3.5 Single Sign-On for LUM Users

To configure single sign-on for LUM users, follow the steps given below:

  1. Configure Linux User Management (LUM) for a user and verify that the LUM user can log in successfully.

  2. Install Novell Client.

  3. Login as root.

  4. In YaST, click Network Services > Novell Client to launch the Novell Client Configuration Wizard.

  5. Select the Login option and click Start Wizard.

  6. In the Default Tree field, specify the tree server IP or the DNS name.

  7. Click Next and then click Finish to close the Novel Client Configuration Wizard.

  8. Open the appropriate PAM login file ( /etc/pam.d/gdm, /etc/pam.d/xdm, or /etc/pam.d/kdm) and do the following:

    1. Delete the line auth sufficient pam_nam.so.

    2. Add the line auth sufficient pam_nam.so use_first_pass.

  9. Edit the /etc/opt/novell/ncl/login.conf file and add the line Allow_PAM_SSO=true.

  10. Logout and then log in as the LUM user.

NOTE:Consider the following while configuring single-sign on for LUM users:

  • The Default Tree field in the Novell Client Configuration Wizard is a mandatory field. You must specify a value in this field for the Single Sign-On feature to work.

  • If single-sign on fails, the LUM-login will still remain unaffected.

  • More than one tree login is not supported.