Difference between revisions of "CentOS"

From Univention Wiki

Jump to: navigation, search
(Bug 14563 Einbinden von CentOS)
 
(Gegenlesen.)
Line 1: Line 1:
This Guide describes how to include CentOS 6.2 in an UCS 3.0 Domain. It only shows the diverging points from the standard CentOS installation.
+
{{Version|UCS=3.0}}
 +
 
 +
This guide describes how to include CentOS 6.2 in an UCS 3.0 domain. It only shows the diverging points from the standard CentOS installation.
  
 
== Inclusion in the Management System ==
 
== Inclusion in the Management System ==
To include the System in the UDM add it as a Member server. This ensures that the proper accounts will be added for the Client.
 
  
Further it is necessary to add the IP of the CentOS System to the variable to
+
To include the CentOS system into the UCS management system,  add it as a member server. This ensures that the proper accounts will be added for the client.
 +
 
 +
Further it is necessary to add the IP address of the CentOS System to the variable to
 
  ldap/acl/read/ips
 
  ldap/acl/read/ips
 
on your DC Master and Backups.
 
on your DC Master and Backups.
  
 
== CentOS Installation ==
 
== CentOS Installation ==
During the Installation you should choose one of your UCS Domain Controllers as the ntp Timeserver.
+
 
Additional you should configure the hostname for the Server and not rely on the DHCP offered one.
+
During the installation one of UCS domain controllers should be chosen as the ntp time server. Additionally, the hostname for the system should be configured manually and not be relied on the DHCP offered one.
  
 
== Authentication Configuration ==
 
== Authentication Configuration ==
 +
 
First the needed PAM modules need to be installed:
 
First the needed PAM modules need to be installed:
 
  yum install openldap openldap-clients nss_ldap krb5-libs krb5-workstation
 
  yum install openldap openldap-clients nss_ldap krb5-libs krb5-workstation
Line 18: Line 22:
 
Afterwards LDAP and Kerberos need to be enabled:
 
Afterwards LDAP and Kerberos need to be enabled:
 
  authconfig --enablekrb5 --krb5kdc=<DC> --krb5realm=<REALM> --krb5adminserver=<DC> --enablecache --update''
 
  authconfig --enablekrb5 --krb5kdc=<DC> --krb5realm=<REALM> --krb5adminserver=<DC> --enablecache --update''
  authconfig --enableldapauth --ldapserver=<DC>:7389 --ldapbasedn=<base DN> --disableldaptls --ldaploadcacert=https://<DC Master>/ucs-root-ca.crt --update''
+
  authconfig --enableldapauth --ldapserver=<DC>:7389 --ldapbasedn=<base DN> --disableldaptls \
thereby you can use any DC for DC. The base DN can be found on a DC using the command
+
--ldaploadcacert=https://<DC Master>/ucs-root-ca.crt --update''
 +
 
 +
thereby you can use any UCS domain controller for the domain controller. The base DN can be found on a UCS domain controller using the command
 
  ucr get ldap/base
 
  ucr get ldap/base
  
Afterwards you should be able to log into your CentOS System
+
Afterwards you should be able to log into your CentOS System.
 +
 
 +
[[Category:EN]]

Revision as of 07:39, 15 May 2012

Produktlogo UCS Version 3.0

This guide describes how to include CentOS 6.2 in an UCS 3.0 domain. It only shows the diverging points from the standard CentOS installation.

Inclusion in the Management System

To include the CentOS system into the UCS management system, add it as a member server. This ensures that the proper accounts will be added for the client.

Further it is necessary to add the IP address of the CentOS System to the variable to

ldap/acl/read/ips

on your DC Master and Backups.

CentOS Installation

During the installation one of UCS domain controllers should be chosen as the ntp time server. Additionally, the hostname for the system should be configured manually and not be relied on the DHCP offered one.

Authentication Configuration

First the needed PAM modules need to be installed:

yum install openldap openldap-clients nss_ldap krb5-libs krb5-workstation

Afterwards LDAP and Kerberos need to be enabled:

authconfig --enablekrb5 --krb5kdc=<DC> --krb5realm=<REALM> --krb5adminserver=<DC> --enablecache --update
authconfig --enableldapauth --ldapserver=<DC>:7389 --ldapbasedn=<base DN> --disableldaptls \
--ldaploadcacert=https://<DC Master>/ucs-root-ca.crt --update

thereby you can use any UCS domain controller for the domain controller. The base DN can be found on a UCS domain controller using the command

ucr get ldap/base

Afterwards you should be able to log into your CentOS System.

Personal tools