RHEL 3 LDAP auth and Home Directories

Harry Hoffman hhoffman at ip-solutions.net
Thu Jul 6 01:20:16 UTC 2006 

This is off the top of my head but perhaps you could have a cron script
run every 5min and look for changes to the ldap uid/gids and add
appropriate home directories.

Either that or have your provisioning software ssh commands (via sudo)
to the machine to create the homedirs when the user DN is created in the
LDAP database.

Cheers,
Harry

-- 
Harry Hoffman
Integrated Portable Solutions, LLC
877.846.5927 ext 1000
http://www.ip-solutions.net/


Esquivel, Vicente wrote:
> So the first time I login it has to be something like telnet or ftp or
> imap....etc... 
> 
>> -----Original Message-----
>> From: redhat-list-bounces at redhat.com 
>> [mailto:redhat-list-bounces at redhat.com] On Behalf Of Harry Hoffman
>> Sent: Wednesday, July 05, 2006 4:57 PM
>> To: General Red Hat Linux discussion list
>> Subject: Re: RHEL 3 LDAP auth and Home Directories
>>
>> I don't think pam_mkhomedir works with PrivSep enabled on OpenSSH
>>
>>
>> --
>> Harry Hoffman
>> Integrated Portable Solutions, LLC
>> 877.846.5927 ext 1000
>> http://www.ip-solutions.net/
>>
>>
>> Esquivel, Vicente wrote:
>>> Thanks for the insight
>>>
>>> I am now getting sshd fatal error when trying to login as 
>> an ldap user.
>>> I can run the command getent passwd and I see that user I 
>> am trying to
>>> login as.  Any ideas?
>>>
>>> Vince 
>>>
>>>> -----Original Message-----
>>>> From: redhat-list-bounces at redhat.com 
>>>> [mailto:redhat-list-bounces at redhat.com] On Behalf Of Ian Marks
>>>> Sent: Wednesday, July 05, 2006 3:25 PM
>>>> To: General Red Hat Linux discussion list
>>>> Subject: Re: RHEL 3 LDAP auth and Home Directories
>>>>
>>>> Just ran into the same issue and found this link helpful.
>>>>
>>>> http://www.pcgossip.com/doc/ldap_dc.html
>>>>
>>>> Esquivel, Vicente wrote:
>>>>> Hello all,
>>>>>  
>>>>> I am needing to setup a Linux server that will authenicate 
>>>> again LDAP 
>>>>> and need to be able to create home directories upon initial 
>>>> login via 
>>>>> pam.  Can help me with what it is that I need to do to 
>>>> accomplish this?
>>>>>  
>>>>> Thanks
>>>>> Vince
>>>>>   
>>>> --
>>>> redhat-list mailing list
>>>> unsubscribe 
>> mailto:redhat-list-request at redhat.com?subject=unsubscribe
>>>> https://www.redhat.com/mailman/listinfo/redhat-list
>>>>
>> -- 
>> redhat-list mailing list
>> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
>> https://www.redhat.com/mailman/listinfo/redhat-list
>>
>

More information about the redhat-list mailing list