Is it possible/advisable to have centralized authentication across fedora 14, ubuntu 10.04, and win7 machines? I'm attempting to use 389 Directory Server on Fedora as the repository and not getting very far.
View 5 RepliesA time ago I've been trying to implement a PDC linux server with Samba and Openldap for centralized authentication for windows and linux clients, but I can NOT get it. So I read somewhere that there is another option called Directory Server and maybe that is possible to do. According to your experience do you recommend any 'how to' or 'tutorial' that will permit implement a PDC server for authenticating and sharing files and printers for windows and linux clients?
View 2 Replies View RelatedThis is what I have... An existing network with about 2 dozen Linux servers, varied distros, and about 3 dozen workstations, the vast majority of which are Windows XP pro, but there is one Windows Vista business, two Ubuntu, one Mac, and soon to be a Windows 7 pro. User accounts vary across all servers. There are 4 samba servers hosting different file shares.
This is what I need to do... I must centralize the user password database for all workstations if possible, if not, at least for all the windows workstations. I also need the user passwords for the samba file shares to be synchronized with those of the workstations. I need to have the workstation/file-share passwords expire every 90 days. I also must centralize the user passwords for all Linux Servers, but this can be done separately and I know there are tools like Kerberos available for this.
Is this possible to do with so many user accounts already existing in so many different places on the network, or would this "centralized authentication" require new user accounts to be created across the network?
If this is possible, what tools/services are the easiest and fastest to set this up with? As usual, I have an urgent deadline looming over me for this project and am trying as hard as I can to avoid the company slipping back into the realm of M$ or other proprietary software to accomplish this. Keep in mind, I don't need any additional services, such as roaming profiles, or anything like that. I really just need a centralized password database that can be referenced by Windows, and the Samba file shares.
I have been able to accomplish my goal of creating an AD-like authentication using LDAP,SAMBA and LAM. From what I have seen you can have this type of setup but it doesn't allow the passing of group policies to the desktops of the users.
View 2 Replies View RelatedI am working for a web hosting company. We work in red hat linux environment and the employees at present are having their data stored in individual systems. We wish to have a centralized environment, so that users can log in to a server with their user names irrespective of the systems they will set. Also, this could facilitate easy backup. we have about 70 systems, 90% linux machines. The number will grow in future. I am good in NIS, but not at all with LDAP. Is it okay if I suggest NIS?
View 2 Replies View Relatedthe thing that tends to draw out their frustrations the most are the error messages.
Things like "x.x not found, such and such can't continue" or "Unable to locate x.x", etc.
Well, of those people as I described above, a lot of them are fiercely independent people and would fix their own problems had they any idea what they were.
So, I had a thought that adding google or LQ.o search terms to the error messages, along with a link to the search feature, would be somewhat beneficial.
Perhaps with messages regarding missing files, then provide a link and message "To correct this issue, copy filename and submit it here -> url and download the package"
So I was wondering where I could find lots and lots of error message code.
I install Win7 firstthen I install Ubuntu in a separate partition it run ok with grublast i install fedora in a separate partition it run with 2 choice win7 and fedoraI use hiren boot cd to boot with mini linux and run grub 2.0 application on it.i set up and run i only use Win7 and booot linux error.
View 2 Replies View RelatedI had Windows Vista Business in my compaq presario CQ40-145 TU laptop, over which I installed Fedora 13, making the system dual boot. The Windows is set to be the default OS. Now I want to replace Vista with Windows 7 professional without affecting Fedora. As far as I understand, during boot up, the system enters Fedora's booting process and then gets redirected to Windows, and it is not directly windows even if the default OS is windows.
The reason behind not disturbing fedora is the updates, extra software and packages installed and the pain and time it took me to make my speakers, wlan and flash player work in it. I even don't remember the exact process of what I did. I don't have now so much time to search for it again. So I will take up only that way in which Fedora is not affected at all. And the second problem is my DVD drive is not working at all. So I'll like using USB stick for the same.
I just got Fedora 12, and I used su root to change the bin ownership to my primary developer account. For some reason, though, all subsequent attempts to log in as root have had authentication failure, be it through su or through the startup login screen. This does NOT occur for adminstrator tools such as Groups and Users.
View 8 Replies View RelatedJust installed Ubuntu 10.10 onto my new netbook from a USB stick. The laptop came with Win7 Starter, which I kept on a small partition. Installation was apparently successful, but when I start up the computer, it will go straight to Win7 and GRUB doesn't appear.
