[K12OSN] smbldap - adding ldap users to local groups

Rob Owens rowens at ptd.net
Sun Oct 21 00:26:15 UTC 2007 

On Sat, Oct 20, 2007 at 02:46:42PM -0400, James P. Kinney III wrote:
> On Sun, 2007-10-21 at 06:32 +1300, Krsnendu dasa wrote:
> > On 21/10/2007, James P. Kinney III <jkinney at localnetsolutions.com> wrote:
> > > On Fri, 2007-10-19 at 19:55 -0400, Rob Owens wrote:
> > 
> > > It looks like you need to add users FROM the LDAP space TO the local
> > > fuse group.
> > >
> > > I think that creating an LDAP group called fusers and adding LDAP
> > > accounts to this group is step one. Then add the LDAP group fusers to be
> > > a member of the local machine fuse group.
> > 
> > Step one is straightforward.
> > How do you do step two?
> 
> From a console on the server as root:
> 
> vigr (this is a vi-based group file editor - it locks the file to
> prevent other writes)
> 
> now append fusers to the fuse group entry. If it is after another entry
> for the fuse group, use a comma between the entries.
> 
> You will not need to edit the gshadow file.

Thanks for the info.  Unfortunately it didn't work for me, though.  Is there something I need to do to "initialize" the group membership?  I logged out/in, then tried rebooting.  Still no good.

Is there anything special I need to do in the creation of the ldap group?  I used smbldap-groupadd -a ldapgroupname.  

The group memberships seem to be correct (I used the cdrom group as a test):

$ getent group | grep cdrom
cdrom:x:24:mythtv,ldapcdrom
ldapcdrom:*:10005:rob

But I can't access anything with cdrom group privileges.  I even created a text
file owned by root.cdrom with 770 permissions, and I can't read it.

Let me know if you've got any ideas.

-Rob

> > 
> > Krsnendu dasa
> > 
> > _______________________________________________
> > K12OSN mailing list
> > K12OSN at redhat.com
> > https://www.redhat.com/mailman/listinfo/k12osn
> > For more info see <http://www.k12os.org>
> > 
> -- 
> James P. Kinney III          
> CEO & Director of Engineering 
> Local Net Solutions,LLC        
> 770-493-8244                    
> http://www.localnetsolutions.com
> 
> GPG ID: 829C6CA7 James P. Kinney III (M.S. Physics)
> <jkinney at localnetsolutions.com>
> Fingerprint = 3C9E 6366 54FC A3FE BA4D 0659 6190 ADC3 829C 6CA7



> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>

More information about the K12OSN mailing list