NetworkAuthClient
|
Size: 1025
Comment:
|
Size: 1500
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 3: | Line 3: |
| - pam changes - nssldap changes - how do we mount home ? |
* pam changes * nssldap changes * how do we mount home ? |
| Line 16: | Line 16: |
| for mounting home we will need to do a nfs export of /home from the server to mount that on login, for windows clients this needs also be done in parallel via samba |
for mounting home we will need to do a nfs export of /home from the server to mount that on login, for windows clients this needs also be done in parallel via samba |
| Line 20: | Line 19: |
| rs home | rs home. |
| Line 22: | Line 21: |
| - instead of mounting home we also could use bzr or rsync-diff and use the local home, but sync constantly to the server | pam-mount can do nfs mounts on login, |
| Line 24: | Line 23: |
| - pam-session-open ? | Packages to move to main: * libpam-mount * libpam-ldap * libnss-ldap * libpam-ccreds * the edubuntu-auth-client package will install edsadmin and disable users-admin in the gnomemenu. * edubuntu-auth-client will ask for the desired domainname (field is prefilled with the provided domainname from the dhcp server) and for the ip address of the ldap server. There must be an additional preseed file for "networked-workstation" on the edubuntu CD that installs edubuntu-auth-client, the usual workstation preseed file will still do a local auth based install. |
BOF notes:
- pam changes
- nssldap changes
- how do we mount home ?
ajmitch's authtool already cares for the first two points all we have left for this spec is to find a proper way to mount /home on login
we will need kerberos integration, to integrate this a nameserver will be needed -> to be added to the -auth-server spec
a metapackage will be created that depends on the authtool package and pulls in the necessary kerberos bits
to change the password a tool is needed, this can either be a samba tool or a pam based one
for mounting home we will need to do a nfs export of /home from the server to mount that on login, for windows clients this needs also be done in parallel via samba
pam-mount needs to be extended to read the users home directory location from the ldap server where we store the information where to find the use rs home.
pam-mount can do nfs mounts on login,
Packages to move to main:
- libpam-mount
- libpam-ldap
- libnss-ldap
- libpam-ccreds
- the edubuntu-auth-client package will install edsadmin and disable users-admin in the gnomemenu.
- edubuntu-auth-client will ask for the desired domainname (field is prefilled with the provided domainname from the dhcp server) and for the ip address of the ldap server.
There must be an additional preseed file for "networked-workstation" on the edubuntu CD that installs edubuntu-auth-client, the usual workstation preseed file will still do a local auth based install.
Edubuntu/Specifications/NetworkAuthClient (last edited 2010-01-21 19:01:15 by 196-210-177-89-wblv-esr-3)