1,034
edits
Equipment/Turing: Difference between revisions
From London Hackspace Wiki
m
Updated LDAP info (no more Denning as it goes to ldap-secondary now, and it does work)
(how to edit the acl's) |
m (Updated LDAP info (no more Denning as it goes to ldap-secondary now, and it does work)) |
||
| Line 32: | Line 32: | ||
== LDAP == | == LDAP == | ||
Turing has an LDAP db on it that is replicated to | Turing has an [[LDAP]] db on it that is replicated to ldap-secondary (Hackspace VM in Wembley) for use on machines in the space. | ||
Turing has iptables rules that allow access to the [[LDAP]] server from ldap-secondary (Hackspace VM). | |||
We use a schema that is compatible with Samba for 2 reason: | |||
* We might want user logins to Samba at some point | |||
* The sambaNTPassword attribute is understood by FreeRADIUS and is needed for MS-CHAP auth for spacefed. | |||
* We might want user logins to | |||
* The sambaNTPassword attribute is understood by | |||
however the sambaNTPassword hash is quite weak, and the sambaLMPassword hash is silly, so ideally: | however the sambaNTPassword hash is quite weak, and the sambaLMPassword hash is silly, so ideally: | ||
| Line 91: | Line 87: | ||
* might need to add an index to memberUid | * might need to add an index to memberUid | ||
=== Changes to tools on | === Changes to tools on Turing === | ||
The smbldap tools were patched with these patches | The smbldap tools were patched with these patches | ||