View 9 Replies View RelatedI had vista installed, then I installed Win7 on a dif. partition. Then I installed Ubuntu 11.4 over the vista partition (formatted first), and now I can't get into Win7. I'm really at a loss. I've tried the Win7 disk, and it doesn't detect the Win7 installation. I've also tried sudo update-grub, and it doesn't seem to detect the win7 install either. I've tried making the Win7 partition bootable using gpart as well. I'd like to dual boot Win7 and Ubuntu, however I need to do that.
View 9 Replies View Relatedi installed ubuntu after windows 7 but now i cant boot windows 7 i tried the start up repair and I've read through some questions answered on here and int figure out the problem i don't want to uninstall ubuntu unless it's my only option
View 9 Replies View Relatedi have ubuntu 10 and win 7 dual booting on one hdd, all of a sudden grub says error no such partition when i select windows at the boot menu. and i cant get to the win7 partition from ubuntu (to play music and stuff, this used to work, places, mount filesystem, 250 gigs whatever). i've tried the stuff in these links and nothing has worked so farpartition info
sudo fdisk -l /dev/sda
Device Boot Start End Blocks Id System
/dev/sda1 1 29094 233697523+ 7 HPFS/NTFS
/dev/sda2 * 29095 30401 10498477+ 83 Linux
I want to set up a centralized log server, and I have several requisites:
1. The ability to view multiple log files via a web interface or browser.
2. The server's ability to send e-mails to the administrators when a critical condition occurs within the log files.
The logcheck application seems like a good start. However, it does not have a web gui so I was wondering if anyone can recommend a program that either works with logcheck or has the above two requisites on its own.
This is the first time I have run into issues mounting windows shares but I really can't figure this out. Can someone put me out of my windows misery please.
First off, last week I rebuilt my work PC fromWIN7 32bit to WIN7 64bit since then I can no longer mount the window share on my ubuntu server:
I recreated my windows share called "Linux" and used the properties, advanced sharing and added everyone, full access and my domain account full access.
If I browse to \ipaddress I can see my share and access it. From a XP machine I can see the share and access it.
From linux I use the same mount point as before, /linux I use the same fstab and it fails
Code:
I try this manually now:
Code:
Next I try to mount it:
Code:
I looked at my firewall rules and they seem ok.
Next test was connecting to my 2nd pc on windows XP no probs mounted first time.
What is wrong with my new Win 7 setup?
I need to centralize the logging of several machine on one machine with syslog-ng.I'm currently using fail2ban for security enhancement and logwatch for log reports, which are based on file log on each machine. is it possible to keep local logging for fail2ban and logwatch (logwatch can be dropped, but not fail2ban). One other need is to move old logs to a ftp site for archiving, as in france we have to keep one year of logs.
Another thing I've seen, is that logging goes to a MySQL database instead of the filesystem which allow to have some nice feature as web frontend, search capabilities.how is it compatible with the ftp save?
- we have a bunch of linux servers.
- lots of users work with linux Desktops. They use them as testing servers.
- All the infrastructure has the Authentication services linked by Quest Auth Services againts an AD. This gives us the option of logon scripts, startup scripts, and other things.
- One interesting option this Quest thing gives us is SUDO management. We can edit sudoers file by GPO politics.
- Now we are deploying a NAS server from Hitachi with cifs and NFS mapping capabilities.
- Servers are managed by IT, so nobody can go root except us.
- Desktop users will also mount the NFS shares so they will be able to work with real data and read their own data from servers.
- Desktop users can go sudo su.
- If desktop users go from root to another user, the NFS let them work as they where the other user.
I would like to keep them from swithching users, but only between AD users, they must be able to switch to apache user or postgres user.
I want to implement centralized syslog server for my linux servers in order to log successfull logging and failure loggings.But Still I coudnt get the authentication messages.
View 3 Replies View RelatedIn my desire to learn, mess around and set up something useful on my home network, I'm looking for something that can do centralized login and remote home directories. When someone in my family logs in to a computer, windows or linux based, I want them to be able to use their credentials, then have their remote drive mounted and ready for use. I've looked over ldap solutions, attempted to set up an OpenLDAP server and realized I have no idea what was going on. Is an ldap implementation the proper way to go for my desired solution or am I barking up the wrong tree? I've just now set up OpenDS on a VM for testing but I need to do some research there.
