LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 01-22-2007, 04:27 AM   #1
depam
Member
 
Registered: Sep 2005
Posts: 861

Rep: Reputation: 30
Utilizing LDAP to control the networked workstation


I am thinking if there is a way to use LDAP to control policy on both Windows and Linux workstations. I've seen the Windows Active Directory implementation. The cool thing is that it can create a common wallpaper for all the Windows clients. It can also do policies which disables USB removable harddisk or flash drives and a lot of things even control what users can and cannot access. Can LDAP do the same thing since AD is also patterned from LDAP? I would like to know if it can accomodate multi-platform OS such as Windows and Linux. Has anyone tried this before?
 
Old 01-22-2007, 11:57 AM   #2
Tinkster
Moderator
 
Registered: Apr 2002
Location: earth
Distribution: slackware by choice, others too :} ... android.
Posts: 23,067
Blog Entries: 11

Rep: Reputation: 928Reputation: 928Reputation: 928Reputation: 928Reputation: 928Reputation: 928Reputation: 928Reputation: 928
W/o having tried it I'd say no (certainly not out of the box,
anyway). You can obviously pretty much store whatever you
like in LDAP, but there's no way that it'd get enforced.

I don't know the internal works of AD, either, but I'd think
that SOME HOOK on windows takes care of the enforcement rather
than AD actively pushing stuff.

That said: you should be able to code something like this
yourself ;} ... with the only problem being that it will most
likely become rather distro-specific.


Cheers,
Tink

Last edited by Tinkster; 01-22-2007 at 12:00 PM.
 
Old 01-22-2007, 06:42 PM   #3
depam
Member
 
Registered: Sep 2005
Posts: 861

Original Poster
Rep: Reputation: 30
But I just hope there are ways to lock out USB accesses even in Linux only. Is that possible, or maybe I don't need LDAP to do this. But with plenty of PCs we are handling, I can't do it manually. Is there a centralized administration where I can just disable them. And the wallpapers can it be done? Thanks.
 
Old 01-23-2007, 11:26 AM   #4
Tinkster
Moderator
 
Registered: Apr 2002
Location: earth
Distribution: slackware by choice, others too :} ... android.
Posts: 23,067
Blog Entries: 11

Rep: Reputation: 928Reputation: 928Reputation: 928Reputation: 928Reputation: 928Reputation: 928Reputation: 928Reputation: 928
I don't know of any free solutions for your problem. Novels
ZenWorks can handle a few of the main stream distros in such
a manner (and obviously Windows), and I think it should be able
to integrate with LDAP (it certainly does with Novels eDirectory).

As I said: that aside you're on your own.
But pushing something out to a (even a large) number of machines
isn't that hard. Checking who's logged in isn't hard. Unloading
a few modules isn't hard. Stopping them from being reloaded
varies with distro (slackware rocks).


Cheers,
Tink
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Utilizing 2 internet connections for services mephitic Linux - Networking 1 11-02-2005 05:01 PM
Control a Networked windows PC from linux? Caeda Linux - Software 4 03-06-2005 10:39 PM
Qmail-Ldap Control Panel nimish Linux - Software 1 10-31-2004 11:47 PM
LDAP, PostgreSQL Access Control Database PrimusXPrimus Linux - Networking 0 04-12-2004 05:48 PM
Utilizing multiple WAPs ferreter Linux - Laptop and Netbook 4 03-06-2004 02:07 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 09:07 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration