[tech] manbo, ldap, stuff
James Andrewartha
trs80 at ucc.gu.uwa.edu.au
Fri Feb 16 22:32:24 WST 2007
On Tue, 13 Feb 2007, James Andrewartha wrote:
> The A1000 remains uninstalled for lack of a terminator, and a decision
> on where to locate it in the machine room. Issues resulting from the
> upgrade are limited to Sun changing how nfs shares work.
Still haven't figured out nfs shares, but Davyd got a terminator from FSI,
although it hasn't been tested yet.
> Today I installed the Sun directory server but it's currently empty. I've
> started a wiki page to document some thoughts on the migration -
> http://wiki.ucc.asn.au/LDAP
After spending far too long trying to understand how solaris LDAP clients
work, I got sacheto authing off manbo. I then imported the smbpasswd file
and switched samba over to LDAP, and logging in seems to work. Cobbler
also auths from manbo now.
So it all seems to be working, but some further testing will be required
before we switch it live on all systems. Passwords currently remain split,
but if they are changed from windows both will change, and using smbpasswd
will also change both. passwd should work on trusted machines but will
only change the unix password.
Also, Solaris comes with a nis/ldap connector, which could be used with
morwong as a slave to provide backup auth if manbo goes down (although I
will admit while this is somewhat crackful, it's easier than setting up
replication, at least initially.)
http://docs.sun.com/app/docs/doc/816-4556/6maort2to?a=view
--
# TRS-80 trs80(a)ucc.gu.uwa.edu.au #/ "Otherwise Bub here will do \
# UCC Wheel Member http://trs80.ucc.asn.au/ #| what squirrels do best |
[ "There's nobody getting rich writing ]| -- Collect and hide your |
[ software that I know of" -- Bill Gates, 1980 ]\ nuts." -- Acid Reflux #231 /
More information about the tech
mailing list