Home directories for Linux clients?

Similar Messages

• Crearting Home Directories for AD clients

  I am trying to create Home Directories on an Xserve for AD clients. We get a permissions error when the PC server attempts to create the folder.Am I missing a step ?

  Three steps actually. >=)
  1: Yell loudly
  2: Push the PC server off the desk
  3: Kick it across the floor.
  Okay okay... Just kidding.
  It's an issue with the PC server trying to use it's own permissions to create the folder. Make sure the directory that the PC's trying to place in has the "everyone" posix permissions set to read and write.
  After you're done creating folders, set it back to read only.
  -Graham

• Jinitiator plugin for Linux client

  Is there any Jinitiator plugin available for Linux client??
  Thanks,
  Pranjal

  This is my post in the "Install and upgrade" forum.
  I hope it will help.
  Any help with the r12 will be welcome.
  Hi all,
  I'm able to see the forms directly in my linux box in 11.5.10.2 but not in R12.
  Can anybody help?
  The following are the steps to see the forms in 11.5.10.2:
  a) Change the $COMMON_TOP/html/bin/appsweb_VIS_localhost.cfg in the following lines:
  jinit_mime_type=application/x-java-applet;version=1.4.2
  plugin=jdk
  sun_plugin_mimetype=application/x-java-applet;version=1.4.2
  sun_plugin_version=1.4.2
  b) With root (we needed a jdk 1.4.2)
  ln -s /usr/java/j2re1.4.2_09/plugin/i386/ns610-gcc32/libjavaplugin-oji.so /usr/lib/mozilla/plugins/libjavaplugin_oji.so
  Where is the equivalent of the file $COMMON_TOP/html/bin/appsweb_VIS_localhost.cfg?
  I've found (with the find command) 2 files with the name appsweb.cfg, but none with the appsweb_VIS_localhost.cfg name.
  Thanks
  Juanje
  Juanje

• Home directories on NIS clients show "NOBODY" for group and owner

  Hi,
  I recently changed 10 clients from an old NIS server (running Solaris 7!) to a new one (running Solaris 10).
  All my clients log on through NIS and mount their home directories OK, but when you do a ls -l it shows all files as having the owner and group as "nobody".
  I am guessing this has to do with the NIS maps, or auto_home or something, but I keep going around in circles.
  FROM CLIENT:
  $ ls -l
  total 14
  drwxr-xr-x 2 nobody nobody 4 Sep 11 14:46 Desktop/
  drwxr-xr-x 2 nobody nobody 2 Sep 11 14:46 Documents/
  -rw-r--r-- 1 nobody nobody 136 Sep 11 13:07 local.cshrc
  -rw-r--r-- 1 nobody nobody 157 Sep 11 13:07 local.login
  -rw-r--r-- 1 nobody nobody 174 Sep 11 13:07 local.profile
  -rw-r--r-- 1 nobody nobody 33 Sep 11 14:51 test
  FROM SERVER
  nisserver # ypcat auto.home
  nisserver # ypcat auto.master
  auto.home -nobrowse
  -hosts -nosuid,nobrowse
  nisserver # ypcat -x
  Use "passwd" for map "passwd.byname"
  Use "group" for map "group.byname"
  Use "project" for map "project.byname"
  Use "networks" for map "networks.byaddr"
  Use "hosts" for map "hosts.byname"
  Use "ipnodes" for map "ipnodes.byname"
  Use "protocols" for map "protocols.bynumber"
  Use "services" for map "services.byname"
  Use "aliases" for map "mail.aliases"
  Use "ethers" for map "ethers.byname"

  Darren,
  Yes. The clients are Solaris 10 as well. And the domain is the same on both server and clients.
  The files should be owned by real users.
  If a user ssh's into the server directly, the permissions display properly. But on the clients it is nobody. Other than the permission displaying wrong, I haven't noticed any permission-related restrictions on the clients.
  -Jim
  Edited by: cr8rface on Sep 22, 2008 10:30 AM

• Seperate Home Directories for Windows and Mac OS Mac Clients

  Hi,
  I have a Mac Mini Server with Snow Leopard 10.6.2, with open directory master set up and then joined to Active Directory and that works fine. The only thing is that I would like the macbooks to log in, and display a home directory that resides on the mac server so they can save their video editting work. So the user has 2 home directories one on windows server one on mac but same user account.
  Can this be done at all???

