LDAP home directories
atom.powers at gmail.com
Wed Oct 18 15:20:45 UTC 2006
On 10/18/06, Erik Norgaard <norgaard at locolomo.org> wrote:
> Chandler, Jay wrote:
> > Does anyone have a way to do home directory mapping through LDAP? We've
> > got user directories mounted via NFS to /usr/users and would like to be
> > able to type in "cd ~ted" and go to Ted's home directory, perhaps in
> > /usr/users/students/ted.
> nss_ldap allows you to map an LDAP parameter to a system parameter.
> There is nss_ldap in ports, but also this summer's Summer Of Code a
> project was aimed at creating a FreeBSD native nss_ldap.
> pam_ldap is needed if you want to use ldap for authentication.
Expanding on what Erik said, pam_ldap and nss_ldap will use the
posixAccount schema, or the attributes your define in your ldap.conf.
So if you already have a way to generate a list of user->home
directory mappings you can import that into your OpenLDAP directory
as, probably, the homeDirectory attribute.
There are plenty of how-to docos out there, take a look. The hardest
part is setting up the directory and improting your data, after that
it tends to "just work".
Perfection is just a word I use occasionally with mustard.
More information about the freebsd-questions