MAC. I have setup the SuSE box as an LDAP server (via yast2 modules), but am now at a loss of how to include the user information for the authentication.
I want to add a couple of users 'Bill' and 'Ben' to the LDAP server and then setup up the client software on the MAC and Windows box to log in.
Can anybody point me in the direction of a how to which will demonstrate how I can do this.
Thanks in advance
Peter
Hi Peter I've done a bit of work with SLES 9 & 10 w.r.t. LDAP, and the configuration of the server was probably one of the easier parts. If you install and configure the LDAP server and associated packages, you should be able to use the standard Yast2->Security and Users->User management to populate the LDAP directory with user accounts. Make sure you check the 'Authentication and User sources' under the 'Advanced Configuration' button which will allow you to toggle the 'Client Enabled' setting. The configuration of the server is pretty straightforward, but the integration with the Macs and Windows machines isn't something I've had to contend with, sorry. Cheers Pete -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Tuesday 20 November 2007 01:34:26 Peter Bloomfield wrote:
I am trying to setup an LDAP server for user authentication. The environment I am in has windows XP and 2000, MAC and a couple of different linux, SuSE and Fedora.
I have a little test network consisting of three machines, a linux box (SuSE 10.3), a windows XP box and a MAC. I have setup the SuSE box as an LDAP server (via yast2 modules), but am now at a loss of how to include the user information for the authentication.
I want to add a couple of users 'Bill' and 'Ben' to the LDAP server and then setup up the client software on the MAC and Windows box to log in.
As Pete (Connolly) has already mentioned the populating of openLDAP via YaST should be fairly straightforward. However, I'm guessing from the description above about having LDAP as an authentication source for user logins you're probably also looking at Samba? If not, have you added some 3rd party software (GINA) to the Windows clients to enable them to do some sort of LDAP based authentication for logins? Out of the box, Windows (XP and 2000) can either login against a local accounts database or a Windows domain - so long as the client has been joined to the domain. If you're looking to integrate LDAP and Samba there are quite a few HOWTOs via google (although not SUSE specific as far as I can see). Depending on the size of your network, using an LDAP backed Samba infrastructure might be overkill. Samba on it's own can easily imitate a Windows NT4 domain either using the tdbsam backend or an LDAP backend. The reason for using an LDAP backend is replication and scalability. With tdbsam you're essentially emulating an NT4 domain with a single PDC. With LDAP you're emulating an NT4 domain with PDC and BDC servers. (It's not an identical match up but the analogy holds) On it's own, Samba cannot at present emulate a full Active Directory infrastructure (e.g. Group Policies) but Samba servers can act as Member servers in an AD domain. As for the MacOS computers... are they OSX? or legacy MacOS? If OSX then as it's basically BSD under the hood you should be able to set up a variety of authentication options for user logins. I'm pretty sure they too can utilise a Windows domain for this purpose (and hence Samba backended by either tdbsam or LDAP would suffice).
Can anybody point me in the direction of a how to which will demonstrate how I can do this.
Hmmm - not for SUSE specifically it seems. You can just use the documentation at samba.org though, as it looks pretty comprehensive. Jon -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Monday 19 November 2007 12:34, Peter Bloomfield wrote:
I am trying to setup an LDAP server for user authentication. The environment I am in has windows XP and 2000, MAC and a couple of different linux, SuSE and Fedora.
Thanks for all the helpful pointers. I now have an LDAP server up and running with user authentication on a Windows XP box via pGINA. Just a few things tod tidy up and fully understand, but in principle working. Now to think whether this simple setup can be expanded to our network. Peter -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
participants (4)
-
David C. Rankin -
Jonathan Ervine -
Pete Connolly -
Peter Bloomfield