OpenSUSE Network :: Mounting NFS Shares According To LDAP Authentication?
Jan 18, 2011
I am posting this as I have tried several times to work this out. I have read article after article, post after post and tutorial after to tutorial to sort this issue. I have an Ubuntu 10.04 machine running as the LDAP and NFS server with two Opensuse 11.3 desktop machines. Both of the Opensuse machines can login using the LDAP server for authentication and this works fine. The server also exports the NFS Shares no problem but I am unable to mount the shares from the Opensuse machines. I have been using Yast, NFS Client to mount them.
Yast NFS Client can see the shares and lists them however when I apply the settings it states:
'Unable to mount entries in etc/fstab' I need to mount the shares according to the LDAP details as I want the users to be able to access their files no matter which machine they login at. Can anyone shed any light on the issue. Any help would be great and I would be enternally grateful as I am now beginning to pull my hear out slightly.
View 2 Replies
ADVERTISEMENT
Jan 24, 2011
I have created a CA on my server then created a server certificate under that then exported it as a common server certificate.I have then gone to my LDAP server and enabled TLS and told it to use the common server certificate.Now on my client I have enabled LDAP TLS/SSL and it's asking me to download a certificate ... from where ? Do I export the certificate to a file and put it on a web server.If so what format as the export offers loads.
View 1 Replies
View Related
May 7, 2011
On this moment i configure a testenvironment with 1 Microsoft active directory server and 1 Opensuse 11 samba filesharing server. But i have a issue. The samba server is add to the domain and the servers can communicate with eachother. I can login to the domain on the samba server and the LDAP settings tab on yast2 samba configuration tool tell me that samba and the MS LDAP server can communicate with eachother. I can see the shares on the samba server but i can't autenticate myself. When i whant to logon than see i always "domain: domainname.local" and "access denied". My question is now how can i give the MS administrator account rights to view the shares and configure the rights for the other users.Samba config file
PHP Code:
[global]
workgroup = WIN-FVJBNQIJE9O@WOENSDRECHT.LOCAL
[code]....
View 1 Replies
View Related
May 20, 2011
I'm using Opensuse 11.4 updated from 11.3, update from 11.2 updated from. I'm mounting at boot time (in fstab) some shares from an opensuse 11.2 server. Mounting worked fine in 11.2, 11.3 and also in 11.4 but suddenly (maybe an automatic update?) It stopped working.... sometimes.
Sometimes they are mounted properly but sometimes they aren't. When mount fails I get a log error: "rpc.statd is not runninf but is required for remote locking. Either use '-o nolock' to keep locks local or start statd"
If I run manually (as root) mount -a the shares mount properly always, so I thought it was a problem of timing (the service starting late) so I tried to get a script to run after the network initialitation, the script does: "mount -a". But it doesn't work either.
View 3 Replies
View Related
May 15, 2011
I have more than 150 Linux desktop computer in my office IT setup.
I want to configure LDAP centralize network authentication for all the desktop computer.
My requirement is below mentioned.
The LDAP server will only authenticate the desktop computer at the log-in time when the user start computer.
The home directory of all the user should be create in their desktop local computer not in the LDAP server.
And flexibility of user log-in for every desktop. (any user can log-in any computer with his/her username and password)and the home directory will create automatically in the local desktop computer automatically the moment any user will log-in to any computer in the network and the LDAP server will authenticate for desktop-network log-in in to the computer.
View 1 Replies
View Related
May 4, 2010
Enviroment:
-server ubuntu 9.04 with samba
-client fresh ubuntu 10.04
ubuntu is not auto-mounting samba shares. Old 9.04 done it without a problem. I need to type sudo mount -a to have samba mounted.
fstab:
//192.168.1.101/www /mokonawww cifs auto,iocharset=utf8 0 0
ls -l
drwxrwxrwx 25 root root 0 2010-05-03 17:44 mokonawww
Tested with diffrent parameters. And another problem also with samba shares, when I edit file from editor (eclipse) after save i got 'file changed dialog'. seems like file is written with some delay ? and timestamp dont agree (its my blind quess). On 9.04 no problems. Tested with 2 instances of Eclipse. One copied from 9.04 and second fresh install. Other editors raport the same problem. Its anoying as hell.
View 3 Replies
View Related
Feb 15, 2010
I run some IT systems for my schools Engineering student organization.
We are upgrading our systems and I just purchased a new server system which I am configuring.
I am using Ubuntu 10.04 Lucid Lynx and the new likewise-open packages.
The points I bring up following this sentence are to fulfill this final goal : Get SFTP, SSH, and Network Share's over our private network all using the schools Active Directory for auth and it's groups to derive privs.
