On pe, 28 elo 2020, Giulio Casella wrote:
On 28/08/2020 11:29, Alexander Bokovoy via FreeIPA-users wrote:
On pe, 28 elo 2020, Giulio Casella wrote:
The goal is to create users' home directory.
My setup is a (existing) AD architecture, with FreeIPA trusted with it.
Linux workstations (Fedora based) are joined to ipa,
authentication and authorization work great, but I've no way to
auto create home directory for them.
I was thinking to (nightly) run a script that list AD users and
create unexisting home directories (mkhomedir_helper). Doing it by
hand is not a way, users are tens of thousands.
So you mean the only way is to interact with AD guys (argh!)?
I assume that by 'home directories' above you are refering to
network-mounted home directories. Is that correct?
Yes, that's correct (they reside on a NFS share, automounted at
logon). And that is the origin of the pain...
Then you need to talk to your AD guys, to include all required
notifications into theirs' user lifecycle management process.
They own the users, so they should be involved into triggering those
actions.
--
/ Alexander Bokovoy
Sr. Principal Software Engineer
Security / Identity Management Engineering
Red Hat Limited, Finland
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/[email protected]
