On Tuesday 20 November 2007 01:34:26 Peter Bloomfield wrote: > I am trying to setup an LDAP server for user authentication. The > environment I am in has windows XP and 2000, MAC and a couple of > different linux, SuSE and Fedora. > > I have a little test network consisting of three machines, a linux > box (SuSE 10.3), a windows XP box and a MAC. I have setup the SuSE > box as an LDAP server (via yast2 modules), but am now at a loss of > how to include the user information for the authentication. > > I want to add a couple of users 'Bill' and 'Ben' to the LDAP server > and then setup up the client software on the MAC and Windows box to > log in.
As Pete (Connolly) has already mentioned the populating of openLDAP via YaST should be fairly straightforward. However, I'm guessing from the description above about having LDAP as an authentication source for user logins you're probably also looking at Samba? If not, have you added some 3rd party software (GINA) to the Windows clients to enable them to do some sort of LDAP based authentication for logins? Out of the box, Windows (XP and 2000) can either login against a local accounts database or a Windows domain - so long as the client has been joined to the domain. If you're looking to integrate LDAP and Samba there are quite a few HOWTOs via google (although not SUSE specific as far as I can see). Depending on the size of your network, using an LDAP backed Samba infrastructure might be overkill. Samba on it's own can easily imitate a Windows NT4 domain either using the tdbsam backend or an LDAP backend. The reason for using an LDAP backend is replication and scalability. With tdbsam you're essentially emulating an NT4 domain with a single PDC. With LDAP you're emulating an NT4 domain with PDC and BDC servers. (It's not an identical match up but the analogy holds) On it's own, Samba cannot at present emulate a full Active Directory infrastructure (e.g. Group Policies) but Samba servers can act as Member servers in an AD domain. As for the MacOS computers... are they OSX? or legacy MacOS? If OSX then as it's basically BSD under the hood you should be able to set up a variety of authentication options for user logins. I'm pretty sure they too can utilise a Windows domain for this purpose (and hence Samba backended by either tdbsam or LDAP would suffice). > Can anybody point me in the direction of a how to which will > demonstrate how I can do this. Hmmm - not for SUSE specifically it seems. You can just use the documentation at samba.org though, as it looks pretty comprehensive. Jon -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