So... Here's what i've done and what i've tried to do.
1 ) I set up likewise-open and got it to join the domain. When I do this I can ssh to localhost as 'schoolnetworkADname'. So that part works (hurray). To get a network share to use these same auth methods I have tried installing likewise-open-server. Everything launches find and the daemons run, but when I go into computer management on a windows server to set up the actual shares, I get permission denied. The account it is giving permission denied to is the same AD account that join likewise-open to the network, so... what is going on.
2 ) Samba, fail. I can't seem to get samba to run on this machine at all, which is strange because even my Samba expert was puzzled. It just won't let Samba join the domain properly, and due to this, I want to keep on the newer likewise package... unless I have to switch to this.
How I can get the lame likewise-open-server to work?
View 1 Replies
View Related
Jun 14, 2010
Using Xubuntu 10.04 to connect to some Windows XP shares by adding lines to fstab. The network shares are not mounted at boot, but can be mounted from the command line, after the OS has booted and everything is up. I am suspecting the network isn't up yet, when fstab is processed. I tried adding the option "_netdev" to the relevant network share lines in fstab, but the shares still don't mount automatically at boot up. I read that this option only works for NFS and I am using CIFS. Can someone confirm that _netdev only works for NFS ?
I've seen solutions involving running a mount script after the OS is fully loaded, or running a cron job to periodically check the status of the share and mount if needed. Good workaround but doesn't address the root cause. Is there any other way (besides the _netdev option) to delay mounting of network shares that appear in fstab until the network interface is up ?
View 14 Replies
View Related
Apr 5, 2010
i have successful secure ldap replication but i could not make ldap client to direct its authentication to slave ldap
here is my config file on ldap client (i am not sure if it is the right place though)
ip : 192.168.1.183 is master ldap
ip : 192.168.1.185 is slave ldap
pico /etc/ldap/ldap.conf
#
# LDAP Defaults
code....
View 11 Replies
View Related
May 25, 2011
I am using RackMonkey to map out my lab. Unfortunately, due to RM limitations, every user who accesses the site has write access UNLESS they are logged in as a user named "guest". I currently have Apache allowing only the users (sysadmins) in an LDAP group access to RM, but I would like to allow read-only access for other users as well.I found mod_authn_anon, but I am having trouble combining the two authentication methods. I am using Apache 2.2.18 (compiled myself) on SLES 11.1.
This is the common part:
Code:
AuthType Basic
AuthBasicProvider ldap anon
Order allow,deny
Allow from all
This part by itself works for the LDAP authentication:
Code:
AuthName "System Admins"
AuthLDAPURL "ldaps://example.com/ou=ldap,o=example.com?mail" SSL
Require ldap-group cn=SysAdmins,ou=memberlist,ou=groups,o=example.com
This part works by itself for guest access:
Code:
Anonymous guest
Anonymous_VerifyEmail Off
Anonymous_MustGiveEmail Off
Anonymous_LogEmail on
Require valid-user
But if I have both of the previous blocks enabled at once, then guest access does not work. If I throw in a "Satisfy any", then I am not prompted for a username at all. How can I allow access to this LDAP group and to a user named "guest", but not allow all valid LDAP users to log in?
View 1 Replies
View Related
Sep 9, 2011
Since upgrading to SuSe 11.4 I've noticed that whenever I insert removable media I now get asked for root authentication before mounting! This is a real pain and I cant find any way to change this
View 7 Replies
View Related
May 31, 2010
we have a weird problem with our opensuse 11.2 server installation.
We want to set up a LDAP Server using the Yast-LDAP Server configuriation tool.
This indeed already worked weeks ago until....this week.
Maybe some updates??!
I do not know what happend exactly. The server just does not want to start again and throws following error:
Starting ldap-serverstartproc: exit status of parent of /usr/lib/openldap/slapd: 1 failed
This happend after a little check of the configuration, but without a change, with Yast. Google delivered only "reinstall your box"-answers.
So.. i did that. And now the "mystical" part: The SAME ERROR occurs with a fresh vanilla system with a brand new and simple configuration (certificats, database, pw...the first Yast config dialog...). I did not change the way i set it up.
I remember, when i did this the first time with 11.2 on that machine, when no problems occured...everything was running out of the box (except the "use commen server certificate" option...).