  Hi
  +"Can this be done at all???"+
  There are a number of approaches you could use? Modifying the AD Schema is one way. This method is generally not considered as a viable one because of the risk of SP updates breaking the modified schema. A popular way is to use the methods outlined by Mike Bombich:
  http://www.bombich.com/mactips/activedir.html
  This involves the use of Augmented Records stored in an even lighter LDAP database that 'straddles' (sort of) both directories (AD and OD). Yet another method would be to add redirects via AD GPOs for a home folder that resides in a suitably prepared share on the OD Master. There are still other ways depending on how hard you want to work.
  AFAIK you don't want the OD Master in all these scenarios to be the KDC.
  There is a wealth of information regarding this which you could google for yourself? AD-OD Integration has been going on for at least 4 years now in form or another all with varying success. How successful the integration is depends (as ever) largely on how well the AD environment has been configured. The most successful integrated sites in my experience involved the AD environment being configured from the outset to accommodate the mac platform.
  There's a lot of useful stuff over on edugeek.net:
  http://www.edugeek.net/forums/mac/
  Read some of the stickies at the top of the Forum. One of them refers to Corey Carson's AD-OD Sandbox. Another site you should visit is:
  http://www.afp548.com/search.php?query=AD-OD+Integration&type=all&mode=search
  Tony

• Network Home Directories for all users

  Hi,
  I hope someone can shed some light on a possible issue.
  I work for a primary school in the UK.
  I have Tiger server 10.4.10 running as an Open Directory Master. I have a 1TB XRAID attached to this server where the Home Directories are hosted. I have been told that they are now slow at logging in (I am currently unwell at home so have not confirmed this yet).
  It used to be a magic triangle setup but found there were problems with the managed prefs for the clients not being obtained on startup and network logins not working.
  The DNS and DHCP comes from the AD still.
  The OD has been set up to have the same kerberos realm as that of the AD (is this wrong) as the users are in both AD and OD with same username and password.
  The users Home dirs for the OD are hosted as i say on the XRAID which has a striped array of 1TB so the HDD speed shouldn't be a problem.
  The server is now connected to a 1Gb switch as are the clients.
  I have added more ram to the Xserve (now running on 5GB RAM). I have read that an afp server needs a lot of ram to work effectively. Is this enough?
  I have not set up link aggregation yet.
  The total amount of users logging in at one time will be no more than 40 users at once as there are only 40 mac machines in the school.
  I hope you can help as i would like to have something to go back to school with to tackle this if it does turn out to be true.
  Any more info needed just ask.
  TIA

  Hi. Let me restate so I understand it right. You are using an XServe to host network home folders and also using Active Directory for authentication? I work at a primary school also and we have an XServe that has the users home folder on it, but we also connect to an AD server for authentication. We had some speed issue with logging in but as soon as we set up a time server to ensure that both the XServe and AD server had the same time the trouble was fixed. Hope this helps.

• Airport Disk as home directories for server

  Is it possible to use an airport disk / time capsule as NAS host for home directories?
  I've seen no mention of being able to bind the disk to OD/Kerberos (network accounts).  Seems that would be necessary for hosting home directories.
  Or, would it simply be a matter of creating airport disk users (and passwords) which match those in OD?
  Anybody doing this?
  Thanks!

  When you log in to the linux machine, do you get an error that states that the home directory for the user cannot be found? That error message should give you the path that is set in the LDAP directory as the home directory for that user. This directory needs to be added to the Linux filesystem, and then the Users folder on the OS X Server needs to be NFS mounted (rw) on the Linux machine.
  For ease of transition, I softlink /home to this directory on the Linux machines.

• Workgroup Manager doesn't create home directories for OD accounts

  I'm having an issue where home directories aren't created for OD accounts. My setup is as follows, the home directories are stored on the OD Master (the only Apple/OD/AD server on the network), and the home directory paths are filled as afp://192.168.1.254/Customers, fakeuser, /Users/Customers/fakeuser
  This same pathing scheme works fine for local accounts, however for OD, clicking Create Home Directory and saving the account does nothing (no errors, nor folders created). If I ftp into said account, I wind up being directed to /Users (definitely not the expected behaviour)
  I am deploying a web based upload system that I want to authenticate against OD users so as to share home folders and permissions with the ftp server, once I have this figured out I will be migrating a bunch of accounts to OD from local.

