Novell Home

NetWare Authentication on Linux

Novell Cool Solutions: Trench
By Gert-Jan de Boer

Digg This - Slashdot This

Posted: 18 May 2004
 

Winner: Migration to Linux Contest

This was the winning entry in the Migration to Linux Contest conducted in February/March 2004. Congratulations to Gert-Jan. We'll be holding another contest like this one later this year, so if you are currently migrating, keep good notes, and you just might win next time!

In the following example I will configure NCP authentication on Fedora Linux core 2. As far as I know this setup is valid for other Linux distributions also.

With the program NCPFS it is possible to authenticate to NCP on Linux. The software package has a module named PAM_NCP_AUTH. With this module it is possible to use Dynamic Local User and Roaming Profiles on Linux.

Clientside Installation
What do we need? NCPFS. ftp://platan.vc.cvut.cz/pub/linux/ncpfs/

Download the source code of NCPFS. Login as root onto the Linux machine. Make a directory named /install. Put your source code there. Then extract the source from archive. tar -zxvf ncpfs-2.2.4.tar.gz
Then you'll enter the newly extracted ncpfs directory and type: ./configure
When configure is finished type: make && make install

To configure your workstation to use NCPFS authentication you have to edit some configuration files.

Open the file /etc/pam.d/login and change the following line:

auth       required   pam_stack.so service=system-auth
to
auth       sufficient   pam_stack.so service=system-auth

And add the following line at the bottom of the file:

auth        required      /lib/security/pam_ncp_auth.so  
            -zA -A -m -a -u,,r,gcd server=<server name>

Do exactly the same for the file /etc/pam.d/gdm.

Now you'll need to edit /etc/X11/xdm/Xsession and add a line on the top of the file (under #!/bin/bash)

export ICEAUTHORITY=/tmp/.ICEauthority.$LOGNAME

And your clientside installation is ready.

Serverside installation

What do you need? Unix Snapin for ConsoleOne or NWAdmn32. TID 10051850

This is the NWAdmn32 Unix Snapin. With this snapin you can edit Unix information (you can do the same with the official Account Management snapin from Novell.)

Fill in an UnixID. And you can edit a homedirectory path. With the option in /etc/pam.d/login and /etc/pam.d/gdm your homedirectory will be mounted on this path.

It's fairly straightforward, and it works like a charm. This utility could help you make the move from Windows Desktops to Linux workstations - and help you prepare for Novell's Linux Future.


Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com

© 2014 Novell