Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / Bulk LDAP users - how to avoid password expiration?
« on: February 26, 2015, 11:51:53 am »
I am using Zentyal in a school to manage pupils logins on a small LAN for the subject I teach.
I'm using the LDAP / kerberos module for this, approximately a year ago I bulk created students accounts but en-masse their logins are now expiring. This leaves them unable to access their home directories or startx etc.
Once a login has expired, currently the only way I can renew it is to access individual user details via the web interface and reset the password. This solves the problem but what was a trickle has turned into a torrent of children requiring resets.
Is there any way I can change the settings of all users (including those whose logins have already expired) so that this no longer an issue?
I'm using the LDAP / kerberos module for this, approximately a year ago I bulk created students accounts but en-masse their logins are now expiring. This leaves them unable to access their home directories or startx etc.
Once a login has expired, currently the only way I can renew it is to access individual user details via the web interface and reset the password. This solves the problem but what was a trickle has turned into a torrent of children requiring resets.
Is there any way I can change the settings of all users (including those whose logins have already expired) so that this no longer an issue?
2
Installation and Upgrades / [SOLVED]Having trouble with LDAP -can you help?
« on: May 09, 2013, 11:19:46 am »
Hi,
I'm an IT teacher trying to build my own departmental network for teaching computer science.
I already have a firewall/gateway (clearos) called collossus.computing.lan 192.168.0.2 - this has 2 nics and connects my network to the school network to provide my network with internet access
A DNS server (Raspberry Pi running dnsmasq) called lexicon.computing.lan 192.168.0.3
LTSP server (running edubuntu) called lovelace.computing.lan 192.168.0.10
DHCP seems to work, internet is shared, local users can log in to lovelace via thin clients. All the machines seem to have proper FQDNs etc.
I want to extend the network to put an LTSP server in each classroom. Obviously I need an SSO solution. I've been trying various implementations of LDAP - I've been working very hard trying to get this to work for quite a long time without success. I found out about zentyal and it's "users / groups / ldap" from web trawling in desperation.
I now have a new installation of zentyal running on a server called "athena" on 192.168.0.4. I have configured the settings for users and groups by going through the "office" basic setup.
These are my ldap settings as shown in the web interface
Base DN: dc=computing,dc=lan
Root DN: cn=zentyal,dc=computing,dc=lan
Password: xxxxxxxxxxxxxxxxxxxxxxxxx
Read-only root DN: cn=zentyalro,dc=computing,dc=lan
Read-only password: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Users DN: ou=Users,dc=computing,dc=lan
Groups DN: ou=Groups,dc=computing,dc=lan
Before I go any further configuring my ltsp server to authenticate I am trying to check if it will work by running from the terminal in the zentyal server.
athena_admin@athena:~$ ldapsearch -x -b dc=computing,dc=lan
However I just get
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
Even just ldapsearch on its own just gives me this.
What have I done wrong?
I'm an IT teacher trying to build my own departmental network for teaching computer science.
I already have a firewall/gateway (clearos) called collossus.computing.lan 192.168.0.2 - this has 2 nics and connects my network to the school network to provide my network with internet access
A DNS server (Raspberry Pi running dnsmasq) called lexicon.computing.lan 192.168.0.3
LTSP server (running edubuntu) called lovelace.computing.lan 192.168.0.10
DHCP seems to work, internet is shared, local users can log in to lovelace via thin clients. All the machines seem to have proper FQDNs etc.
I want to extend the network to put an LTSP server in each classroom. Obviously I need an SSO solution. I've been trying various implementations of LDAP - I've been working very hard trying to get this to work for quite a long time without success. I found out about zentyal and it's "users / groups / ldap" from web trawling in desperation.
I now have a new installation of zentyal running on a server called "athena" on 192.168.0.4. I have configured the settings for users and groups by going through the "office" basic setup.
These are my ldap settings as shown in the web interface
Base DN: dc=computing,dc=lan
Root DN: cn=zentyal,dc=computing,dc=lan
Password: xxxxxxxxxxxxxxxxxxxxxxxxx
Read-only root DN: cn=zentyalro,dc=computing,dc=lan
Read-only password: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Users DN: ou=Users,dc=computing,dc=lan
Groups DN: ou=Groups,dc=computing,dc=lan
Before I go any further configuring my ltsp server to authenticate I am trying to check if it will work by running from the terminal in the zentyal server.
athena_admin@athena:~$ ldapsearch -x -b dc=computing,dc=lan
However I just get
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
Even just ldapsearch on its own just gives me this.
What have I done wrong?
Pages: [1]