Automating Account Creation on Linux Systems
Novell Cool Solutions: Tip
Digg This -
Posted: 6 Mar 2002
Product: Novell eDirectory 8.5.1 for Linux, Novell Account Management 2.1 for UNIX/Linux
If you're using eDirectory on a Linux system, you probably already know that when you create a new user or account, you have to manually create a Home directory to complete the process. Here's a tip from the support team that offers some details on automating the entire process.
For detailed information and updates regarding this tip, see TID-10067700.
Home Directories are not created automatically during creation of accounts/users.
Account Management 2.1 is only for administration of users, it does not interact with the filesystem. This means the management tool cannot be used to control file access, except to changing group membership, etc.
With PAM (Pluggable Authentication Modules) there is a module (pam_mkhomedir.so) that takes care of a few housecleaning chores (like creating the Home directory) the first time the user logs in.
On RedHat 7.2 the /etc/pam.d/login must look like this:
# This is required for console ownership access
session optional /lib/security/pam_console.so
session required /lib/security/pam_mkhomedir.so skel=/etc/skel umask=0022
#First try through NDS
auth sufficient /lib/security/pam_nds.so.0
account sufficient /lib/security/pam_nds.so.0
password sufficient /lib/security/pam_nds.so.0
session sufficient /lib/security/pam_nds.so.0
# Fall back to flat file authentication, try first password first
auth required /lib/security/pam_securetty.so
auth required /lib/security/pam_pwdb.so shadow nullok try_first_pass
auth required /lib/security/pam_nologin.so
account required /lib/security/pam_pwdb.so
password required /lib/security/pam_cracklib.so
password required /lib/security/pam_pwdb.so nullok use_authtok md5 shadow
session required /lib/security/pam_pwdb.so
Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com