Subj : Re: Idiots intro to LDAP - Where? To : comp.os.linux,comp.os.linux.misc From : Patrick McDonnell Date : Thu Sep 09 2004 09:44 pm Michael W Cocke wrote: >>> I'm fed up with trying to maintain individual system user and Group, I know, but you do what you've got to do). I've looked at >>> any number of pages and books about LDAP and they all seem to assume >>> that you already know how this works. Does anyone know of a simple >>> "Do this to accomplish that" guide to LDAP? If you happen to be using Debian, this doc is good: http://people.debian.org/~torsten/ldapnss.html (if you're using something else, its still pretty good.) Also, Linux Journal had a series of three articles describing how to setup the LDAP server, >> >>Before you even think about ldap, users/group (ID <--> name) >>need to be the same on all systems, or you'll end up in a >>disaster. > > They are, but it's a pain in my existance keeping them that way. What > I'd like to be able to do is create a user or a group in one place and > have them propegate, rather than having to run to each system and > create a user or group. I probably should have started with that > description rather than asking specifically about LDAP, but from what > I've been able to figure out, I need either LDAP or NIS, and NIS is > obsolete. NIS is not obsolete, LDAP just provides more functionality, and maybe more security. Unless you desperately need the additional features provided by LDAP, I'd suggest you use NIS. Its a hell of a lot easier to setup than LDAP, and seems to do what you say you want to do. There are ways to secure NIS. > >>If there are much workstations, you should take a look at LTSP >>(ltsp.org), which saves lots of admin work. LTSP doesn't work with LDAP yet, AFAIK (though I'm told its being worked on). It does use NIS, but even that isn't necessary. > > I'll look at it, thanks! > > Mike- > > -- > If you can keep your head while those around you are losing theirs... > You may have a great career as a network administrator ahead! > -- > Please note - Due to the intense volume of spam, we have installed > site-wide spam filters at catherders.com. If email from you bounces, > try non-HTML, non-encoded, non-attachments, .