SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have several slackware boxes in my home and I want to learn how to centralize security. For now I've created user accounts with adduser on every machine.
I have experience with Windows Domains and understand that a workstation joins the domain and authenticates login requests to the domain controller. The workstation will also automatically create a home directory on the workstation if the login is sucessful. I don't have any idea what the Linux/ Slackware/ equivalent is.
A few terms have come up during my searching, Kerberos, OpenLDAP, PAM as have certain techniques such as exporting a /home on a server and mounting it on each client so that every user will have their home directory wherever they are. But I'm not sure how these pieces all fit together.
A more extensive question might be; how to setup a Slackware 10.2 lab of 25 computers for 200+ students. There's no way any Admin would run adduser on 25 computers for 200 students, no, there's gotta be a better way.
I recommend you take a look at OpenLDAP. The client comes with Slackware, and the server can be found at linuxpackages.net if you don't want to compile your own.
NIS is great, but has no security (passwords in cleartext etc) - NIS+ is better, but used to be SUN proprietary, and is not maintained on Linux since LDAP gained popularity. For an open, flexible and reasonably easy system to administer, you can't go wrong with LDAP. O'Reilly has a good book about it too!
Samba and OpenLDAP together can emulate a Windows Domain (not Active Directory) and a Windows 2000/XP workstation won't know the difference.
Well, technically speaking, Samba can do this on it's own, but if you start about tens or hundreds of user accounts, LDAP as the backend is a lot smarter. Also, with Samba/OpenLDAP you can setup a Windows Domain distributed over multiple servers (to share the load and for better redundancy) and with one user database.
Wow. Thanks for the reading material. That's alot of new terms. I guess I'll start by trying to get an OpenLDAP server installed up and running. I think I'll start with this http://www.openldap.org/doc/admin23/quickstart.html. It seems that OpenLDAP can do alot, authentication, centralized contact list, automounting your home directory; are all I've read so far. Does this tie in with storing ssl keys (id_pub.key which I use for passwordless ssh sessions) or is that Kerberos? Do Kerberos and OpenLDAP get used together at all?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
