[389-users] Re: What Do I Need?

2019-06-18 Thread William Brown 
Great! Feel free to contact this list if you have more design questions, but 
strictly if you choose Samba AD you should contact samba-users list, but I'm 
happy to answer some things directly too. Hope this helps! 




> On 16 Jun 2019, at 02:06, Eugene Poole  wrote:
> 
> Since the most are laptops and tablets I'll power them down when not in use 
> (all of my Linux machines remain powered up all the time) I'll leave them out 
> of the equation for now until I read up on Samba.
> 
> TIA
> 
> Gene
> 
> 
> On 6/13/2019 3:32 AM, William Brown wrote:
>> 
>>> On 12 Jun 2019, at 19:43, Eugene Poole  wrote:
>>> 
>>> All of my Windows machines are workstations (2 WIN 7 laptops; 1 WIN 7 
>>> desktop; 1 WIN 10 tablet).  I have 1 ArcaOS (OS/2) desktop. The remainder 
>>> of my machines (40+) are CentOS Linux 7 and 6.
>>> 
>>> My 'main' machine is CentOS 7 and it runs Oracle 12c database; PostgreSQL 
>>> 9.6 database; master DNS; Apache Web Server; 6 KVM virtual machines.
>>> 
>>> I am much more 'comfortable' on Linux than I am on Windows.
>> The problem you will run into very quickly is that windows has no 
>> integration for sharing users/groups with LDAP. Windows will only interact 
>> with active directory, which is quite a different experience - but your 
>> linux clients can consume AD as generic LDAP clients.
>> 
>> There are some choices here like Samba AD for certain, but 389 may not do 
>> what you want in this case I'm sorry :(
>> 
>>> Gene
>>> 
>>> On 6/12/2019 3:23 AM, William Brown wrote:
> On 12 Jun 2019, at 04:25, Eugene Poole  wrote:
> 
> I need to control users and groups of users to provide them access to 
> specific machines.  Once our machine number went above 15 controlling who 
> has access to what machines has become difficult.
 So you mention that you have some windows machines here too, is that 
 correct? Are the machines workstations or servers? You have some linux 
 machines too?
 
> Gene
> 
> On 6/10/2019 4:11 AM, William Brown wrote:
>>> On 7 Jun 2019, at 23:53, Eugene Poole  wrote:
>>> 
>>> I'm trying to upgrade my environment and I've reinstalled my CentOS 
>>> machines to CentOS 7 except for one.  I've got my DNS for my LAN 
>>> working just fine.  So now it's time for Directory Server.
>>> 
>>> What is a GOOD tutorial to follow? My environment includes 26 physical 
>>> and KVM virtual machines; 4 Windows 7 machines and 1 ArcaOS (OS/2) 
>>> machine. What is a DS configuration to go for?
>> I think the better thing to ask is what do you want to achieve here? 
>> What's your ideal setup for integrating each of these clients, and what 
>> information do you want to make available to them? I think that would 
>> help me to advise on "what next" for you :)
>> 
>> 
>> 
>>> TIA
>>> 
>>> -- 
>>> Eugene Poole
>>> Woodstock, Georgia
>>> ___
>>> 389-users mailing list -- 389-users@lists.fedoraproject.org
>>> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
>>> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
>>> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
>>> List Archives: 
>>> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
>> —
>> Sincerely,
>> 
>> William Brown
>> 
>> Senior Software Engineer, 389 Directory Server
>> SUSE Labs
>> ___
>> 389-users mailing list -- 389-users@lists.fedoraproject.org
>> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
>> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
>> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
>> List Archives: 
>> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
> -- 
> Eugene Poole
> Woodstock, Georgia
> ___
> 389-users mailing list -- 389-users@lists.fedoraproject.org
> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives: 
> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
 —
 Sincerely,
 
 William Brown
 
 Senior Software Engineer, 389 Directory Server
 SUSE Labs
 ___
 389-users mailing list -- 389-users@lists.fedoraproject.org
 To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
 Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
 List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
 List Archives:

[389-users] Re: What Do I Need?

