PACC: Week 5

Comments

The past week I continued working on LDAP and PAM.

I thought that it would probably be useful if I had all users and groups stored in my LDAP. So, I imported existing groups and users. That resulted in 88 groups and 56 users, including not only real users, but mostly such items as avahi, bluetooth, video, audio and etc.

Tried authorization by the created LDAP users. They could log in via a terminal but not using a GUI login screen. Creating home folders manually did not work.

Changed several PAM files. Succeeded on integrating PAM and LDAP. Home directories are created automatically.

To set up PAM to authorize LDAP users, you need to make the following changes on client machines:

  • Edit /etc/nsswitch.conf:

passwd: files ldap group: files ldap shadow: files ldap

  • Change /etc/ldap/ldap.conf under your LDAP settings.

  • Then, create /etc/auth-client-config/profile.d/bl-ldap file and copy the following lines to the file:

[bl-ldap]

nss_group=group: files ldap

nss_passwd=passwd: files ldap

nss_shadow=shadow: files ldap

nss_netgroup=netgroup: nis

pam_account=account sufficient pam_ldap.so

account required pam_unix.so

pam_auth=auth sufficient pam_ldap.so

auth required pam_unix.so nullok_secure use_first_pass

pam_password=password sufficient pam_ldap.so

password required pam_unix.so nullok obscure min=4``max=8``md5

pam_session=session required pam_unix.so

session required pam_mkhomedir.so skel=/etc/skel/

session optional pam_ldap.so

session optional pam_foreground.so

  • Run in the terminal: sudo auth-client-config -p bl-ldap -a

  • Now your PAM should allow LDAP users to log in. Also, home folders will be created automatically for them.

Home directories of LDAP users are not private. Need to do them private manually.

LDAP didn't work with ownCloud. All it says is that the configuration is invalid.

Set up WOL, so that it works with hostnames also. For doing that, you just need to create something like ARP table. Change /etc/ethers file and add there the MAC addresses and the corresponding hostnames.

Installed Virtual Machine Manager. Set up two VMs: 1 Ubuntu and 1 Xubuntu. Everything in VMs works fine, including internet and local connections. Was looking for some web-based management tools. Proxmox seemed to be promising.

Comments