Novell Client for Linux not Integrated With Linux Login
Novell Cool Solutions: Trench
|
Digg This -
Slashdot This
Posted: 28 Mar 2006 |
PROBLEM: NCL not integrated with linux login
ENVIRONMENT: NLD 9 sp3, NCL 1.1 and Pam_script 0.1.7
SOLUTION: after completing the steps in this article: http://www.novell.com/coolsolutions/tip/11575.html, you can get LDAP to pass info to NCL and perform a simultaneous login to netware.
After downloading and compiling PAM_script from http://freshmeat.net/projects/pam_script/, you will have to copy the file "pam_script.so" to /etc/security, then edit /etc/pam.d/sshd and add these two lines before the first line in each section of sshd:
auth required pam_script.so expose=1 .. session required pam_script.so
Then you need to create three scripts:
/etc/security/onauth /etc/security/onsessionopen /etc/security/onsessionclose
I have included the sample scripts.
Make sure to mark them executable.
This should do it. All that is left is to get NOVFSD to work with pam_mount and we can get roaming users.
EXAMPLE SCRIPTS:
#/etc/security/onauth
#!/bin/bash
USER=$1
#Lookup the FQN for the user and strip out the context
CONTEXT=`ldapsearch -x cn=${USER} objectclass=dn | grep ^dn | sed -e "s/^dn: cn=${USER},//" -e "s/ou=//g" -e "s/o=//g" -e "s/,/./g"`
/opt/novell/ncl/bin/nwlogin -t TREE -s ServerIP -u $USER -c $CONTEXT -p $PAM_AUTHTOK -r > /home/${USER}/.nw
chmod 600 /home/${USER}/.nw
exit 0
#/etc/security/onsessionopen
#!/bin/bash
USER=$1
sh /home/${USER}/.nw
rm /home/${USER}/.nw
exit 0
|
#/etc/security/onsessionclose #!/bin/bash USER=$1 /opt/novell/ncl/bin/nwlogout -t TREE exit 0 |
Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com