View 7 Replies View RelatedI'm trying to set up a centralized log-on scheme in a research lab with about 10 computers. It's looking like we're going with LDAP - this decision may be out of my control (but if there's an alternative that would be REALLY better, do let me know). My question is we don't really have a domain name, so when all the tutorials say cn=example,cn=com, I can't mimic this exactly. I've been trying to get away with just one, like cn=researchlab. Will LDAP work with just one, or do I need to invent a second also? On the flipside, will it work with more? Our server can be reached by
lab.department.school.edu, could I do cn=lab,cn=department,cn=school,cn=edu?
We have a setup of around 10 computers with 1 linux server... We want to convert it into a centralized system where firewall services are activated from the linux server and certain websites are restricted from acess for the workstations.. Are there any good softwares for this.. open source preferably... I'm using debian already for the web server and file server already....
View 7 Replies View RelatedI would like to build a centralized address book for my SOHO server. Is that possible without the use of openLDAP (I would like to avoid that)?My clients will be:Thunderbird, KMail (for KDE 3.5) and webmail.If so, do you have any suggestions/Howtos?
View 4 Replies View RelatedI have a RHEL server with users logging in via ssh. I want to start using public keys instead of passwords with ssh. But public key is as good as a rotten tomato if it is unpassphrased and I cannot guarantee that all users will use passphrases. Therefore I will generate both private and public key on the server and will distribute the private key to the user via user-friendly web interface and thats where I will force them to use passphrase. I know they can change later the passphrase or remove it totally but my users are not so advanced.
So now I am trying to setup a centralized authorized_keys file with to be able to make them only root writable so they cannot put their own public keys on the server , it will be handled by scripts. Now the actual problem. I created /etc/ssh/keys directory instead of ~/.ssh and changed AuthorizedKeysFile to /etc/ssh/keys/%u in sshd_config But when I try to connect with the key I get the following error in the logs (after enabling DEBUG3 in sshd_config)
<CUT>
Mar 8 15:22:28 stagesmpp sshd[12248]: debug3: mm_request_receive entering
Mar 8 15:22:29 stagesmpp sshd[22358]: debug2: channel 0: rcvd adjust 33544
Mar 8 15:22:30 stagesmpp sshd[12248]: debug3: monitor_read: checking request 20
[code]...
I have around 9 squid proxy servers and going to deploy Dansguardian on all of them. But I feel managing individual copy/server would be an tedious job hence please let me know if any one aware of centralized management solution for Squid+Dansguardian? Or if not let me know if you are aware of any such other Open Source product.
View 1 Replies View Relatedi want to run a homeserver here for centralized data storage and more...features required:
client compatibility with most Linux distributions, MS Windows 2000, XP, Vista, 7, XBOX!
harddisk shutdown if not in use (got some real noisy ones)
easy administration?! (maybe web-based?)
security! no files or folders over the internet (yet)
[code]....
I have to set up a box which can manage all the logins in our company and has the feature to manage every possible permission with as much comfort as possible. We are using Linux and AIX therefore my Boss is willing to switch from our Windows DC to a Linux DC. And here lies the problem, I don't really know what is needed to set the Box up to manage the Unix, Samba and LDAP accounts with one tool maybe?
I would like to know which Software exactly is needed and how to manage to get the thing to work together with a security aspect. I configured a Samba DC with LDAP, Kerberos and TLS but it looks like I overdid it because Kerberos is not able to manage the things we need in a manner that the other Admins in my Company would get things done in a short time.
Therefore I would like to get listed all the Software needed and maybe some How Tos how to get thing working, because I am losing my nerves on this matter.
In the last 3 weeks I have set up several test boxes but every time something doesn't work. My biggest Problem is to get Samba and LDAP to work together with TLS or another security scenario.
I want to configure SSH key-based authentication and SSH password Authentication in same machine for different user .
View 1 Replies View RelatedOn Ubuntu server 10.10, with a relay smtp server with authentication via postfix; I keep getting 535: Incorrect authentication data. I'm sure my username and password is correct. Heres how I set up postfix: I created a file called smarthosts.conf in my /etc/postfix/ directory that contains the following:
[Code].....
my server uses plain text authentication on port 25. I would like to use security like SSL, but this particular server is unsecured.
I have setup openldap and samba for authenticating Windows and Linux clients on my server. They are working fine. Windows users are getting authenticated through server as Primary Domain Controller and Linux clients directly from Openldap directory. But I have little problem that is I want to mount home folders created on server to be available on clients so clients get a centralized storage with some quota on both Linux and Windows clients. Can you help me please how can I do that.
View 3 Replies View RelatedIf I am running a script, let's say a install script. Is there a way to make Su repeat authentication rather then just returning "Authentication failed" and continuing the script?
View 3 Replies View Related