6

We have about 7 Linux servers and from time to time we setup a new one...

For each new install we have to create the same users and ask them to change their default passwords to new ones ... Plus for us, we have to copy our user preferences and other personal stuff (ssh keys, .vimrc, default user's shell...) to the new server.

I would like to have all users' home folders + the authentication system centralized on one server only! When a user tries to log into a server, it has to check username/pass and retrieves user's home folder from one centralized server.

I've heard about LDAP, but regarding my LDAP experiences: are there other solutions?

Requirements:

  • Easy to maintain and to setup
  • Supports ssh authentication by RSA/DSA public keys
  • Makes user's remote folder accessible locally
  • Keep user's rights same on all machines (if user can sudo on the centralized server then he can on every server)
  • Possibility to restrain user's rights on a particular server
Nicolas Kaiser
  • 165
  • 1
  • 4
  • 16
Kami
  • 1,414
  • 12
  • 25

1 Answers1

8

Most common solutions are NIS+NFS or LDAP+NFS. NIS is easier to set up than LDAP, but LDAP supports multiple OSes and is more flexible in that sense. I would recommend using one of these two since both are well documented and established in the industry.

CarpeNoctem
  • 2,397
  • 4
  • 23
  • 32