|
Home > Archive > Open Enterprise Server Admin Tools > April 2005 > oh my, groups are confusing in oes
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
oh my, groups are confusing in oes
|
|
|
| was testing imanager, I see now that my users which I set up from the
console after installing oes are not in the tree....I guess the ones I
set up at console are like the ones you set up in windows...only for
that physical workstaiton but has no network rights particularly?
So, if I want to set up a user on the OES server who can get to files
and printers then I use a user in the tree but if I want to set up a
user who can administer physical server box then I use someone with a
local login?
What if I want to ssh to box from somewhere and copy files up and
down...is that an edir user or a linux user?
this is really not clear as water.
| |
| Justin Grote 2005-04-27, 5:45 pm |
| buzz wrote:
> was testing imanager, I see now that my users which I set up from the
> console after installing oes are not in the tree....I guess the ones I
> set up at console are like the ones you set up in windows...only for
> that physical workstaiton but has no network rights particularly?
>
> So, if I want to set up a user on the OES server who can get to files
> and printers then I use a user in the tree but if I want to set up a
> user who can administer physical server box then I use someone with a
> local login?
>
> What if I want to ssh to box from somewhere and copy files up and
> down...is that an edir user or a linux user?
>
> this is really not clear as water.
Hi Buzz,
Welcome to the world of POSIX groups  .
File permissions in Linux are separate from eDirectory and NSS volume
rights. They are also FAR more limited in terms of flexibility.
The two systems are WAY different, so here's some more information:
http://www.novell.com/coolsolutions/qna/2326.html
In short: The admin in Linux is one and only one user: root. It is local
to the machine and you cannot give someone root equivalence in
eDirectory, so you can't have multiple server administrators who have
full rights to the server like you had in Netware, at least not in the
traditional way.
However, using a combination of sudo (a command that lets you become
root from another user) and Linux User Management (an OES technology
that maps eDirectory users to Linux users), you can create multiple
administrators. I can't really detail the configuration here, but it's
very possible, and how we have solved this problem.
This is one of those growing pains of a 1.0 release. I expect it to get
a lot better, but right now you have to limp along .
However, using the NCP server, you can administer everything just like a
Netware box. It looks no different to the Novell client.
--
__________________________
Justin Grote
Network Architect
JWG Networks
|
|
|
|
|