2019-06-15 Thread Eugene Poole 
Since the most are laptops and tablets I'll power them down when not in 
use (all of my Linux machines remain powered up all the time) I'll leave 
them out of the equation for now until I read up on Samba.


TIA

Gene


On 6/13/2019 3:32 AM, William Brown wrote:



On 12 Jun 2019, at 19:43, Eugene Poole  wrote:

All of my Windows machines are workstations (2 WIN 7 laptops; 1 WIN 7 desktop; 
1 WIN 10 tablet).  I have 1 ArcaOS (OS/2) desktop. The remainder of my machines 
(40+) are CentOS Linux 7 and 6.

My 'main' machine is CentOS 7 and it runs Oracle 12c database; PostgreSQL 9.6 
database; master DNS; Apache Web Server; 6 KVM virtual machines.

I am much more 'comfortable' on Linux than I am on Windows.

The problem you will run into very quickly is that windows has no integration 
for sharing users/groups with LDAP. Windows will only interact with active 
directory, which is quite a different experience - but your linux clients can 
consume AD as generic LDAP clients.

There are some choices here like Samba AD for certain, but 389 may not do what 
you want in this case I'm sorry :(


Gene

On 6/12/2019 3:23 AM, William Brown wrote:

On 12 Jun 2019, at 04:25, Eugene Poole  wrote:

I need to control users and groups of users to provide them access to specific 
machines.  Once our machine number went above 15 controlling who has access to 
what machines has become difficult.

So you mention that you have some windows machines here too, is that correct? 
Are the machines workstations or servers? You have some linux machines too?


Gene

On 6/10/2019 4:11 AM, William Brown wrote:

On 7 Jun 2019, at 23:53, Eugene Poole  wrote:

I'm trying to upgrade my environment and I've reinstalled my CentOS machines to 
CentOS 7 except for one.  I've got my DNS for my LAN working just fine.  So now 
it's time for Directory Server.

What is a GOOD tutorial to follow? My environment includes 26 physical and KVM 
virtual machines; 4 Windows 7 machines and 1 ArcaOS (OS/2) machine. What is a 
DS configuration to go for?

I think the better thing to ask is what do you want to achieve here? What's your ideal 
setup for integrating each of these clients, and what information do you want to make 
available to them? I think that would help me to advise on "what next" for you 
:)




TIA

--
Eugene Poole
Woodstock, Georgia
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

—
Sincerely,

William Brown

Senior Software Engineer, 389 Directory Server
SUSE Labs
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

--
Eugene Poole
Woodstock, Georgia
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

—
Sincerely,

William Brown

Senior Software Engineer, 389 Directory Server
SUSE Labs
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

--
Eugene Poole
Woodstock, Georgia
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

—
Sincerely,

William Brown

Senior Software Engineer, 389 Directory Server
SUSE Labs
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List

[389-users] Re: What Do I Need?

2019-06-13 Thread William Brown 


> On 12 Jun 2019, at 19:43, Eugene Poole  wrote:
> 
> All of my Windows machines are workstations (2 WIN 7 laptops; 1 WIN 7 
> desktop; 1 WIN 10 tablet).  I have 1 ArcaOS (OS/2) desktop. The remainder of 
> my machines (40+) are CentOS Linux 7 and 6.
> 
> My 'main' machine is CentOS 7 and it runs Oracle 12c database; PostgreSQL 9.6 
> database; master DNS; Apache Web Server; 6 KVM virtual machines.
> 
> I am much more 'comfortable' on Linux than I am on Windows.

The problem you will run into very quickly is that windows has no integration 
for sharing users/groups with LDAP. Windows will only interact with active 
directory, which is quite a different experience - but your linux clients can 
consume AD as generic LDAP clients.

