Re: GOsa features required by Debian Edu

To: Cajus Pollmeier <pollmeier@gonicus.de>
Cc: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>, debian-edu@lists.debian.org
Subject: Re: GOsa features required by Debian Edu
From: Wolfgang Schweer <wschweer@arcor.de>
Date: Fri, 5 Aug 2016 22:27:13 +0200
Message-id: <[🔎] 20160805202713.GA3203@local.schweer-online.de>
Mail-followup-to: Cajus Pollmeier <pollmeier@gonicus.de>, Mike Gabriel <mike.gabriel@das-netzwerkteam.de>, debian-edu@lists.debian.org
In-reply-to: <[🔎] 1470040512.2719.71.camel@gonicus.de>
References: <20160728120303.Horde.LXmOPp3EBkAfwnRR3tUSBwn@mail.das-netzwerkteam.de> <[🔎] 1470040512.2719.71.camel@gonicus.de>

Hi Cajus,

I try to jump in here and give some feedback - but I don't have any
recent experience with real world installations.

On Mon, Aug 01, 2016 at 10:35:12AM +0200, Cajus Pollmeier wrote:
> Is it possible to obtain a typical (anonymized) Debian EDU LDAP tree
> that is suitable for testing? Maybe this is the easiest way to
> understand how it's used.

A dump file is attached, unsure if you meant something like that. IMO it 
might be better to just install Debian Edu Jessie (profiles main-server 
and workstation would be enough).

It won't take that long to install a (standalone) virtual machine using 
the USB-ISO-image; a disk size of 40 GiB is recommended. To save time: 
unplug all virtual network cables and choose to leave the network 
unconfigured after DHCP configuration fails; the machine will come up 
configured after a reboot.

See: https://www.debian.org/News/2016/20160702
for some more information (w/ download url). 

> > gosa-plugin-dhcp
> > gosa-plugin-dns
> > gosa-plugin-goto
> > gosa-plugin-systems
> 
> What features of the GOto plugin do you use? The tasks of the original
> plugin are relatively wide spread from system deployment/configuration
> and user/environment/application settings.

It's only a tiny subset to be able to also choose 'workstation' and 
'printer' as system type, not just 'server' and 'netdevice'.

> Luckily there's no gosa-plugin-fai installed, so at least the
> deployment is done differently. FAI support will be dropped in future
> versions of GOsa and we're going to share data/API with tools like "The
> Foreman".
> 
> This may affect the current DNS/DHCP plugins. What do you use them for?
> Complete zone management, or just client stuff?

As far as I know it's more or less the client stuff for predefined 
zones. The DHCP daemon fetches configuration from LDAP and ldap2zone is 
used to update DNS configuration.

> > gosa-plugin-ldapmanager
> 
> What is used from that one?

Import of user data via CSV file; unsure if export is really working, 
would be appreciated.

> > gosa-plugin-sudo
> 
> We had some discussion going on about the sudoers support and we're not
> sure yet if it's worth the work.
> 
> Is it possible to use i.e. a group based approach in your setups, so
> that a static sudoers/sudoers.d collection can be deployed?

Unsure, maybe it's doable.

All in all, a lot of existing plugin features are unused (and greyed out 
via gosa.conf) as far as possible.

Thanks for working on GOsa³.

Wolfgang

Attachment: ldapdump.ldif.xz
Description: application/xz

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- Re: GOsa features required by Debian Edu
  - From: Cajus Pollmeier <pollmeier@gonicus.de>

Prev by Date: Re: Bug#833421: jessie-pu: debian-edu-config/1.818+deb8u2]
Next by Date: Re: Bug#833421: jessie-pu: debian-edu-config/1.818+deb8u2]
Previous by thread: Re: GOsa features required by Debian Edu
Next by thread: Bug#833303: blends-dev: please don't create prerm scripts which lintian complains about
Index(es):
- Date
- Thread