Revision 3 as of 2006-11-07 00:53:27

Clear message

BOF notes:

  • pam changes
  • nssldap changes
  • how do we mount home ?

ajmitch's authtool already cares for the first two points all we have left for this spec is to find a proper way to mount /home on login

we will need kerberos integration, to integrate this a nameserver will be needed -> to be added to the -auth-server spec

a metapackage will be created that depends on the authtool package and pulls in the necessary kerberos bits

to change the password a tool is needed, this can either be a samba tool or a pam based one

for mounting home we will need to do a nfs export of /home from the server to mount that on login, for windows clients this needs also be done in parallel via samba

pam-mount needs to be extended to read the users home directory location from the ldap server where we store the information where to find the use rs home.

pam-mount can do nfs mounts on login,

Packages to move to main:

  • libpam-mount
  • libpam-ldap
  • libnss-ldap
  • libpam-ccreds
  • the edubuntu-auth-client package will install edsadmin and disable users-admin in the gnomemenu.
  • edubuntu-auth-client will ask for the desired domainname (field is prefilled with the provided domainname from the dhcp server) and for the ip address of the ldap server.

There must be an additional preseed file for "networked-workstation" on the edubuntu CD that installs edubuntu-auth-client, the usual workstation preseed file will still do a local auth based install.