There are some choices here like Samba AD for certain, but 389 may not do what 
you want in this case I'm sorry :( 

> 
> Gene
> 
> On 6/12/2019 3:23 AM, William Brown wrote:
>> 
>>> On 12 Jun 2019, at 04:25, Eugene Poole  wrote:
>>> 
>>> I need to control users and groups of users to provide them access to 
>>> specific machines.  Once our machine number went above 15 controlling who 
>>> has access to what machines has become difficult.
>> So you mention that you have some windows machines here too, is that 
>> correct? Are the machines workstations or servers? You have some linux 
>> machines too?
>> 
>>> Gene
>>> 
>>> On 6/10/2019 4:11 AM, William Brown wrote:
> On 7 Jun 2019, at 23:53, Eugene Poole  wrote:
> 
> I'm trying to upgrade my environment and I've reinstalled my CentOS 
> machines to CentOS 7 except for one.  I've got my DNS for my LAN working 
> just fine.  So now it's time for Directory Server.
> 
> What is a GOOD tutorial to follow? My environment includes 26 physical 
> and KVM virtual machines; 4 Windows 7 machines and 1 ArcaOS (OS/2) 
> machine. What is a DS configuration to go for?
 I think the better thing to ask is what do you want to achieve here? 
 What's your ideal setup for integrating each of these clients, and what 
 information do you want to make available to them? I think that would help 
 me to advise on "what next" for you :)
 
 
 
> TIA
> 
> -- 
> Eugene Poole
> Woodstock, Georgia
> ___
> 389-users mailing list -- 389-users@lists.fedoraproject.org
> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives: 
> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
 —
 Sincerely,
 
 William Brown
 
 Senior Software Engineer, 389 Directory Server
 SUSE Labs
 ___
 389-users mailing list -- 389-users@lists.fedoraproject.org
 To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
 Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
 List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
 List Archives: 
 https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
>>> -- 
>>> Eugene Poole
>>> Woodstock, Georgia
>>> ___
>>> 389-users mailing list -- 389-users@lists.fedoraproject.org
>>> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
>>> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
>>> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
>>> List Archives: 
>>> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
>> —
>> Sincerely,
>> 
>> William Brown
>> 
>> Senior Software Engineer, 389 Directory Server
>> SUSE Labs
>> ___
>> 389-users mailing list -- 389-users@lists.fedoraproject.org
>> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
>> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
>> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
>> List Archives: 
>> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
> 
> -- 
> Eugene Poole
> Woodstock, Georgia
> ___
> 389-users mailing list -- 389-users@lists.fedoraproject.org
> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives: 
> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

—
Sincerely,

William Brown

Senior Software Engineer, 389 Directory Server
SUSE Labs
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To

[389-users] Re: What Do I Need?

2019-06-12 Thread Eugene Poole 

I am going to use this model for my environment after I install Ansible.

Thank You!

Gene

On 6/12/2019 8:29 AM, Olivier JUDITH wrote:

Hi,

This is how i manage my servers .
Each host is a group in my ldap entries , i also create group of hosts 
as groups in ldap (ie: cn=webservers ).
on each machine i have deployed sssd-ldap with a ldap_access_filter = 
(|(cn=admgrp,...)(cn=webservers,ou=...)(cn=devops,ou=...))

admgrp group contains all admin users...

When i deploy a machine i launch an Ansible playbook that set the 
right group in sssd.conf file regarding my inventory then create the 
group on my ldap server.


You only have to declare users in group or nested groups
Hope that can help

Le mer. 12 juin 2019 à 10:17, William Brown > a écrit :




> On 12 Jun 2019, at 04:25, Eugene Poole mailto:etpool...@comcast.net>> wrote:
>
> I need to control users and groups of users to provide them
access to specific machines.  Once our machine number went above
15 controlling who has access to what machines has become difficult.

So you mention that you have some windows machines here too, is
that correct? Are the machines workstations or servers? You have
some linux machines too?