View 4 Replies
View Related
Feb 27, 2010
I've been trying to set up a Linux-only network and currently have a working DHCP, DNS, LDAP and NFS server, with a client that can authenticate with the LDAP server and a central /home folder.However, if I wanted to share folders on the NFS server, how would I make the share available to, for example, a particular group of users in the directory?I've never used NIS(+) on a network, but believe you can add a 'group' of users in the /etc/exports file--simples!Does anyone know of the best way to do it (even better anyone who is doing this in a production environment)?
View 5 Replies
View Related
May 27, 2011
Was enjoying my new experiences until I tried to access/see my OpenSuse 11.4 install (Within VirtualBox on Windows 7)I can surf the net and download packages etc but from Windows 7 the Virtual OpenSuse7 does not show up.I know the windows network works because I also have Ubuntu10.4 on VirtualBox and that I can see and access fine.Change to OpenSuse and it all goes down the tubes, doesnt even show up in the Network on Winsows 7With Ubuntu I have etho setup to use DHCP automatically.I've tried numberous settings unsuccessfully on Suse and I think in the process have probably changed something incorrectly, but it didnt show up in Network places even before I started fiddling.Settings within Network Settings are:
1) Global options
Network Setup method: Tradional with ifup
IPv6 Protocol - Enabled
[code]....
View 6 Replies
View Related
Jan 6, 2010
I wonder how to get Samba share access working well...Dolphin supports Samba but it doesn't really mount anything, it seems... Non-KDE Applications therefor can't access samba that way. In Gnome there was a workaround for the same problem. You could simply go to ~/.gvfs in any application and find the samba mounted there.Is there anything like that in KDE? I set up a Samba mount via /etc/fstab for now but that is quite annoying because it fails after each Suspend, changing WLAN Access Points, etc. Then I have to go to the console and manually launch sudo mount -a to get it working again. How can I make things more comfortable?
P.S.: I'm even up for using something else than Samba to talk to my fileserver. However I don't know of anything that would work better in this regard. (NFS would have the exactly same problem for example)
View 5 Replies
View Related
Jan 30, 2010
Question 1.I have strange problem in OpenSUSE 11.2I have /etc/fstab entry:
//server/projects /server/projects cifscredentials=/root/.credentials,dir_mode=0777,file_mode=0777,_netdev 0 0
service network running
[code]....
View 1 Replies
View Related
Jun 18, 2010
I followed samba setup per thread Samba and Suse: HowTo Set up an openSUSE-Windows Home Office LAN/Network. Versions 11.x and then upgraded my samba from the special repository per advice at Samba broken after latest security update 11.2 - openSUSE Forums I can now see all my boxes on the network from either an XP or linux box and I can access my linux shares from any XP box but I can't access any XP share from my linux box (openSUSE 11.2). I get an error that reads "The file or folder smb://SharedDocs does not exist"I can see the SharedDocs folder under the XP box in samba shares though. And it really does exist on the XP box.
View 9 Replies
View Related
Sep 15, 2011
Using SuSE 11./4 on two machines. Successfully set up a server to share a folder. The client is able to read files from the folder, but not write to them.the client perspective, the shared folder permissions are read and write if owner, read only for all otherHowever, the server shared folder has been set up for sharing, and the permissions are set for read and write to all.
One more thing. When the client goes into the samba share, it sees the workgroup. Clicking into that, it sees the name of the server computer. Clicking into that,it sees two folders: "profiles" and "users". Clicking into "users" goes into the shared folder. I tried setting the permissions from the client side on the "users" folder using root privileges to allow reading and writing without any success
View 6 Replies
View Related
Jan 1, 2011
how to add user to my opensuse 11.3 box from a ldap server ? I used useradd but can't log in with the ldap credentials .
View 1 Replies
View Related
Jan 2, 2010
I have a Thecus NAS with nfs support running. Now I switched from OpenSUSE 10 to 11.2 on the client side and aren't able to mount my nfs shares. With SuSe 10.0 I didn't have any problems.
The /etc/exports:
/raid/home_nas1 192.168.0.24/31(rw,no_root_squash,sync,anonuid=99,anongid=99,no_subtree_check)
/raid/soundandmore 192.168.0.24/31(rw,no_root_squash,sync,anonuid=99,anongid=99,no_subtree_check)
On the client side I'm able to see the shares:
showmount -e nas1
Export list for nas1:
/raid/home_nas1 192.168.0.24/31
/raid/soundandmore 192.168.0.24/31
The client address:
inet addr:192.168.0.27
I'm using nfs-3:
mount -t nfs nas1:/raid/soundandmore/mnt
mount.nfs: access denied by server while mounting nas1:/raid/soundandmore
View 9 Replies
View Related
Oct 14, 2010
I can't for the life of me figure out why I cannot browse my own shares from my linux boxes. both run OpenSuSE 11.3 I follow swerdna's tutorials and reboot several times but don't have a clue as to whats going on to prevent me from viewing localhost shares or 2nd linux box shares. I get 'unable to mount location, Failed to retrieve share list from server' error when I click on my workgroup icon in nautilus.
