From: Mike Petersen (mgpeter_at_pcc-services.com)
Date: Fri May 06 2005 - 15:06:37 CEST
From: Mike Petersen <mgpeter@pcc-services.com> Date: Fri, 6 May 2005 08:06:37 -0500 Message-Id: <200505060806.37795.mgpeter@pcc-services.com> Subject: Re: [suse-sles-e] SLES9 as Domain Controller
On Friday 06 May 2005 05:19, Anders Norrbring wrote:
> > On Thursday 05 May 2005 13:05, Anders Norrbring wrote:
> > > Now I'm doing some testing with a SuSE 9.3 workstation, no domain users
> >
> > can
> >
> > > log in to that one. The workstation has correctly joined the domain,
> >
> > and
> >
> > > when I as root issue a "getent passwd" command, all the domain users
> > > are listed, however here they're listed as having a login shell of
> >
> > /bin/false.
> >
> > > That means that when a domain user tries to log in to the 9.3 WS, the
> >
> > user
> >
> > > is presented by "Login is disabled".
> >
> > In sles you have:
> >
> > yast -> Network Services -> LDAP Client -> Advanced Configuration... ->
> > Enable LDAP Users to Log In
> > which I presume that you have to have enabled to, as it says, Enable LDAP
> > Users to Log In...
> >
> > I also presume that it is the same with 9.3
>
> Well Jonas,
> I can't see what the workstation's LDAP has anything with verifying users
> on a SAMBA PDC to do?
>
> On the workstation, no LDAP is involved as I can see. The user
> verification and login should be handled strictly by the SAMBA system.
>
> Anders Norrbring
>
>
If you want to have Suse Linux 9.3 to authenticate using a samba server (?)
simply check the box "Also Use SMB Information for Linux Authentication"
under Yast's "Samba Client" configuration. Once you hit finished it "should"
automatically join the domain, and when you users login, a folder under the
home directory of "/home/domain/username" should be created (do
select /bin/bash as the users login shell).
A better solution is to simply use SLES's LDAP server to authenticate users
for your Suse Linux 9.3, which was stated above. Under Yast's LDAP Client
configuration, check Use LDAP, and enter the address of your SLES server.
This will allow all your users to login on the Linux Workstation. Using this
method, it is also highly recommended that you share the /home directory of
your SLES server using NFS, this way all settings you have on your Linux
Workstation will "follow" you to another workstation.
Good Luck,
Mike Petersen
mgpeter@pcc-services.com
---------------------------------------------------------------------
To unsubscribe, e-mail: suse-sles-e-unsubscribe@suse.com
For additional commands, e-mail: suse-sles-e-help@suse.com
This archive was generated by hypermail 2.1.7 : Fri May 06 2005 - 15:06:40 CEST