Link to home
Start Free TrialLog in
Avatar of MBealeISG
MBealeISG

asked on

Proftpd and OpenLDAP home dir creation

Hi There,
This could be an issue of a lack of understanding on my part. So, apologies in advance if my questions seems silly.

At the moment I have configured OpenLDAP and I have one FTP server using proftpd. I have made a test user who i want to be an admin. I have got it to log in to ftp with my test user.

My goal is to set it up thay my admin user can see client folders but not other admin folders. I want the client users to be locked down to their own folder only.

Before I can progress with my goal. I am running into an issue where I cannot auto create my LDAP users home folder on the ftp environment. I have exhausted my googling fingers and thought I would see if there was anyone here who knew how to do this and maybe see where I am going on. This is my first time playing around with this stuff so, any advice on this I would appreciate.
Avatar of gheist
gheist
Flag of Belgium image

You need to introduce PAM authentication that can call modules like called mkhomedir after good authentication.
Avatar of MBealeISG
MBealeISG

ASKER

So, even on an openldap environment you would need to use PAM authentication instead to create home directories?

Would you not instead use "LDAPGenerateHomeDIR on" as a varible in the mod_lap.c module instead?
That is to guess home dir if home dir attribute is missing in LDAP, nothing about creating them
Having looked at this some more and it appears the home directory does get generated depending what the home directory field is when you use LDAPadmin gui software to add in the attribute.

is there a way to do this automatically without having to add in the field manually for users?
Yes, there is a way - with PAM.
This question needs an answer!
Become an EE member today
7 DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.