  In addition to potential DNS issues, it sounds like you may be using the wrong procedure to define the users' home directories. You should never have to specify the paths manually; instead, define the share point ("Customers" in your case) to be automounted, and then it should automatically show up in the list of available home folder locations, with all the necessary paths predefined. Here's the full procedure:
  1. Run Server Admin, and select: the server name in the sidebar -> File Sharing in the toolbar -> Volumes & Browse under that -> navigate to the /Customers folder in the column view.
  2. Make sure the folder is being shared (with it selected, you should see an "Unshare" button near the top right of the window); if not share it with the Share Button (then Save the change).
  3. Select the Share Point tab under the file browser (NOT the one above it), and select the Enable Automount checkbox. A dialog will open asking for the automount details; make sure the Directory is set to /LADPv3/127.0.0.1, Protocol to AFP, and Use for is User home folders and group folders. OK the dialog, and be sure to click Save to make the change take effect.
  4. Run Workgroup Manager, and select Accounts in the toolbar -> Users (single person icon) tab under that -> some user account(s) you want to configure under that -> Home tab on the right.
  5. Select (None) from the location list and click Save (this wipes out any current setting, so we can rebuild it correctly).
  6. The Customers share point should be in the list of available locations (due to being configured for automount); select it, then click Create Home Now, and finally Save.

• IPrint for Linux client, Lexmark and HP

  So far, we have only had iPrint working on OES2 Linux for Windows (XP) clients. On my openSUSE/SLED workstation I have had to setup local printing instead using CUPS and PPD for our networked Lexmark MF and PS laserprinter.
  Now before installing a new HP Designjet T790PS plotter, I wonder if iPrint can be set up for Win7 clients plotting and by using HPLIP for plotting from Linux clients?

  Using iManager in the iPrint section you can setup the Plotter and other Printers for network printing by creating: The Driver Store, Print Manager(s), Printer(s) and Driver Profile - - this would allow you to effective setup all for printing from Windows and SLED.
  Leroy Joseph
  Visual Click Software
  (eDirectory Management and Reporting)
  eDirectory Management and Reporting | DSRAZOR for eDirectory

• Networked Home Folders for Linux users

  Is this possible in OS X server? I can't find any mention of it anywhere.
  We recently acquired a group of animators who work in linux and would like their home folders remoted. i would also like to get them sucked into the same OD user structure to avoid multiple logins and such.
  Is this possible and does anyone know of any resources to help?

  All is possible with openLDAP (i.e. OD)!
  So you want linux people to authenticate against OD, and have their home folders hosted by a Mac (or a linux box?)
  I can tell you how I set up my Fedora 8 machine to authenticate against OD:
  1. run authconfig utility as root and select LDAP as a source of authentication info. Since OD uses Kerberos you also want to select the Kerberos option.
  2. enter all your OD info (ip, base to search, TLS or not etc).
  authconfig should update /etc/nsswitch.conf to look to ldap for name services and it should give you a working /etc/ldap.conf and /etc/openldap/ldap.conf. You may need to make some changes by hand.
  restart xserver (logout or reboot) and it should just work.
  If your home folders are on the linux box you will need to set an NFS option so that OS X will properly mount your NFS export.
  1. make sure linux machine has "insecure" option in its /etc/exports file and is exporting to samesubnet as your Macs.
  2.
  .... actually just follow these direction:
  http://www.oreilly.com/pub/a/mac/2007/06/27/discover-the-power-of-open-directory -part-2.html

• Request certificate for Linux client - web enrollment

  "Internet Explorer cannot run in the local computer's security context; therefore, users can no longer request computer certificates by using Web enrollment."
  https://technet.microsoft.com/en-us/library/cc732517(WS.10).aspx
  Does this mean that we cannot submit a request for a web server certificate via the web interface on behalf of a Linux based web server?
  If so, what recourse do we have? Must we use the command line?
  http://blogs.technet.com/b/pki/archive/2009/08/05/how-to-create-a-web-server-ssl-certificate-manually.aspx
  Of course, Group Policy and auto-enroll is not an option either.
  Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you.

  Web Enrollment no longer support direct certificate enrollment to local machine or smart card store. You have to generate certificate request outside of web enrollment. Though, you can submit pregenerated request via web enrollment pages.
  Vadims Podāns, aka PowerShell CryptoGuy
  My weblog: en-us.sysadmins.lv
  PowerShell PKI Module: pspki.codeplex.com
  PowerShell Cmdlet Help Editor pscmdlethelpeditor.codeplex.com
  Check out new: SSL Certificate Verifier
  Check out new:
  PowerShell File Checksum Integrity Verifier tool.

• Creating Home Directories

  Hi,
  I'm still fairly new to Mac Servers (come across from a Windows background), and am having trouble creating the home directories for the users I've created.
  Initially I created the user (just bog standard users - no mail, no calendars etc), bound the client machine to the server in Directory Utility (all working ok so far), even added the client machine to workgroup manager.
  However, the user was unable to logon - just a shaking screen after each logon attempt. Confirmed the password etc, all ok.
  Deduced (after looking on here) that it may be because the client has no home folder (a prerequisite for 10.5, even though it doesn't tell you that). However, coming from a Windows background, am unfamiliar with the syntax of network paths for Mac/Linux.
  The home folder location I've created is on the server: Server HD/Users/Shared/ and it is shared in Server manager as a Share Point. Actual folder permissions include Users: Read and Write, and share permissions are the same. AFP is on.
  In Workgroup manager, the syntax for the three fields I currently have is:
  Share point URL: afp://servername.domain.co.uk/Users/Shared
  Path to Home folder: username
  Full Path: /Network/Servers/servername.domain.co.uk/Users/Shared/username
  I click OK, then click on Create Home now, then Save and it returns the error: Unable to create Home Directory. The home directory could not be created because an error occurred.

  Hi
  +". . . The home folder location I've created is on the server: Server HD/Users/Shared . . ."+
  This is possibly where the problem lies? By default OSX Server, after installation, creates Users, Groups and Public as default share points. You only have to enable AFP and those shares are instantly available once users have been created to access them.
  Don't be tempted to delete the default Users and Groups folders as the Server will complain. There is already a default Shared folder that the Public folder resides in. Don't be tempted to delete these either.
  There is no need to create another shared directory within the top level User Directory as that is already being shared. Once you promote to OD Master and populate the node with users all you have to do is set the default Users folder to be auto-mounting for users Home folders. There is no further need to share it or define permissions. These are correctly set when the folder was initially created.
  In Workgroup Manager you should see the path as afp://fqdnofyourserver/Users. That's all you need. Simply select it and click Create Now and Save. Navigate to the Users folder and you should see the home directory has been created. There is no need either to tinker with permissions for individual users' home folders as these are correctly set at the time of creation. The default permissions model used for users' home folders is standard POSIX.
  For clients to access networked home folders correctly it's a good idea if the server's IP address is used to resolve DNS queries. Assuming the service is placed with the server?
  Unlike Microsoft, Apple don't tinker with Open Source OpenLDAP as much. They still modify it to suit their purposes but it's more standards based. If you don't want to use the default Users directory on the boot volume then simply un-share and un-automount and define a similar directory on another volume (a RAID for example) instead. Define it as a Share in Server Admin and set it for auto-mounting home directories. It will show in WGM with the correct path. Avoid long names and spaces if you can. You could stick with Users as it works.
  There is no need to resort to the command line in any of this as all the tools you need are there in the interface. Provided DNS is correctly configured on both pointers and you have not used .local as the basis for DNS it does work as it's supposed to and it works well.
  Tony

• Home directories not being created

  Hi,
  I am having trouble creating home directories for users on my OSX Server Tiger 10.4.4 running on a mac mini.
  Home directoried do not seem to be created for users on my Open Directory.
  I have configured my server to be an Open Directory master. I have no other Open Directory replicas/Servers running.
  I have set up and configured DNS. It appearts to be working correctly and can resolve my server name to the local IP (10.1.1.X) and give me a fully qualified domain name.
  When accessing users on my OpenDirectory via the work group manager the directory name comease up as "LDAPv3/127.0.0.1" (local host possibly the problem).
  When I click on the "Create Home Now" button and hit save, the home dirs are not created.
  I have checked to make sure that the home directory is shared (owner root) and it seems okay.
  I have read some other threads on topics similar to this, but have had no luck. I would appreciate any help in trying to fix this problem.
  Please let me know if any further information s required.
  Cheers

