Re: alternatives to NIS and NFS
On Tue, 2004-08-03 at 10:53, John Summerfield wrote:
> Paul William wrote:
>
> > Hi,
> >
> > I am in charge of a small office network. The server is running Debian
> > stable with some testing packages and the desktops are running
> > mandrake 10.0.
> >
> > Currently we are using NIS for authentication and NFS to share the
> > home directories.
> >
> > I have been having some hassles with NIS and would like to upgrade to
> > a more modern system.
> >
> > Are there any alternatives to NFS and NIS?
>
>
> NIS and NFS are differen tissues. What's your problem withNFS?
>
> For authentication, take a look at LDAP. I mean to.
>
> >
> > As long as it not to complex to setup and is fairly easy to administer
> > its fine. X is not on the server so all admin takes place over
> > ssh.Security is an issue.
> >
> > It is safe to assume that there will not be any windows clients on the
> > network, ever :) There is one osx ibook being used but it does not
> > need to 'login' to the network.
> >
> OSX should be able to authenticate against LDAP. Watch your IUDs tho.
>
Authentication in Linux is (usually) done via the PAM library, ie
applications wanting to do authentication link against the PAM library
and then call PAM apis to do authentication.
In particular, openssh, login, etc. all do this.
Here's some info on PAM:
http://www.kernel.org/pub/linux/libs/pam/Linux-PAM-html/pam.html
There are PAM modules for ldap, which enable PAM to authenticate against
LDAP servers. Here's one link I found on this by googling:
http://www.metaconsultancy.com/whitepapers/ldap-linux.htm
Also, try google for "linux pam".
Note that I haven't used PAM and LDAP myself (yet). Like John, it's on
my to-do list.
Regards,
Simon
Reply to: