Changes

From SME Server
Jump to navigationJump to search

Tw-logonscript (view source)

Revision as of 09:06, 29 November 2010

1,053 bytes added ,  09:06, 29 November 2010
→‎Linux client integration
Line 70: Line 70:  
The first <volume user> directive will mount the user's (Windows) home drive on the local Linux workstation under a folder "win_home". The others will mount just those server shares only that the user, due to his group memberships does have access to.
 
The first <volume user> directive will mount the user's (Windows) home drive on the local Linux workstation under a folder "win_home". The others will mount just those server shares only that the user, due to his group memberships does have access to.
   −
Because this file is created on the fly with each user logon, a change in membership will have the same, immediate impact on the client site as it has for the user when he logs on to a Windows machine.  
+
Because this file is created on the fly with each user logon, a change in membership will have the same, immediate impact on the client site as it has for the user when he logs on to a Windows machine.
    +
 +
At the Linux client (only tested for Ubuntu yet):
 +
 +
(from our internal Wiki):
 +
 +
.. snip ..
 +
 +
Setting up pam_mount
 +
 +
pam_mount is a PAM module that can mount volumes for a user session. We're going to use it to mount the user's home drive and shares when he logs in. As for SME server, install the tw-logonscript package and things should work transparently.
 +
 +
As a superuser, create a file /etc/security/pam_mount.conf.xml with the following contents (be careful with line wraps!):
 +
 +
<?xml version="1.0" encoding="utf-8" ?>
 +
<!DOCTYPE pam_mount SYSTEM "pam_mount.conf.xml.dtd">
 +
<pam_mount>
 +
  <debug enable="0" />
 +
  <msg-authpw>Password:</msg-authpw>
 +
  <volume user="*" fstype="cifs" server="XXXXX" path="netlogon/users/%(DOMAIN_USER)" mountpoint="~/.netlogon" options="uid=%(DOMAIN_USER),workgroup=WNAME"></volume>
 +
  <luserconf name=".netlogon/.pam_mount.conf.xml" />
 +
  <logout wait="0" hup="0" term="0" kill="0" />
 +
  <mkmountpoint enable="1" remove="false" />
 +
</pam_mount>
 +
 +
You need to replace the server name (XXXX) and workgroup (WNAME) with your details.
    
=== Uninstall ===
 
=== Uninstall ===
Mdo
77

edits

Retrieved from "https://wiki.koozali.org/Special:MobileDiff/15261"

Navigation menu