Linux + LDAP + Terminal Server
Hi Guys, i want create multiple profile on a single linux machine(server class) so that multiple users can access the it (GUI ) from their client machines. Server OS is CentOS 5.3 For centralize authentication i am using Fedora directory Services I also have FreeNX server installed on the Linux Server and FreeNX client on the windows machines. (for terminal server like functionality) https://help.ubuntu.com/community/FreeNX while goggling i got the the below article for creating multiple profile in linux http://www.linux.com/archive/feature/114319 Now the situation is that my FreeNX client is not able to authenticate via my Ldap/FDS Server. Could someone suggest some better idea for achieving this. I want approx same functionality as windows terminal server gives. Best Regards H
Now the situation is that my FreeNX client is not able to authenticate via my Ldap/FDS Server.
Could someone suggest some better idea for achieving this.
FreeNX may not be able to auth directly against your LDAP server, but it can authenticate against pam, and pam can in turn be configured to authenticate against your LDAP server. You'll need to set up libpam-ldap (it may be called something else in CentOS) for pam to perform authentication. You'll also need libnss-ldap to resolve usernames
On Tue, Jun 30, 2009 at 1:08 PM, Daniel Lawson<daniel(a)meta.net.nz> wrote:
Now the situation is that my FreeNX client is not able to authenticate via my Ldap/FDS Server.
Could someone suggest some better idea for achieving this.
FreeNX may not be able to auth directly against your LDAP server, but it can authenticate against pam, and pam can in turn be configured to authenticate against your LDAP server.
You'll need to set up libpam-ldap (it may be called something else in CentOS) for pam to perform authentication. You'll also need libnss-ldap to resolve usernames
_______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
Thanks a million for the quick reply. Do i need to modify few files or is there some handy tool for doing this stuff. I am not able to find a suitable doc by googling the web :( Best Regards H
You'll need to set up libpam-ldap (it may be called something else in CentOS) for pam to perform authentication. You'll also need libnss-ldap to resolve usernames
Thanks a million for the quick reply. Do i need to modify few files or is there some handy tool for doing this stuff. I am not able to find a suitable doc by googling the web :(
It's been a while since I've looked it; I can't tell you if there is any easier way to do it. There are various documents on the WLUG wiki (edited by myself and others), but these were all focused on debian based systems, and are sadly out of date. Your LDAP server is possibly overkill. If all you want to do is provide multiple user accounts, then you don't need LDAP at all. You may find the the LTSP (Linux Terminal Server Project) more use - it's packaged together to do what you want. It even supports freenx, it seems (although freenx isn't the only way to do remote X logins) Wlug wiki: www.wlug.org.nz LTSP page: www.ltsp.org
On Tue, Jun 30, 2009 at 1:57 PM, Daniel Lawson<daniel(a)meta.net.nz> wrote:
You'll need to set up libpam-ldap (it may be called something else in CentOS) for pam to perform authentication. You'll also need libnss-ldap to resolve usernames
Thanks a million for the quick reply. Do i need to modify few files or is there some handy tool for doing this stuff. I am not able to find a suitable doc by googling the web :(
It's been a while since I've looked it; I can't tell you if there is any easier way to do it. There are various documents on the WLUG wiki (edited by myself and others), but these were all focused on debian based systems, and are sadly out of date.
Your LDAP server is possibly overkill. If all you want to do is provide multiple user accounts, then you don't need LDAP at all.
You may find the the LTSP (Linux Terminal Server Project) more use - it's packaged together to do what you want. It even supports freenx, it seems (although freenx isn't the only way to do remote X logins)
Wlug wiki: www.wlug.org.nz LTSP page: www.ltsp.org
_______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
Thanks again... i got something.... http://www.mpipks-dresden.mpg.de/~mueller/docs/suse10.1/suselinux-manual_en/... I am using LDAP for centralized authentication , we are looking for possibilities to remove MS Active directory from org. I am looking LTSP now if this work as alternative to FreeNX. Thanks for the tip. we have windows terminal server and 6 users are using it, i have a job given to shift it to linux. Best Regards H
On Tue, 30 Jun 2009 01:33:55 -0700, Hakuna Matata <narender.hooda(a)gmail.com> wrote:
On Tue, Jun 30, 2009 at 1:57 PM, Daniel Lawson<daniel(a)meta.net.nz> wrote:
You'll need to set up libpam-ldap (it may be called something else in CentOS) for pam to perform authentication. You'll also need libnss-ldap to resolve usernames
Thanks a million for the quick reply. Do i need to modify few files or is there some handy tool for doing this stuff. I am not able to find a suitable doc by googling the web :(
It's been a while since I've looked it; I can't tell you if there is any easier way to do it. There are various documents on the WLUG wiki (edited by myself and others), but these were all focused on debian based systems, and are sadly out of date.
Your LDAP server is possibly overkill. If all you want to do is provide multiple user accounts, then you don't need LDAP at all.
You may find the the LTSP (Linux Terminal Server Project) more use - it's packaged together to do what you want. It even supports freenx, it seems (although freenx isn't the only way to do remote X logins)
Wlug wiki: www.wlug.org.nz LTSP page: www.ltsp.org
_______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
Thanks again... i got something.... http://www.mpipks-dresden.mpg.de/~mueller/docs/suse10.1/suselinux-manual_en/...
I am using LDAP for centralized authentication , we are looking for possibilities to remove MS Active directory from org. I am looking LTSP now if this work as alternative to FreeNX. Thanks for the tip.
we have windows terminal server and 6 users are using it, i have a job given to shift it to linux.
Best Regards H
LTSP has gone away from a standalone application and post LTSP4.2 is now being integrated within distributions geared toward school environments. LTSP5 is now part of some distributions and others are working on the integration. Unfortunately RedHat and CentOS are behind the eight ball on this. OpenSUSE has the best LTSP5 application called KIWI also available on SLES10.2 Debian and EdUbuntu are also excellent, up there with OpenSUSE. Redhat's version is still not the best and K12LTSP-EL is still using LTSP4.2 On the other foot, if your thin clients PXE boot, LTSP4.2 is trivial to set up which is a big plus Cheers G -- Graham Lauder OpenOffice.org Marketing Contact New Zealand http://marketing.openoffice.org/contacts.html INGOTs Gold assessor Trainer http://www.theingots.org
On Wed, Jul 1, 2009 at 10:47 AM, Graham Lauder<yorick_(a)openoffice.org> wrote:
On Tue, 30 Jun 2009 01:33:55 -0700, Hakuna Matata <narender.hooda(a)gmail.com> wrote:
On Tue, Jun 30, 2009 at 1:57 PM, Daniel Lawson<daniel(a)meta.net.nz> wrote:
You'll need to set up libpam-ldap (it may be called something else in CentOS) for pam to perform authentication. You'll also need libnss-ldap to resolve usernames
Thanks a million for the quick reply. Do i need to modify few files or is there some handy tool for doing this stuff. I am not able to find a suitable doc by googling the web :(
It's been a while since I've looked it; I can't tell you if there is any easier way to do it. There are various documents on the WLUG wiki (edited by myself and others), but these were all focused on debian based systems, and are sadly out of date.
Your LDAP server is possibly overkill. If all you want to do is provide multiple user accounts, then you don't need LDAP at all.
You may find the the LTSP (Linux Terminal Server Project) more use - it's packaged together to do what you want. It even supports freenx, it seems (although freenx isn't the only way to do remote X logins)
Wlug wiki: www.wlug.org.nz LTSP page: www.ltsp.org
_______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
Thanks again... i got something.... http://www.mpipks-dresden.mpg.de/~mueller/docs/suse10.1/suselinux-manual_en/...
I am using LDAP for centralized authentication , we are looking for possibilities to remove MS Active directory from org. I am looking LTSP now if this work as alternative to FreeNX. Thanks for the tip.
we have windows terminal server and 6 users are using it, i have a job given to shift it to linux.
Best Regards H
LTSP has gone away from a standalone application and post LTSP4.2 is now being integrated within distributions geared toward school environments.
LTSP5 is now part of some distributions and others are working on the integration. Unfortunately RedHat and CentOS are behind the eight ball on this.
OpenSUSE has the best LTSP5 application called KIWI also available on SLES10.2 Debian and EdUbuntu are also excellent, up there with OpenSUSE.
Redhat's version is still not the best and K12LTSP-EL is still using LTSP4.2
On the other foot, if your thin clients PXE boot, LTSP4.2 is trivial to set up which is a big plus
Cheers G
-- Graham Lauder
OpenOffice.org Marketing Contact New Zealand http://marketing.openoffice.org/contacts.html
INGOTs Gold assessor Trainer http://www.theingots.org _______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
Great, this is really good help. ok, Say if i do not have pxe boot, my users have just windows laptop, can i install something on there laptop that allow then to log into there profiles at remote server .....and all users are in ldap.... i have have browsed the LTSP and it really looks awesome...that means i can convert our old PIII machines into terminal server and with no cost......:) Thanks a ton in advance....
Great, this is really good help.
ok, Say if i do not have pxe boot, my users have just windows laptop, can i install something on there laptop that allow then to log into there profiles at remote server .....and all users are in ldap.... i have have browsed the LTSP and it really looks awesome...that means i can convert our old PIII machines into terminal server and with no cost......:)
If you already have windows installed on a the user-facing machines, then you should be able to connect via freenx to LTSP.
On Tue, 30 Jun 2009 22:17:54 -0700, Graham Lauder <yorick_(a)openoffice.org> wrote:
On Tue, 30 Jun 2009 01:33:55 -0700, Hakuna Matata <narender.hooda(a)gmail.com> wrote:
On Tue, Jun 30, 2009 at 1:57 PM, Daniel Lawson<daniel(a)meta.net.nz> wrote:
You'll need to set up libpam-ldap (it may be called something else in CentOS) for pam to perform authentication. You'll also need libnss-ldap to resolve usernames
Thanks a million for the quick reply. Do i need to modify few files or is there some handy tool for doing this stuff. I am not able to find a suitable doc by googling the web :(
It's been a while since I've looked it; I can't tell you if there is any easier way to do it. There are various documents on the WLUG wiki (edited by myself and others), but these were all focused on debian based systems, and are sadly out of date.
Your LDAP server is possibly overkill. If all you want to do is provide multiple user accounts, then you don't need LDAP at all.
You may find the the LTSP (Linux Terminal Server Project) more use - it's packaged together to do what you want. It even supports freenx, it seems (although freenx isn't the only way to do remote X logins)
Wlug wiki: www.wlug.org.nz LTSP page: www.ltsp.org
_______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
Thanks again... i got something.... http://www.mpipks-dresden.mpg.de/~mueller/docs/suse10.1/suselinux-manual_en/...
I am using LDAP for centralized authentication , we are looking for possibilities to remove MS Active directory from org. I am looking LTSP now if this work as alternative to FreeNX. Thanks for the tip.
we have windows terminal server and 6 users are using it, i have a job given to shift it to linux.
Best Regards H
LTSP has gone away from a standalone application and post LTSP4.2 is now being integrated within distributions geared toward school environments.
LTSP5 is now part of some distributions and others are working on the integration. Unfortunately RedHat and CentOS are behind the eight ball on this.
OpenSUSE has the best LTSP5 application called KIWI also available on SLES10.2 Debian and EdUbuntu are also excellent, up there with OpenSUSE.
Redhat's version is still not the best and K12LTSP-EL is still using LTSP4.2
On the other foot, if your thin clients PXE boot, LTSP4.2 is trivial to set up which is a big plus
Cheers G
Oh and I forgot to point out, lots of useful help on the list at K12OSN(a)redhat.com http://www.k12os.org Jim McQuillan (Mr LTSP) hangs out on both lists and is usually available on irc -- Graham Lauder OpenOffice.org Marketing Contact New Zealand http://marketing.openoffice.org/contacts.html INGOTs Gold assessor Trainer http://www.theingots.org
participants (3)
-
Daniel Lawson -
Graham Lauder -
Hakuna Matata