LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 12-15-2009, 09:01 AM   #1
someshpr
Member
 
Registered: Jul 2009
Location: WI, USA
Distribution: Debian 8, Ubuntu 16.04, CentOS 7
Posts: 143

Rep: Reputation: 28
Creating local NFS mounted home directory for remote LDAP authenticated user


Hi,
Situation:
I want to create a new user on my local machine. This machine authenticates via ldap and krb5 severs of the institution, and it has home directories mounted via a nfs. Now the new user, say with id xyz, already has an entry in the ldap server. But he doesn't have a home directory created in the nfs server. So I want to create a home directory for xyz and export it to the local machine, so that next time xyz logs in the local machine he will redirected to his nfs home.

I logged in to the nfs server and checked xyz has id like this:
Quote:
[root@cretaceous home]# id xyz
uid=209228(xyz) gid=1000(access) groups=810691(xyz),1000(access)
[root@cretaceous home]# id -rg xyz
1000
[root@cretaceous home]# id -ru xyz
209228
where 209228 is his id from ldap/krb5 and 810691 is his gid from ldap/krb5. Now if I lookup my id this what I get:
Quote:
[root@cretaceous home]# id abc
uid=160855(xyz) gid=764530(abc) groups=764530(abc),829857(umg/dept.res.access.workstations),199(nfs_sudoers)
[root@cretaceous home]# id -rg abc
764530
[root@cretaceous home]# id -ru abc
160855
my real gid is same as ldap gid. (I am member of a special sudoers group, 199)
Question:
1. If I create a home directory named xyz with ownership specified to xyz (no gid specified), will xyz be able to log in via ldap/krb5 to this directory from local machine?
2. Do I need to create a directory xyz with permission specified by gid, so that when xyz logs on via ldap/krb5 he will have permissions on his home directory?
3. Do I need to create a local group for xyz on nfs server with gid same as ldap gid? Or somehow I need to add xyz to group 810691 on nfs server?

I could have experimented, but as you can guess, I do not have ldap password for xyz (and obviously I am not ldap admin). I only know my account credentials so cannot check if things worked, unless xyz tries to log in and complaints! So I am asking advice of the experts who can surely tel what to do!

Let me know if anymore details I need to give.
Thanks in advance,

Last edited by someshpr; 12-15-2009 at 05:55 PM.
 
Old 12-15-2009, 03:58 PM   #2
irishbitte
Senior Member
 
Registered: Oct 2007
Location: Brighton, UK
Distribution: Ubuntu Hardy, Ubuntu Jaunty, Eeebuntu, Debian, SME-Server
Posts: 1,213
Blog Entries: 1

Rep: Reputation: 88
Most LDAP servers are configured by the admin to allow for automatic creation of the users home directory (locally or NFS does not matter) on first login.

I would be very surprised if this were not the case, since the users home directory must be specified in the LDAP object.
 
1 members found this post helpful.
Old 12-15-2009, 06:14 PM   #3
someshpr
Member
 
Registered: Jul 2009
Location: WI, USA
Distribution: Debian 8, Ubuntu 16.04, CentOS 7
Posts: 143

Original Poster
Rep: Reputation: 28
Is it a local group issue?

Thanks irishbitte!
But in this case, LDAP is used only for authentication. The universal home directories are listed in LDAP server; but I want them to log in to a local home directory. Rest of the users of that machine somehow do log in to a local home. I noted that all the user who log in to local home are member of a group called [829857(umg/dept.res.access.workstations)]. So I cross posted another question guessing that if I can change the local group of that LDAP user, then probably the user can log in to local home.
The cross post is here.
Thanks for replying there, too!

Sorry, if I misguided. Please let me know if I am wrongly interpreting the problem.

Thanks in advance,

[UPDATE -- Solved| I didn't have enough permission to add the user to the group specified. I had contacted LDAP admin and he did it all!]

Last edited by someshpr; 12-17-2009 at 09:01 AM. Reason: Problem solved
 
  


Reply

Tags
gid, ldap, nfs, permissions, uid


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
RHEL 5.2+LDAP Server+File already exists while creating directory in /home sharjeel Linux - Server 2 08-05-2009 10:05 PM
Creating a user without a home directory. deedawn Linux - Newbie 2 10-29-2008 11:36 AM
Limiting ldap user on its own home directory sarajevo Linux - Server 1 08-11-2008 11:36 AM
.forward file not working for user having it's home directoryon NFS mounted directory skverma_in Linux - General 0 02-14-2005 02:54 AM
I have an nfs mounted /home and 'adduser' fails to create a new user dipukm Linux - Software 4 06-01-2004 06:38 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 08:47 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration