RationalizeLoginSystem
What (summary)
There are lots of accounts on the live and dev servers. Right now their maintained by hand. Some sort of central account system that makes it easy to manage the accounts would be good.
Why this is important
DoneDone
Steps to get to DoneDone
Keberos/LDAP Server Configuration
- Install and configure Kerberos
- Install and configure LDAP
- Integrate LDAP authentication into Kerberos
- Implement internal NTP server (required for Kerberos)
- Add necessary internal DNS records for Kerberos and LDAP services
- Install tools to simplify LDAP account management
- Add current users and groups to LDAP/Kerberos
- Document user management
Shared Home Directories
- Configure NFS server
- Migrate current user data to NFS export
Client Configuration
- Push NTP client configuration to machines
- Configure client machines for LDAP/Kerberos authentication
- Enable RPC services and configure client servers to automount home directories
- Document client configuration steps
- Possibly upgrade FC3 servers for better LDAP/Kerberos support
