![]() ![]() Use "debug" instead for even more detailed output. Log output goes to var/log/syslog You can set it back to its default later but for now you really want it on. instead without it autofs will check nsswitch for the server location, which is fine.īe sure to uncomment it. You could write this in the form //servername/ou=auto.master. MASTER_MAP_NAME="ou=auto.master,ou=automount,ou=admin,dc=example,dc=com" What follows are the minimal settings to get autofs talking to your LDAP tree. ![]() Some of the entries are explained in more detail in man auto.master. Open up /etc/default/autofs and read it though. There are three files you need to concern yourself with: The ou: admin group is optional, and could be named anything else (something you may wish to do if you want to avoid confusion with, say, the LDAP admin user). You'll have to delete your old entries and their children and replace them with the corrected ones. If you upgraded from v4 to v5 and your LDAP mappings stop working, this might be one reason why. This was always required, but autofs version 4 let you get away with having the objectClass of maps be organizationalUnit. You need ObjectClass: automountMap in every ou: auto.x entry. Sudo ldapadd -D cn=admin,dc=example,dc=com -W -f automounttree.ldif ldif file and add it with ldapadd (depending on your database's ACL you might have to authenticate as your admin user instead of using the external option). Here is an example of LDAP entries based on the OpenLDAPServer installation.ĭn: ou=automount,ou=admin,dc=example,dc=comĭn: ou=auto.master,ou=automount,ou=admin,dc=example,dc=comĭn: cn=/home,ou=auto.master,ou=automount,ou=admin,dc=example,dc=comĪutomountInformation: ldap:ou=,ou=automount,ou=admin,dc=example,dc=com -timeout=60 -ghostĭn: ou=,ou=automount,ou=admin,dc=example,dc=comĭn: cn=lionel,ou=,ou=automount,ou=admin,dc=example,dc=comĪutomountInformation: -fstype=nfs,rw,hard,intr,nodev,exec,nosuid,rsize=8192,wsize=8192 :/export/home/lionel entry that defines the directory under a mountpoint.In the LDAP directory, you have to enter two kinds of entries: (The -Y EXTERNAL option tells the server to authenticate you external to the server, as the user performing the command.in this case, root.) Sudo ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/ldap/schema/autofs-ldap.ldif Use ldapadd to import it into the database. You can do this with the slapcat utility as described in the OpenLDAPServer guide, or you can just visit and grab this one that's already been converted (rename it autofs-ldap.ldif and put it in /etc/ldap/schema for consistency's sake). The autofs-ldap.schema file needs to be converted to LDIF format. The autofs.schema line must be inserted after core.schema and cosine.schema The three different schemas are covered in some detail on this blog.Īdd the following to your /etc/ldap/nf file: The steps are the same but your LDAP entries will depend on which you use. This walk-through assumes the one that ships with the Ubuntu distribution of autofs-ldap. Note: Autofs actually supports three different schemas for LDAP. Your next step will depend on whether your LDAP server is configured with nf (older LDAP versions) or with cn=config database entries (the newer, "correct" way). Copy the file to the same directory on your server. When you install autofs-ldap, it puts a copy of the schema in /etc/ldap/schema/autofs-ldap.schema. This guide presumes you've already set up an LDAP server and are familiar with ldap-utils (ldapmodify, ldapadd, etc). defining on the client to use LDAP for automount configuration.entering LDAP entries for defining directories.entering LDAP entries for defining mountpoints.configure openldap server to load the autofs-ldap schema.If you plan to only use flat files configuration, you do not need to install the autofs-ldap package: installation is described in Autofs howto.Ĭonfiguring LDAP automount consists of several parts: You just have to install the user land utilities: install the following packages autofs-ldap ldap-utils (see InstallingSoftware). Kernels in modern GNU/Linux distributions are compiled with support for automount. Great, isn't it?įirst of all, automount is composed of two parts: a kernel module and user land utilities. In this howto, autofs will be configured through an LDAP directory: in that way, we have a centralised configuration and make maximum use of the LDAP that has been setup. It is far easier to manage and is more economic in bandwidth. Automount is the modern way to mount directories over a network. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |