Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I am working on re-vamping our kickstart files so that various config files on a freshly built system are not being flagged as being different from the centrally managed files in Satellite.
One place we're getting flagged is from the following line in the kickstart file:
Yes, I can just push out the file from Satellite, but I'd rather just have it be correct to begin with. What I don't know is ultimately what will happen if I change the line to "auth --enablead ..."
Not sure if that tries to use SAMBA (which we don't use) or if there would be any unforseen issues.
Can anyone out there help me to better understand these flags?
why haven't you just tried it? I don't understand why you're asking instead of building a test box..?
It's a bit of a drastic step, but you might like to consider puppet over the awful config management stuff satellite uses. So you build a very basic kick start and then add all the fun stuff later with puppet
Last edited by acid_kewpie; 02-23-2012 at 03:20 PM.
I'm not familiar with puppet. I'm new to the RHEL world and working with an established platform.
As far as just trying it, I have done so. Built a VM and tried the "--enablead" instead of "--enablemd5" and now the /etc/ldap.conf line is "pam_password crypt" instead of "pam_password ad"
I'm going to keep plugging away at this, but didn't know if maybe someone could help speed me along to a solution.
Well, I'm attempting what I think may be a work-around, but I'm not sure it there will be any issues with it that I may not be aware of.
Basically, I added a line at the end of the script:
sed -i "s|md5|ad|g" /etc/ldap.conf
This makes the replacement in the config file and, so far as I can tell, I'm still able to access the system as normal. It seems to me that this is a pretty ugly way to do it, plus I don't know if it could cause problems elsewhere.
Is this a sufficient way to handle this issue or am I setting myself up for some unexpected headaches later?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.