>
> Gene
>
> On 6/10/2019 4:11 AM, William Brown wrote:
>>
>>> On 7 Jun 2019, at 23:53, Eugene Poole mailto:etpool...@comcast.net>> wrote:
>>>
>>> I'm trying to upgrade my environment and I've reinstalled my
CentOS machines to CentOS 7 except for one. I've got my DNS for my
LAN working just fine.  So now it's time for Directory Server.
>>>
>>> What is a GOOD tutorial to follow? My environment includes 26
physical and KVM virtual machines; 4 Windows 7 machines and 1
ArcaOS (OS/2) machine. What is a DS configuration to go for?
>> I think the better thing to ask is what do you want to achieve
here? What's your ideal setup for integrating each of these
clients, and what information do you want to make available to
them? I think that would help me to advise on "what next" for you :)
>>
>>
>>
>>> TIA
>>>
>>> --
>>> Eugene Poole
>>> Woodstock, Georgia
>>> ___
>>> 389-users mailing list -- 389-users@lists.fedoraproject.org

>>> To unsubscribe send an email to
389-users-le...@lists.fedoraproject.org

>>> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
>>> List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
>>> List Archives:

https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
>> —
>> Sincerely,
>>
>> William Brown
>>
>> Senior Software Engineer, 389 Directory Server
>> SUSE Labs
>> ___
>> 389-users mailing list -- 389-users@lists.fedoraproject.org

>> To unsubscribe send an email to
389-users-le...@lists.fedoraproject.org

>> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
>> List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
>> List Archives:

https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
>
> --
> Eugene Poole
> Woodstock, Georgia
> ___
> 389-users mailing list -- 389-users@lists.fedoraproject.org

> To unsubscribe send an email to
389-users-le...@lists.fedoraproject.org

> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives:

https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

—
Sincerely,

William Brown

Senior Software Engineer, 389 Directory Server
SUSE Labs
___
389-users mailing list -- 389-users@lists.fedoraproject.org

To unsubscribe send an email to
389-users-le...@lists.fedoraproject.org

Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:

https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org


___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct:

[389-users] Re: What Do I Need?

2019-06-12 Thread Eugene Poole 
All of my Windows machines are workstations (2 WIN 7 laptops; 1 WIN 7 
desktop; 1 WIN 10 tablet).  I have 1 ArcaOS (OS/2) desktop. The 
remainder of my machines (40+) are CentOS Linux 7 and 6.


My 'main' machine is CentOS 7 and it runs Oracle 12c database; 
PostgreSQL 9.6 database; master DNS; Apache Web Server; 6 KVM virtual 
machines.


I am much more 'comfortable' on Linux than I am on Windows.

Gene

On 6/12/2019 3:23 AM, William Brown wrote:



On 12 Jun 2019, at 04:25, Eugene Poole  wrote:

I need to control users and groups of users to provide them access to specific 
machines.  Once our machine number went above 15 controlling who has access to 
what machines has become difficult.

So you mention that you have some windows machines here too, is that correct? 
Are the machines workstations or servers? You have some linux machines too?


Gene

On 6/10/2019 4:11 AM, William Brown wrote:

On 7 Jun 2019, at 23:53, Eugene Poole  wrote:

I'm trying to upgrade my environment and I've reinstalled my CentOS machines to 
CentOS 7 except for one.  I've got my DNS for my LAN working just fine.  So now 
it's time for Directory Server.

What is a GOOD tutorial to follow? My environment includes 26 physical and KVM 
virtual machines; 4 Windows 7 machines and 1 ArcaOS (OS/2) machine. What is a 
DS configuration to go for?

I think the better thing to ask is what do you want to achieve here? What's your ideal 
setup for integrating each of these clients, and what information do you want to make 
available to them? I think that would help me to advise on "what next" for you 
:)




TIA

--
Eugene Poole
Woodstock, Georgia
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

—
Sincerely,

William Brown

Senior Software Engineer, 389 Directory Server
SUSE Labs
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

--
Eugene Poole
Woodstock, Georgia
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

—
Sincerely,

William Brown

Senior Software Engineer, 389 Directory Server
SUSE Labs
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org


--
Eugene Poole
Woodstock, Georgia
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

[389-users] Re: What Do I Need?

