fredrik.liljegrenconfigura.com

• Next message: Ovanes Manucharyan: "user doesn't exist? pam_ldap"
• Previous message: Arild Jensen: "Strange pam_rhosts_auth behavior"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> I have a little beat stupid question:
> I want to setup my linux box to use user database storing on
> WinNT4.0 PDC
> instead of /etc/passwd users.

This will, unfortunately, be a bit more tricky than just authentication...

If you don't want to use any /etc/passwd-file at all, it will certainly be
hard for the system to know a lot of session-specific things like preferred
shell, home-directory, uid, gid etc.
  Therefore, to do this you need a session-lib for pam, making sure that the
user gets all the required things. That can work with eg local logins and
other equally pamified programs. Unfortunately, again, there are a lot of
programs not that pamified, like sshd (I speak of own experience), that will
look for the user in passwd before running the authenrication.

I would say that the easiest way to do this is having an /etc/passwd-file
generated, but just don't use it for authentication. This way you will be
able to use smb more like NIS or something. But you still probably have to
write a pam_smb_session.so if noone has allready done that, to smb-mount
homedirectories etc.

> PS If you know the better decidion - pls let me know too.

It would be very nice if someone really fixed this, the question has been up
a number of times of how to use smb more or less for the whole user-db. And
as I've said earlier, I made a small pam-module to create a user the first
time s/he logged in if authenticated via other means, if you want it, I'll
send it to you.

Regards, EOF

-- 
To unsubscribe: mail -s unsubscribe pam-list-requestredhat.com < /dev/null

• Next message: Ovanes Manucharyan: "user doesn't exist? pam_ldap"
• Previous message: Arild Jensen: "Strange pam_rhosts_auth behavior"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]