Samuel Penn <sam@???> wrote:
> So my question is, what is the real solution for
> account management across multiple boxes on
> Linux these days?
The common approach is OpenLDAP on the server, and
pam-ldap and nss-ldap on the clients.
I have several sites running this, and it works
well. A Samba server can also pick up the account
info it needs from the LDAP server.
> If it could hook into our MS Windows domain
> accounts as well, that would be good (we use
> samba for sharing a file system, but it's not
> connected to ssh accounts).
If it's a Linux server, you have two choices:
1. Move the Windows accounts into LDAP, and
configure Samba and the Linux clients to use
LDAP directly.
2. Use winbind on the clients to pick up the
domain accounts.
Jamie's uses the former: a Debian server running
OpenLDAP and Samba 3, with Windows and Linux
clients using Samba and NFS respectively.
I'm starting to use the latter at The Society's
head office, with a Linux Domain Member server
using winbind to access accounts on a Win2k Server
PDC.
Nick.
--
Nick Chalk ................. once a Radio Designer
Confidence is failing to understand the problem.
