Koozali.org: home of the SME Server

Obsolete Releases => SME Server 7.x => Topic started by: francois.mdlh on July 19, 2007, 12:58:54 PM

Title: Add second SME to SME network
Post by: francois.mdlh on July 19, 2007, 12:58:54 PM

Is it possible to add a second SME server to a network where an existing SME server is providing user authentication?

I want the second server to be a fileserver only, but I want it to use the users from the first server to authenticate against the shares.

thanks in advance

Title: Re: Add second SME to SME network
Post by: CharlieBrady on July 19, 2007, 02:13:49 PM

Quote from: "francois.mdlh"

Is it possible to add a second SME server to a network where an existing SME server is providing user authentication?

No. Search here for "ldap authentication" and "Active Directory" and you will find many similar questions and answers.

Title: Re: Add second SME to SME network
Post by: SoftDux on September 07, 2007, 10:13:18 AM

Quote from: CharlieBrady on July 19, 2007, 02:13:49 PM

No. Search here for "ldap authentication" and "Active Directory" and you will find many similar questions and answers.

CharlieBrady, I don't see how Active Directory will solve this problem. I'm looking for the same type of setup, and if I wanted to run Active Directory, then I most certainly won't look @ linux, or SME for that matter. Linux SME is supposed to be a OSS replacement for MS products. Have you ever considered that there may be users who would need some sort of replication between user accounts on more than one SME server? This has a LOT of advantages.

Doing a search for "ldap authentication" returns only this thread. Would "ldap authentication" solve this problem? If so, how?

Title: Re: Add second SME to SME network
Post by: jester on September 07, 2007, 11:44:38 AM

SoftDux what you want is not possible (yet). When SME would use ldap to store accounts and authenticate against that, that information could be replicated to/from other SME-servers or even AD-servers, thus truly working together as a domain. Work is being done to make this happen, at least in some degree... read here (http://forums.contribs.org/index.php?topic=37452.0) and search in the bug-tracker.

You might be able to figure out to sync accounts between two servers using Affa (http://wiki.contribs.org/Affa) or DirtyTools (http://wiki.contribs.org/Dirty_Tools) which could be: unreliable/insecure/not the proper way/etc.

Title: Re: Add second SME to SME network
Post by: brentonv on September 07, 2007, 01:42:21 PM

it is very possible. you can try this: http://sme.swerts-knudsen.dk/howtos/howto_31.htm

or do what i do which is so much simpler. run the loginscript contrib (netlogon tool) and set users to autologon to shares on other sme's based on groups. this way i can have an sme at each office with group specific data locally and all other sites can access this data also, so long as they are members of the group which is determined by the master sme server (PDC) eg:

Quote

#ifg group1
REM Map office1 staff folder:
NET USE J: \\office1\staff /user:office1 password
#endif

#ifg group2
REM Map office2 staff folder:
NET USE K: \\office2\staff /user:office2 password
#endif

it also works by user (#ifu), machine (#ifm) and operating system (#ifa). hope this helps.

regards,
brenton

Title: Re: Add second SME to SME network
Post by: jester on September 07, 2007, 02:25:33 PM

@Brenton: can you confirm that this works on SME7.2 ?! If that's a yes i'll see if i can find time to put it in the wiki.

regards.

Title: Re: Add second SME to SME network
Post by: brentonv on September 08, 2007, 02:49:11 AM

i'm not sure if http://sme.swerts-knudsen.dk/howtos/howto_31.htm works for 7.2 but my suggested way of using http://mirror.contribs.org/smeserver/contribs/jbennett/sme7/loginscript/RPM/smeserver-loginscript-0.2-8.noarch.rpm works fine