scottman29
asked on
Mapping users drives using OpenSuse 11.1 in a windows AD environment
We want to setup an OpenSuse 11.1 lab. I have gotten OpenSues to authenticate with our DC. All users have a mapped drive where all their files are stored.
-how do I pull their mapped drive on login?
-how do I map their My Documents folder
-how do I pull their mapped drive on login?
-how do I map their My Documents folder
ASKER
Do you know of a script i can use to achieve this?
man pam_mount can help...
pam_mount needs to be added to your login paths though pam
(probably the system-auth profiles in the /etc/pam.d directory).
it needs to be there for auth and session, the auth thing will capture the password, the session thing will mount the volume.
The /etc/security/pam_mount.co
mounting the remote volumes.
It should be fairly commented if not I can upload an example.
b.t.w. it is not scripting and you run in the context of root still when all this is active.
pam_mount needs to be added to your login paths though pam
(probably the system-auth profiles in the /etc/pam.d directory).
it needs to be there for auth and session, the auth thing will capture the password, the session thing will mount the volume.
The /etc/security/pam_mount.co
mounting the remote volumes.
It should be fairly commented if not I can upload an example.
b.t.w. it is not scripting and you run in the context of root still when all this is active.
ASKER
the problem is we are using this in a lab where multiple people will be logging on to the same machine. So we need something that will change dynamically with the user logging in. Pam only works for that session. That's why I'm looking for a script.
pam will use the context the user logging in.
itis used in almost all authentication frontends. (login, *getty, kdm, xdm, gdm).
pam_mount can be differentiated various ways, like using shell variables, selection on username etc.
Is John logs on John's profiles is used,
he loggs off, then Mary comes and logs on her profile is used.
Then your system manager comes along and using ssh so his profile is activated too.
etc.
Maybe you need to have per user directoryies mounted like
/home/john/central //nasserver/john
/home/mary/cental //nasserver/john
You can have two people have mount
/central //nasserver/john
and at the same time on the same machine have a
/central //nasserver/mary
pam_mount.xml needs entries like:
<cifsmount>mount -t cifs //%(SERVER)/%(VOLUME) %(MNTPT) -o
"user=%(USER),uid=%(USERUI
to know HOW to mount a cifs share. (as you can see highly parameterized)
in addition you need entries like:
<volume user="john" fstype="cifs" server="nassserver" path="homes"
mountpoint="/home/%(USER)/
Which will access nasserver using the homes share for the user john and use /home/john/central as mount point.
user="*" will match all users. You can also match on GID, UID etc.
pam_mount.xml is probably the scrpt you are looking for.
itis used in almost all authentication frontends. (login, *getty, kdm, xdm, gdm).
pam_mount can be differentiated various ways, like using shell variables, selection on username etc.
Is John logs on John's profiles is used,
he loggs off, then Mary comes and logs on her profile is used.
Then your system manager comes along and using ssh so his profile is activated too.
etc.
Maybe you need to have per user directoryies mounted like
/home/john/central //nasserver/john
/home/mary/cental //nasserver/john
You can have two people have mount
/central //nasserver/john
and at the same time on the same machine have a
/central //nasserver/mary
pam_mount.xml needs entries like:
<cifsmount>mount -t cifs //%(SERVER)/%(VOLUME) %(MNTPT) -o
"user=%(USER),uid=%(USERUI
to know HOW to mount a cifs share. (as you can see highly parameterized)
in addition you need entries like:
<volume user="john" fstype="cifs" server="nassserver" path="homes"
mountpoint="/home/%(USER)/
Which will access nasserver using the homes share for the user john and use /home/john/central as mount point.
user="*" will match all users. You can also match on GID, UID etc.
pam_mount.xml is probably the scrpt you are looking for.
From the previous entry... a NOT should have been added....!
You can NOT have two people have mount
/central //nasserver/john
and at the same time on the same machine have a
/central //nasserver/mary
You can NOT have two people have mount
/central //nasserver/john
and at the same time on the same machine have a
/central //nasserver/mary
ASKER
can you extract information from Active Directory on where the location of their home folder is, and then use that with PAM?
The local location of the home folder?
or the home folder within the cifs? server.
If cifs is used then there is the 'homes' share, that maps on the home directory from ldap as seen by the server.
If you mean the local home then you can specify ~ as a shortcut.
The earlier example could have been rewritten as:
<volume user="john" fstype="cifs" server="nassserver" path="homes"
mountpoint="~/central" />
or the home folder within the cifs? server.
If cifs is used then there is the 'homes' share, that maps on the home directory from ldap as seen by the server.
If you mean the local home then you can specify ~ as a shortcut.
The earlier example could have been rewritten as:
<volume user="john" fstype="cifs" server="nassserver" path="homes"
mountpoint="~/central" />
ASKER
I mean the user's home folder on active directory server...
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for all your help. It's really getting me going in the right direction.
I am not sure pam_mount is available by default on OpenSuse.
Why not use pam_mount for My documents as well?