Linux

Replaced my Kerberos+LDAP setup with FreeIPA

So I've been having to deal with some IPA-related bugs in the past little bit, which of course got me thinking that I had no idea what IPA did or how to use it (thankfully I wasn't responsible for fixing the bugs!). But as I had to deal with this issues to some degree, I got to figure out what FreeIPA was and what it did. In short, FreeIPA rocks. As many ...

Read More

Linux

My adventure upgrading RHEL5 to RHEL6

Well, I've begun the migration and probably picked the hardest machine to start with. One of my goals here was to do a clean migration from a Red Hat Enterprise Linux 5 box to a Red Hat Enterprise Linux 6 box for a specific set of services, and to intentionally have SELinux in enforcing mode (I'm determined to no longer be intimidated by SELinux). The machine in question is probably one of the ...

Read More

Linux

Converting Active Directory to Samba+OpenLDAP

Anyone have any experience with this? I may end up (and will be proposing) that the school my wife works for looks into replacing their (falling apart, IMHO) Win2k server using Active Directory for the domain controller and whatnot to a solution using Samba and OpenLDAP (and I'm presuming kerberos).

Are there any good HOWTOs out there? Is this something quite difficult? Anyone have any ideas how many man-hours this might take to ...

Read More

Linux

How I hate thee LDAP authentication...

I find LDAP for authentication highly irritating. It's better than some alternatives, like NIS (haven't looked at NIS+ so I don't know how it measures up), but man oh man, it's a real nuisance sometimes.

I wrote that LDAP Authentication piece when there was essentially nothing else and it took a long time to figure out all the bits. Now it seems like LDAP for authentication is all the rage.. everyone uses or wants ...

Read More