  I had the same issues you've described in this thread. It turned out that I had named my server "morris", and when the client machines went to mount a user's home folder, they attempted to mount /Network/Servers/morris/Users/whoever. When I went to the Finder, I clicked on the Network icon, then the Servers icon, and listed under there was "morris.domain.com" (where domain.com is your own local domain), but not "morris". So it appeared that there was a name mismatch.
  The fix was easy. I started up Server Admin, clicked the machine I wanted to fix, clicked the Settings tab in the right pane, the Network tab up top, and changed the "Computer Name:" field from "morris" to "morris.domain.com". From that point on, my login problems went away.
  It seems that the Server Admin-set "Computer Name" has to match the machine's FQDN in DNS.

• Multiple Home Directories

  I have a OD server running 10.5.2 and and 10.5.2 file server that is a member of the OD. I am curious if this is possible:
  I'd like local home directories for all of the computers (which i currently have set up in WGM by setting the home dirs to /Users. But what i'd also like is for them to have a network home directory that they can save files to for personal use. Right now i have the share set up so that there is a folder called /Users on the file server and i'd like any folder in there to be able to be mounted by doing afp://server/username
  are having both of these at the same time possible?

  This was my point. I wanted total separation.  In order to create that separation (when trying to use a network user) I had to temporarily move the existing Snow Leopard Users folder (on Partition 1) so that the Partition 2 OS (either Snow leopard or LION) will create it's own User directory structure.  This is only needed for network users (i.e. ones that authenticate via OSX server).
  Once the process of temporarily moving the Users folder, letting the new instance create it's own directories, and renaming back, everything works.  i.e. when I startup Snowleopard all operations are within Partition 1 then if I start LION all operations are within Partition 2. 
  When installing new versions of an O/S I like to have control and manage the change so that I know I have a totally working system.  Been doing the same with Linux for years, but Mac OS/X tries to be a bit too clever!

• Portable Home Directories

  I have a Tiger Server that hosts portable home directories for my Leopard Clients.
  I cannot get a portable home directory to sync with my Snow Leopard client.
  Is this possible?

  I have a snow leopard server. My < 10.6 clients can still mount their remote home directories using smb, but my snow leopard clients cannot. Has anyone shed any light on this issue?
  my client log says:
  Nov 13 09:43:40 bach07 authorizationhost[165]: cifs home directory mount failed in creating directory path: status = Authentication error
  Nov 13 09:44:41 bach07 edu.mit.Kerberos.CCacheServer[178]: launchctl start error: No such process
  My server log says:
  [2009/11/13 09:44:47, 3] /SourceCache/samba/samba-235/samba/source/smbd/oplock.c:init_oplocks(863)
  init_oplocks: initializing messages.
  [2009/11/13 09:44:47, 3] /SourceCache/samba/samba-235/samba/source/smbd/process.c:process_smb(1077)
  Transaction 0 of length 51
  [2009/11/13 09:44:47, 3] /SourceCache/samba/samba-235/samba/source/smbd/process.c:switch_message(927)
  switch message SMBnegprot (pid 2508) conn 0x0
  [2009/11/13 09:44:47, 3] /SourceCache/samba/samba-235/samba/source/smbd/secctx.c:set_secctx(278)
  setting sec ctx (0, 0) - secctx_stackndx = 0
  [2009/11/13 09:44:47, 3] /SourceCache/samba/samba-235/samba/source/smbd/negprot.c:reply_negprot(526)
  Requested protocol [NT LM 0.12]
  [2009/11/13 09:44:47, 3] /SourceCache/samba/samba-235/samba/source/smbd/negprot.c:reply_nt1(385)
  using SPNEGO
  [2009/11/13 09:44:47, 3] /SourceCache/samba/samba-235/samba/source/smbd/negprot.c:reply_negprot(627)
  Selected protocol NT LM 0.12
  [2009/11/13 09:44:47, 3] /SourceCache/samba/samba-235/samba/source/smbd/process.c:timeout_processing(133 7)
  timeout_processing: End of file from client (client has disconnected).