[plug] Magic Smoke

James Devenish devenish at guild.uwa.edu.au
Sat Feb 22 19:02:44 WST 2003


In message <20030222104602.22214.qmail at www-02.iinet.net.au>
on Sat, Feb 22, 2003 at 10:46:02AM -0000, Simon Newton wrote:
> I've just implemented LDAP based authentication coupled with nfs
> sharing of user's home directories at HQ. Now user's are able to roam
> freely across linux workstations. Apache has been setup to restrict
> access to certain cgi's to certain LDAP authenticated users

This was a huge bonus for me. People used to disparate authentication
systems took a bit of retraining to believe that mail, shell, file
shares and *web* all used the same credentials and that new passwords
and new accounts were available immediately across the board.

> The only thing that remains is to setup Samba to authenticate users to
> the LDAP server at which point we will have a completely centralised
> user account system :)

Has worked for me (barring Windows' bizarre ways of obtaining and using
user credentials, which I was introduced to as part of LDAPification).
Only problem is that a couple of servers seems to end up with a
corrupted secrets.tdb file or something (haven't look at it too closely
because copying across a secrets.tdb form a working host fixed the
problem quick-smart so that users could get on with things).




More information about the plug mailing list