[K12OSN] advice needed: single sign and remote file storage

john lists.john at gmail.com
Thu Dec 8 19:06:25 UTC 2005


Hi all,

I need some advice and I hope folks here can help. I have set up
k12ltsp to provide single sign on and file storage for users in
Windows Domain which uses ADS. However instead of storing the files
locally on the k12ltsp box, I would like to have my file storage on a
separate Samba file server (and in the future several Samba servers).
So basically multiple Samba installations using ADS and all using the
same SID==>GID/UID mapping.

So here's the scenerio:

Linux box A is running FC4 , Samba and NFS. This box exports /home via
NFS to Linux Box B running K12LTSP and Winbind. I have single sign
(for windows and terminal clients)  via winbind working on box B.

Problem: I need someway to keep SID ==> GID/UID mapping consistent
from box to box, if I run two version of winbind, mappings will be out
of sync. I THINK i need to create a unified IDMAP and point box A to
it. I've been looking at IDMap_RID here
http://tr.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#id2567740
but I am not sure that this is even in the ball park.

I could really use some help on this!

TIA,

John




More information about the K12OSN mailing list