2019-06-12 Thread Olivier JUDITH 
Hi,

This is how i manage my servers .
Each host is a group in my ldap entries , i also create group of hosts as
groups in ldap (ie: cn=webservers ).
on each machine i have deployed sssd-ldap with a ldap_access_filter =
(|(cn=admgrp,...)(cn=webservers,ou=...)(cn=devops,ou=...))
admgrp group contains all admin users...

When i deploy a machine i launch an Ansible playbook that set the right
group in sssd.conf file regarding my inventory then create the group on my
ldap server.

You only have to declare users in group or nested groups

Hope that can help

Le mer. 12 juin 2019 à 10:17, William Brown  a écrit :

>
>
> > On 12 Jun 2019, at 04:25, Eugene Poole  wrote:
> >
> > I need to control users and groups of users to provide them access to
> specific machines.  Once our machine number went above 15 controlling who
> has access to what machines has become difficult.
>
> So you mention that you have some windows machines here too, is that
> correct? Are the machines workstations or servers? You have some linux
> machines too?
>
> >
> > Gene
> >
> > On 6/10/2019 4:11 AM, William Brown wrote:
> >>
> >>> On 7 Jun 2019, at 23:53, Eugene Poole  wrote:
> >>>
> >>> I'm trying to upgrade my environment and I've reinstalled my CentOS
> machines to CentOS 7 except for one.  I've got my DNS for my LAN working
> just fine.  So now it's time for Directory Server.
> >>>
> >>> What is a GOOD tutorial to follow? My environment includes 26 physical
> and KVM virtual machines; 4 Windows 7 machines and 1 ArcaOS (OS/2) machine.
> What is a DS configuration to go for?
> >> I think the better thing to ask is what do you want to achieve here?
> What's your ideal setup for integrating each of these clients, and what
> information do you want to make available to them? I think that would help
> me to advise on "what next" for you :)
> >>
> >>
> >>
> >>> TIA
> >>>
> >>> --
> >>> Eugene Poole
> >>> Woodstock, Georgia
> >>> ___
> >>> 389-users mailing list -- 389-users@lists.fedoraproject.org
> >>> To unsubscribe send an email to
> 389-users-le...@lists.fedoraproject.org
> >>> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> >>> List Guidelines:
> https://fedoraproject.org/wiki/Mailing_list_guidelines
> >>> List Archives:
> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
> >> —
> >> Sincerely,
> >>
> >> William Brown
> >>
> >> Senior Software Engineer, 389 Directory Server
> >> SUSE Labs
> >> ___
> >> 389-users mailing list -- 389-users@lists.fedoraproject.org
> >> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
> >> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> >> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> >> List Archives:
> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
> >
> > --
> > Eugene Poole
> > Woodstock, Georgia
> > ___
> > 389-users mailing list -- 389-users@lists.fedoraproject.org
> > To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
> > Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> > List Archives:
> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
>
> —
> Sincerely,
>
> William Brown
>
> Senior Software Engineer, 389 Directory Server
> SUSE Labs
> ___
> 389-users mailing list -- 389-users@lists.fedoraproject.org
> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives:
> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
>
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

[389-users] Re: What Do I Need?

2019-06-12 Thread William Brown 


> On 12 Jun 2019, at 04:25, Eugene Poole  wrote:
> 
> I need to control users and groups of users to provide them access to 
> specific machines.  Once our machine number went above 15 controlling who has 
> access to what machines has become difficult.

So you mention that you have some windows machines here too, is that correct? 
Are the machines workstations or servers? You have some linux machines too? 

