Am Mittwoch, 1. Oktober 2003 20:18 schrieb James D. Parra: > Hello, > > What is the best method to have one central Linux server handling login > authentication for Linux and windows machines? > > What I would like to achieve is; > > 1) Provide only network server logins for Linux boxes and have no local > accounts on any Linux machine.
LDAP is the way to go. use pam_ldap if only linx accounts are used. If you want to use the sam password for windows and linux use pam_smb. > > 2) Have /home/$USER reside on the centralized Linux login server and not on > local machines. NFS (but it is insecure if you don't trust your network). > > 3) Ditto for windows machines (I know I can achieve this with Samba for > windows clients, unless there is a better way) See above. you need samba to authenticate windows. samba handles the user acounts via ldap too. > > If anyone has this type of environment set up, I would greatly appreciate > your help and advice. Yes, we have configured it that way. But wee use different passwords for windowsd and unix accounts. Everything is in ldap. We have three ldap server (one master, two slaves) postfix is configured via ldap (aliases canonicals et al). Only cyrus (imap server) has its own user database. Addressbook is stored in LDAP (KMail, Mozilla and Outlook grabs the e-mail addresses from the ldap store -- autocompletion). Every authentication is done against ldap (wherever possible) like proxy mail and others more. > > Many thanks in advance, > > > James Martin -- ------------------------------------------------------------ H E L I X Gesellschaft f�r Software & Engineering mbH ------------------------------------------------------------ Hanauer Landstrasse 52 Telefon (069) 4789 35-30 D-60314 Frankfurt am Main Telefax (069) 4789 35-44 ------------------------------------------------------------ http://www.helix-gmbh.net [EMAIL PROTECTED] ------------------------------------------------------------
pgp00000.pgp
Description: signature
