LinuxQuestions.org
Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 08-12-2010, 10:26 AM   #1
batkinso
LQ Newbie
 
Registered: Sep 2004
Location: Michigan
Posts: 7

Rep: Reputation: 0
Need help with external authentication (LDAP?) for my RH5 servers


Good morning,
I do some basic linux system admin duties and system builds and need some help. I now have 6 or so RedHat v5 servers with another 5 or 6 on the way. It is getting hard to maintain passwords on all 5 (soon to be 10 or more)for al of my users. Is it possible to authenticate to our Windows domain when logging in to the Linux servers? That way all of my users only need to remember 1 password for all servers.
Can someone point me in the right direction?

thanks
 
Old 08-12-2010, 10:34 AM   #2
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 17,926

Rep: Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690
Quote:
Originally Posted by batkinso View Post
Good morning,
I do some basic linux system admin duties and system builds and need some help. I now have 6 or so RedHat v5 servers with another 5 or 6 on the way. It is getting hard to maintain passwords on all 5 (soon to be 10 or more)for al of my users. Is it possible to authenticate to our Windows domain when logging in to the Linux servers? That way all of my users only need to remember 1 password for all servers.
Can someone point me in the right direction?

thanks
LDAP would definitely be one way to go, but you'd have to analyze what you're going for. NIS/NIS+ is another method, but they serve different purposes.

I've got LDAP going at one of my sites, and like it. But, remember you need more than ONE server. Got to have master/slave setup, since if one dies, you need the other to be able to log in. Nice too, since ANYTHING that uses LDAP, can use the one set of servers...and LDAP is spreading everywhere.

You can install openLDAP for free on a Linux box, and test it out. See if you like it.
 
Old 08-12-2010, 10:39 AM   #3
batkinso
LQ Newbie
 
Registered: Sep 2004
Location: Michigan
Posts: 7

Original Poster
Rep: Reputation: 0
Okay thanks, that makes sense. Do you know if there is anything that my Windows Admin would need to do on the Windows side to enable Linux authentication? Do you know how users, groups, security, etc would translate over (either way)?
 
Old 08-12-2010, 01:21 PM   #4
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 17,926

Rep: Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690Reputation: 3690
Quote:
Originally Posted by batkinso View Post
Okay thanks, that makes sense. Do you know if there is anything that my Windows Admin would need to do on the Windows side to enable Linux authentication? Do you know how users, groups, security, etc would translate over (either way)?
Wrong way to think of it. It's not "Linux authentication", it's LDAP authentication. LDAP is a 'standard', much like any other.

Think about email...your client doesn't know or care what the server running it is. Just that the protocol is supported. So, if you're running an IMAP server, that's it....the clients need IMAP clients. They won't care if the server it's on, is on a mainframe, laptop, or a cluster of old palm-pilots. From a Windows standpoint, I'm sorry, but I don't have knowledge of it. From a Linux/unix standpoint, it's great. When you're buidling the box, you can tell it you're using LDAP, give it the server particulars, and your'e done. You can even integrate SUDO'ers files into LDAP, and have one SUDOERS list for all your boxes.
 
Old 08-13-2010, 08:32 AM   #5
chrism01
LQ Guru
 
Registered: Aug 2004
Location: Sydney
Distribution: Centos 6.8, Centos 5.10
Posts: 17,240

Rep: Reputation: 2324Reputation: 2324Reputation: 2324Reputation: 2324Reputation: 2324Reputation: 2324Reputation: 2324Reputation: 2324Reputation: 2324Reputation: 2324Reputation: 2324
Here's a good guide http://www.linuxhomenetworking.com/w...DAP_and_RADIUS & Chap 24 http://www.linuxtopia.org/online_boo...ion/index.html
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LDAP for Authentication raj.mahanty@ismt.co.in Linux - Networking 5 03-24-2010 11:07 AM
LDAP Authentication sandeepthug Linux - Newbie 4 01-07-2009 11:45 AM
ldap authentication sandeepthug Linux - Software 1 01-07-2009 07:39 AM
Using an external USB NTFS Drive in RH5.3 treeskier Linux - Newbie 3 11-19-2008 02:46 AM
authenticating through one ldap server that uses other ldap servers & active director dreamm Linux - Server 1 02-21-2007 09:22 AM


All times are GMT -5. The time now is 06:59 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration