Re: [K12OSN] New School using K12

[Steve Switzer <steve switzerny org>]

Dave,
  Thank you for your reply! Yes, I ran authconfig on the systems, and 
I'm still not locked out of root. :)
I was using "tail -f /var/log/messages" on the client and the ldap 
server, and the only thing I saw was a connection into the ldap 
server... no results, no error, etc. I think the issue is with how to 
setup the ldap server. I would like to do the same thing you did, so 
that windows clients can also authenticate to the domain using SAMBA. 
Since I don't want to have separate accounts (diff p/w, diff uid, 
potentially) for each user all over the place, I would like to 
centralize this on my file server. This way, I can also run more than 
one terminal server if I want. (One for test).
  Currently, I'm manually editing the passwd, group, shadow and gshadow 
files in /etc/ on two machines to be sure the UID and GID are the same 
on my LTSP box and the file server, because I'm NFS mounting /home. If I 
was also using LDAP, this would be so much easier.
  Thanks for any further information you can give about setting up the 
LDAP server!

Steve

dahopkins comcast net wrote:

> Steve,
>
> Just a guess, but have you ran authconfig on your systemms to select/enable ldap authentication?  Be careful, when this was initially enabled on my test system, I ended up locked out of root. Others have noted this as well (see the archves).  Also, on my Windows TS, I setup the LDAP server to also be a Samba PDC with the ldap-enabled version of Samba (not running 3.0 yet though).
>
> I am not by any means an expert at the ldap stuff.  I have a friend who was able to get the local LUG to help me with the LDAP setup.  A couple of very nice guys came over, ran the scripts that Eric provides in the ISO's (I think on the extras image) to get the initial LDAP setup, then 'hacked' that for a couple of hours before it was all working.  I have been working on the test server to re-implement this so I also know what was done. (My biggest fear is this breaks, and I am way up the creek.)  I am not sure what all they did, they typed way to fast, plus worked in unison with new shells popping up, beeping, etc.
>
> If I can reproduce the install/initialization process, it will be documented so that it is cookbook with every step outlined.  That much I can promise since I don't have the brain cells left to just remember this a week later.
>
> Sincerely,
> Dave Hopkins
>  
>
> > Dave,
> >   Please excuse my interruption, but based on your comments, I assumed 
> > you could help with something. I've looked at various how-to's tried 
> > different things, etc... but I can't figure out how to get an ldap 
> > server up and running properly to authenticate users. This would be an 
> > absolute ideal situation for me... but....
> > I created and ldif file, started the server, loaded it with ldapadd (or 
> > was it slapadd?), used Webmin to view and verify there were users in the 
> > database... but no client can verify the existence of the root dn... 
> > keeps saying it doesn't exist.
> >
> > Ideas?
> > Thanks!
> > Steve
> >
> > dahopkins comcast net wrote:
> >
> >    
> >
> > > This works for non-ldap installations.  What would someone (like me) use to 
> > >      
> > create alot of users in an ldap environment quickly?  I have been looking at the 
> > webmin scripts for ldap users and groups, but haven't figured out the perl 
> > script.
> >    
> >
> > > Sincerely,
> > > Dave Hopkins
> > >
> > >
> > >      
> > >
> > > > use createusers from www.lfsp.org   very simple and effective and has
> > > > commandline or gui
> > > >   
> > > >
> > > >        
> > _______________________________________________
> > K12OSN mailing list
> > K12OSN redhat com
> > https://www.redhat.com/mailman/listinfo/k12osn
> > For more info see <http://www.k12os.org>
> >    
>
>
> _______________________________________________
> K12OSN mailing list
> K12OSN redhat com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>
>