Linux - GeneralThis forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
So this will be my hello message as well as a question I have been pondering and researching none stop.
So I am fairly new to Linux, been a Windows Admin in the military for a long time. Well I have separated and joined a great organization and got thrown into a mixed environment. Well, one of my goals given when hired was implementing Active Directory for the workgrouped computers, which that is not a problem. When looking at the network layout though, many improvements need to be made, as it is right now administering it is a nightmare.
So we have quite a few Linux servers, all requiring each user to have an account established on each and every machine. Same with the Windows Workgroup (Which will be resolved with AD).
Here is my confusion,
Right now each user maps to their UID/GUID through a PCNFSD server to the NFS server (Which will be upgraded to NFSv4) We want to remove the PCNFSD server because it is old and needs to go.
I want to begin implementation of Fedora DS (Since it seems to integrate well with AD).
How can I make AD map UIDs to LDAP (Fedora DS) to authenticate to the NFS server. I hope that made sense. Basically is there a piece I am missing such as say Samba or something? Should I use samba to name map Windows ID with UIDs via LDAP to authenticate to NFS?
Man, I hope I am wording that right. if you need any information for me to clarify, please just let me know, i am kind of learning as I go, and find the is so many ways to do things, that I do not want to get it wrong.
Distribution: Fedora 12, CentOS 5.4, Linux Mint 5, Solaris 10
Posts: 1,272
Thanked: 35
Quote:
Originally Posted by dadams982
So this will be my hello message as well as a question I have been pondering and researching none stop.
So I am fairly new to Linux, been a Windows Admin in the military for a long time. Well I have separated and joined a great organization and got thrown into a mixed environment. Well, one of my goals given when hired was implementing Active Directory for the workgrouped computers, which that is not a problem. When looking at the network layout though, many improvements need to be made, as it is right now administering it is a nightmare.
So we have quite a few Linux servers, all requiring each user to have an account established on each and every machine. Same with the Windows Workgroup (Which will be resolved with AD).
Here is my confusion,
Right now each user maps to their UID/GUID through a PCNFSD server to the NFS server (Which will be upgraded to NFSv4) We want to remove the PCNFSD server because it is old and needs to go.
I want to begin implementation of Fedora DS (Since it seems to integrate well with AD).
How can I make AD map UIDs to LDAP (Fedora DS) to authenticate to the NFS server. I hope that made sense. Basically is there a piece I am missing such as say Samba or something? Should I use samba to name map Windows ID with UIDs via LDAP to authenticate to NFS?
Man, I hope I am wording that right. if you need any information for me to clarify, please just let me know, i am kind of learning as I go, and find the is so many ways to do things, that I do not want to get it wrong.
Active Directory (user info replicates) ==> Fedora DS (Holds User information) ==> NFS Server Uses Fedora DS for user information (thus having the same IDs)
Active Directory (user info replicates) ==> Fedora DS (Holds User information) ==> NFS Server Uses Fedora DS for user information (thus having the same IDs)
Wow... great read... Nice integration. So when I upgrade the NFS Server to 4, I can point to the fedora DS? All our NFS shares are mounted on one server, soooo... that is where I stand.
Distribution: Fedora 12, CentOS 5.4, Linux Mint 5, Solaris 10
Posts: 1,272
Thanked: 35
Quote:
Originally Posted by dadams982
Wow... great read... Nice integration. So when I upgrade the NFS Server to 4, I can point to the fedora DS? All our NFS shares are mounted on one server, soooo... that is where I stand.
Forgot one piece. Right now we have NFS Maestro on the windows machines. Will I need an NFS client still when I make these changes? Like will I have to point NFS Maestro to the LDAP instead of the PCNFSD. I know support in windows to NFS is limited at best.
Distribution: Fedora 12, CentOS 5.4, Linux Mint 5, Solaris 10
Posts: 1,272
Thanked: 35
Quote:
Originally Posted by dadams982
Forgot one piece. Right now we have NFS Maestro on the windows machines. Will I need an NFS client still when I make these changes? Like will I have to point NFS Maestro to the LDAP instead of the PCNFSD. I know support in windows to NFS is limited at best.
Yes NFS support is limited on Windows...
You may want to consider exporting the NFS shares as samba shares as well...not sure how you set up is, so you will have to do some homework...
You may want to consider exporting the NFS shares as samba shares as well...not sure how you set up is, so you will have to do some homework...
-C
Okay, then I guess my best bet it so point NFS Maestro to a name mapping server like I have now. Does Fedora DS handle this by chance, or should I install something like MS Services for NFS? I know Samba gives a performance hit, and we handle all satellite imagery, so need all the speed we can get!
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
Advertisement
Oracle Magazine contains technology strategy articles, sample code, tips, Oracle and partner news, how to articles for developers and DBAs, and more. Click Here to receive a complimentary subscription courtesy of LQ.