> 
> Gene
> 
> On 6/10/2019 4:11 AM, William Brown wrote:
>> 
>>> On 7 Jun 2019, at 23:53, Eugene Poole  wrote:
>>> 
>>> I'm trying to upgrade my environment and I've reinstalled my CentOS 
>>> machines to CentOS 7 except for one.  I've got my DNS for my LAN working 
>>> just fine.  So now it's time for Directory Server.
>>> 
>>> What is a GOOD tutorial to follow? My environment includes 26 physical and 
>>> KVM virtual machines; 4 Windows 7 machines and 1 ArcaOS (OS/2) machine. 
>>> What is a DS configuration to go for?
>> I think the better thing to ask is what do you want to achieve here? What's 
>> your ideal setup for integrating each of these clients, and what information 
>> do you want to make available to them? I think that would help me to advise 
>> on "what next" for you :)
>> 
>> 
>> 
>>> TIA
>>> 
>>> -- 
>>> Eugene Poole
>>> Woodstock, Georgia
>>> ___
>>> 389-users mailing list -- 389-users@lists.fedoraproject.org
>>> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
>>> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
>>> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
>>> List Archives: 
>>> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
>> —
>> Sincerely,
>> 
>> William Brown
>> 
>> Senior Software Engineer, 389 Directory Server
>> SUSE Labs
>> ___
>> 389-users mailing list -- 389-users@lists.fedoraproject.org
>> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
>> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
>> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
>> List Archives: 
>> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
> 
> -- 
> Eugene Poole
> Woodstock, Georgia
> ___
> 389-users mailing list -- 389-users@lists.fedoraproject.org
> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives: 
> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

—
Sincerely,

William Brown

Senior Software Engineer, 389 Directory Server
SUSE Labs
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

[389-users] Re: What Do I Need?

2019-06-11 Thread Eugene Poole 
I need to control users and groups of users to provide them access to 
specific machines.  Once our machine number went above 15 controlling 
who has access to what machines has become difficult.


Gene

On 6/10/2019 4:11 AM, William Brown wrote:



On 7 Jun 2019, at 23:53, Eugene Poole  wrote:

I'm trying to upgrade my environment and I've reinstalled my CentOS machines to 
CentOS 7 except for one.  I've got my DNS for my LAN working just fine.  So now 
it's time for Directory Server.

What is a GOOD tutorial to follow? My environment includes 26 physical and KVM 
virtual machines; 4 Windows 7 machines and 1 ArcaOS (OS/2) machine. What is a 
DS configuration to go for?

I think the better thing to ask is what do you want to achieve here? What's your ideal 
setup for integrating each of these clients, and what information do you want to make 
available to them? I think that would help me to advise on "what next" for you 
:)




TIA

--
Eugene Poole
Woodstock, Georgia
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

—
Sincerely,

William Brown

Senior Software Engineer, 389 Directory Server
SUSE Labs
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org


--
Eugene Poole
Woodstock, Georgia
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

[389-users] Re: What Do I Need?

2019-06-10 Thread William Brown 


> On 7 Jun 2019, at 23:53, Eugene Poole  wrote:
> 
> I'm trying to upgrade my environment and I've reinstalled my CentOS machines 
> to CentOS 7 except for one.  I've got my DNS for my LAN working just fine.  
> So now it's time for Directory Server.
> 
> What is a GOOD tutorial to follow? My environment includes 26 physical and 
> KVM virtual machines; 4 Windows 7 machines and 1 ArcaOS (OS/2) machine. What 
> is a DS configuration to go for?

I think the better thing to ask is what do you want to achieve here? What's 
your ideal setup for integrating each of these clients, and what information do 
you want to make available to them? I think that would help me to advise on 
"what next" for you :) 



> 
> TIA
> 
> -- 
> Eugene Poole
> Woodstock, Georgia
> ___
> 389-users mailing list -- 389-users@lists.fedoraproject.org
> To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives: 
> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org

—
Sincerely,

William Brown

Senior Software Engineer, 389 Directory Server
SUSE Labs
___
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org