Re: Groups

Wed, 06 Oct 2010 11:46:35 -0700 

Dear Jeff,
I don't think there's a difference managing a user on mixed authentication schemes. The priority is in /etc/nsswitch.conf, all schemes providing a users groups are defined there. 


# add new group, and user. Note: user has to logout or login to new 
group (man newgrp) to register his updated group membership.

root$ groupadd newgroup
root$ gpasswd -a username newgroup

# check user username is in newgroup
root$ getent group username
(alternative) root# id username

# change permission of folder for new group
root$ chgrp newgroup /folder
root$ chmod g=rx /folder

Junhao

On 10/07/2010 01:44 AM, Jeff Poling wrote:

Fabio,

The group is not in LDAP but the user is.  The group is one I created on
the system itself.  Basically, I am trying to give the user access to a
folder without giving him root access.

Thanks,

Jeff

*Jeffrey Poling*

*System Administrator | Information Systems*

Moody Bible Institute

820 N. LaSalle Blvd., Chicago, IL 60610

312-329-8968

www.moodyministries.net <http://www.moodyministries.net>

 From the Word. To Life.

*From:* [email protected]
[mailto:[email protected]] *On Behalf Of *Fabio
Rampazzo Mathias
*Sent:* Wednesday, October 06, 2010 11:34 AM
*To:* [email protected]
*Subject:* Re: Groups

Jeff,

You can use smbldap-tools and type :

    # smbldap-groupmod -m <user> <group>

Or, if you don't use this tool, just add as an attribute of your group
in LDAP base :

    memberUid: <user>

If you do not use any tool to manage LDAP, you can insert these content
on a file :

    dn: <full DN of group>

    changetype: modify

    add: memberUid

    memberUid: <user>

and then, run the following line :

    # ldapmodify -D "<admin DN>" -W -x -f <file>

A great tool for managing LDAP can be found here :
http://www.novell.com/coolsolutions/tools/13765.html

Cheers,

Fábio Rampazzo Mathias

On Wed, Oct 6, 2010 at 10:25 AM, Jeff Poling <[email protected]
<mailto:[email protected]>> wrote:

I just took over our Linux environment and need some assistance with
groups. Our users authenticate via LDAP and I need to add a user to a
new group I created. How do I add an LDAP user to a group on a single
system?

Thanks,

Jeff


--
redhat-sysadmin-list mailing list
[email protected] <mailto:[email protected]>
https://www.redhat.com/mailman/listinfo/redhat-sysadmin-list



--
redhat-sysadmin-list mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/redhat-sysadmin-list


--
redhat-sysadmin-list mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/redhat-sysadmin-list






















					Reply via email to