[OpenAFS] OpenAFS and LInux PAM
Raymond
support@bigriverinfotech.com
Sat, 28 Sep 2002 13:13:22 -0700
Sorry for all the questions but the documentation is unclear to me or doe=
s not=20
elaborate on certain issues; in this instance it is Linux and PAM.
I would like to create user system accounts with a /bin/false shell (this=
has=20
worked will with FTP and PAM in the past). All users will be Win2k / XP=20
clients. The disadvantage has been that the user cannot change his or her=
=20
password. When utilizing this configuration, no FTP user account is creat=
ed=20
as any authentication requests are forwarded to the system for a valid us=
er=20
and password.
In the case of Linux (rh73) OpenAFS and PAM, do I bypass creating the use=
rs=20
and passwords, instead creating home directories, permissions,=20
subdirectories, mount points and volumes? Or will OpenAFS create the syst=
em=20
accounts via PAM. If so, what about existing system accounts?
Should AFS-specific user and group accounts such as anyuser be created as=
=20
system user and group accounts when using PAM?
Will kpasswd change the system password when utilizing PAM system=20
authentication?
The documentation discusses HOW to configure OpenAFS and PAM but does cle=
arly=20
detail the interaction. Perhaps someone could post a separate doc on this=
=2E
Lastly, as Redhat kernels update so frequently, would someone consider po=
sting=20
a Redhat-distro-specific kernel.src.rpm that could be configured with=20
--rebuild and --define 'kernel <kernel>' args. This would make life much=
=20
easier for may of us Redhat Network subscribers (and probably the OpenAFS=
=20
maintainers).
Thanks in advance
Raymond