LDAP - NFS - autofs

[stephanek]

Hello,

We use LDAP and NFS in our organisation for all the Linux machines (RHEL + Fedora).

Is there any way to configure automatically the NFS mounts? So far I configure that manually, that's not optimal for automatic installations, I'd like to look into autofs but I cannot find proper documentation.

What is the best process to implement this?

Thanks.

Stephane

[stephanek]

I tried to tune /etc/sysconfig/autofs but the logs show that autofs is unable to bind to my ldap server, this is a Fedora Directory Server and it should accept anonymous binds. Any ideas there?

[robert.forster]

I am looking for details on this too. As soon as I get details I will be more than happy to post what I have done step by step

[Stone Dragon]

You can implement this by using automount in ldap directly. It works flawlessly here (besided from notebook sync questions, which I'm investigating currently). Pls. have a look here: http://directory.fedoraproject.org/wiki/Howto:Automount
You still have to put entries for each user into ldap then, but you can easily automate this or have at least one central information instance.

[ibbo]

Without going through LDAP to do it (which ive always found a nasty beast)

NFS SERVER SPECIFIC
Edit /etc/exports
/home *(rw,sync)
run
exportfs -a

CLIENTS
Edit /etc/auto.master
/home /etc/auto.home --timeout 600

Edit /etc/auto.home
* -fstype=nfs,soft,intr,rsize=8192,wsize=8192,nosuid, tcp <nfs server IP>:/home/&

Make sure NFS on both server and clients are up and running. Also ensure autofs is running on the clients. (restart them as needed).

Logout and logback in,

You may also wish to rename your /home dir on the clients to make sure they are mounting.

Ibbo

[Stone Dragon]

Yes, you are right, ibbo your solution is by the way also the "official Redhat way" of doing multiple autofs-imports on /home/*.
p.s.:
LDAP is much more like a cat than a beast, when you tame it ;-)

[robert.forster]

I read the documentation on the LDAP/AUTOFS/FDS for automount

have FDS running am able to authenticate with it well. I am fairly new (stopped linux/*nix back in 1996 LOL stupid me) to the internals

I have dloaded the ol-schema-migrate.pl I understand that it is remove entries and to add new entries to the RFC situation. then it is to redirect the output (I think) into an LDIF file that my guess is to be dropped into /etc/dirsrv/slapd-*/schema directory.

My issue is the command (I think again) that they want you to run is
"perl ol-schema-migrate.pl -b autofs.schema > 75autofs.ldif"

where is the file autofs.schema???

[Stone Dragon]

There should be a link to it in the documention you mentioned

[robert.forster]

a link to the autofs.schema?

OH WOW!!
ummm "DUHH" nevermind LOL

[Stone Dragon]

just checked my links and here you go:

http://people.redhat.com/nalin/schema/autofs.schema

[robert.forster]

Yea I found the link on it and cleared it up to get the file that I completely missed before LOL

[robert.forster]

Currently at the moment I have on the directory server console

exampledomain
-groups
-people
-special users
-auto.master
-/home (which is an entry)

the next line says to create "auto.home is this a new OU in equal to "auto.master" or is this a sub OU under "auto.master" documentation is unclear to me.

[robert.forster]

is there a way to verify that the schema is in correctly?

[Stone Dragon]

Quote:

Originally Posted by robert.forster

is there a way to verify that the schema is in correctly?

If you can add objectclasses with autofs-relation, it should generally be o.k. Fedora-Dirsrv would give you errors, if the schema is wrong or corrupt...

I've got auto.home and auto.master as 2 branches und "Automount" as parent. I do not like too many top-level elements You must anyway tell autofs where to start searching, so you can organise your ldap-tree at nearly free will.

[robert.forster]

I know sometimes that the questions I may ask seem stupid but I have learned to many times the hard way that to assume something is the death of a project before it even starts..thanks!!

I have made entries into the dirsrv and current issue I have is the user's home directory is not there.

bumped up logging in /var/log/messages to this

starting automounter version 5.0.2-16, master map auto.master
using kernel protocol version 5.00
lookup_read_master: lookup (file): failed to read included master map auto.master
mounted indirect mount on /misc with timeout 300, freq 75 seconds (commented this out)
mounted indirect mount on /net with timeout 300, freq 75 seconds (commented this out)

which I am scrolling through archives and others on this error to see what i can find