Changes between Version 39 and Version 40 of Old/hNodes/cNodeVer3/dAssembly/e4NodesSetup


Ignore:
Timestamp:
Jun 21, 2013, 4:27:53 PM (11 years ago)
Author:
ParviK
Comment:

Legend:

Unmodified
Added
Removed
Modified

  • Old/hNodes/cNodeVer3/dAssembly/e4NodesSetup

    v39 v40  
    198198
    199199====== Setting up Login Service ======
    200 
     200NOTE: EVERYTHING THAT IS ORBIT-LAB.ORG SHOULD BE GENI.NET
    2012011. Install ldap libraries using command
    202202{{{
    203203apt-get install libpam-ldap libnss-ldap
    204204}}}
     205This process will ask you a bunch of ldap related questions that will be used to prime the ldap.confs (there are 2). It's not critical to get them correct as we're just going to replace those conf's any way. (Accepting the defaults is ok).
     206
     2072. Edit the /etc/ldap.conf file to configure the ldap client.
     208{{{
     209    base dc=orbit-lab,dc=org
     210    uri ldap://ldap.orbit-lab.org/
     211    ldap_version 3
     212    binddn
     213    rootbinddn cn=admin,dc=orbit-lab,dc=org
     214    pam_password md5
     215    nss_initgroups_ignoreusers backup,bin,daemon,games,gnats,irc,libuuid,libvirt- qemu,list,lp,mail,man,messagebus,news,ntp,postfix,proxy,root,sshd,statd,sync,sys,syslog,usbmux,uucp,www-data
     216}}}
     217You could edit this file and change all the values to reflect this (leaveing the rest as comments) or simply replace the one you have with this one​. You can also check the non-comment lines by executing:
     218{{{
     219    egrep -v "^#|^$" /etc/ldap.conf
     220}}}
     221
     2223.  The /etc/ldap/ldap.conf is the second file that guides the client.
     223{{{
     224    BASE    dc=orbit-lab,dc=org
     225    URI     ldap://ldap.orbit-lab.org
     226}}}
     227 Again you can edit it directly or copy this version​.
     228
     2294.  The /etc/nsswitch.conf file should have the follow non comment lines:
     230{{{
     231    passwd:         files ldap compat
     232    group:          files ldap compat
     233    shadow:         files compat
     234
     235    hosts:          files dns
     236    networks:       files
     237
     238    protocols:      db files
     239    services:       db files
     240    ethers:         db files
     241    rpc:            db files
     242
     243    netgroup:       nis
     244}}}
     245
     2465. Copy or create the /etc/ldap.secret file
     2476. Finally add the follow line to the /etc/sudoers file (note this is done with the visudo command).
     248{{{
     249    %admin ALL=(ALL) ALL
     250    %sysadmin ALL=NOPASSWD: ALL
     251}}}
     252    This has to be done manually.
     253  * Configure networking for the node facing interface of the console e.g.:
     254{{{
     255        auto eth1
     256        iface eth1 inet static
     257        address 10.14.0.10
     258        netmask 255.255.0.0
     259}}}
     2607.  Install other software:
     261{{{
     262   apt-get install cfengine3 emacs ntp
     263}}}
     2648.  We need to make sure machine have fully qualified host name (some services depend on it). So:
     265{{{
     266    echo "console.sb4.orbit-lab.org" > /etc/hostname
     267}}}