View 7 Replies
View Related
May 31, 2011
Having a bit of a minor issue with samba on Opensuse 11.4 64 bit. My problem is that I can't view my samba shares in Dolphin although I know they are there. If I bring up dolphin using the Opensuse shortcuts to samba I get this
My computers / drives attached to my network should be viewable here yet they are not. However, if I type in the address directly I can view and access my shares.e.g.
Here is a copy of my smb.conf
Code:
[global]
workgroup = farcusnet
netbios name = ThinkPad
passdb backend = tdbsam
name resolve order = bcast host lmhosts wins
printing = cups
[Code]...
View 9 Replies
View Related
Apr 16, 2010
Now I have my ldap server doing authentication and providing autofs maps perfectly the next question ... is there a utility anywhere that will allow me to stuff 1200 users into the ldap server from a csv file
View 4 Replies
View Related
May 26, 2011
In the OpenSUSE documentation I red this very exciting chapter Chapter 6. Network Authentication with Kerberos That mentions "Using LDAP and Kerberos" which combined with NFSv4 would give my office net functionality of a M$ Win network.
We are still on 11.2 (we have no win clients at all) and I was testing different setups of 11.4 in VM, but I can't get YaST to configure the LDAP with Kerberos setup (our current setup does not use Kerberos only LDAP). Unfortunately I could not find any meaningful HOWTO on how to do it in SuSE. The page in docs involves editing config files, but I would like to avoid this, because from my former experience with Samba, as it would mean I cannot use yast anymore and that is sad.
Is there a way to configure LDAP + Kerberos (in terms of issuing of krb tickets at login) with YaST?
PS: I basically need Kerberos for NFS and Intranet site.
View 5 Replies
View Related
Jun 23, 2010
I am trying to allow my freshly installed ubuntu 10.04 to authenticate with ldap. I did follow the doc https://help.ubuntu.com/community/LD...Authentication and some other hints with no success.My needs is just to use an ldap existing server (active directory in my site, but i wish to use it via ldap, not via samba/ winbind) to validate users on services using pam modules.After the package installation the command getent passwd retrieve just local users and I don't understand if my ubuntu client is not querying the server or the server reply with some message.
View 2 Replies
View Related
Sep 16, 2010
One I cant figure out is a problem of authentication. I'm using open ldap server and try to authenticate a groupware (simple groupware) against it. As it fails, I tested with a ldap client to understand things better. Using GQ ldap client, I 'm able to browse my ldap tree successfully and to search some args from the base DN i specified. but when entering the exact uid as a search string iI got no answer whereas searching the cn returns the correct entry (and display its related entry including the uid I can't find ..) Here is the only thing I can trace in logs (syslog) when trying to seach firstname.lastname (= uid)
[Code]....
View 1 Replies
View Related
Jun 29, 2010
I'm trying to get LDAP working with 389 Directory Server on Fedora 13. I have the server all ready to go, and I can query it with the 389 console. But when I tried to move on to the next step, user authentication trough LDAP, it just won't work I followed the PAM Howto, but the given authconfig command doesn't work. If I manually add a user with the 389 console, I can't login with it.Since I had X11 forwarding working over SSH, I tried authconfig-gtk. I setup a SSL LDAP connection for this to work, but it still didn't work. I did have this working on my (now crashed ) Fedora 12 VM.
View 11 Replies
View Related
Dec 9, 2010
I installed Nconf software on a Debian server.I am trying to configure Nconf Authentication with LDAP.I edited nconf's authentication.php file accordingly and I installed php5-ldap package.When i enter user-name and password in Nconf's login screen.
View 1 Replies
View Related
Feb 9, 2011
I want to ask how many applications can we use with LDAP authentication
View 1 Replies
View Related
Dec 28, 2009
I've added a new machine (desktop used by many users) to a network that uses LDAP (pam_ldap) for authentication. Can anyone post relevant configs to limit users by a groupOfNames? I've googled extensively and have found some partial comments, but no complete config examples or howto's.
The issue is as follows:
All users have one primary GID in their posixAccount entries, which is used to control access to the existing machines. So it's not really possible to change this. Now, I need to limit access to this new machine to a specific subset of users, all members of a specific groupOfNames. I can't seem to get pam_ldap to use a groupOfNames instead of a posixGroup.
View 1 Replies
View Related
