CipUX

Installation of CipUX

?TableOfContents

?Navigation(children,5)

CipUX Installation 3.4.x for DebianEdu

This is under development for now. Do not install on productive systems,
as long this remark is here.

Choose a fresh installed DebianEdu (Etch/Lenny)

(1)

edit /etc/apt/sources.list

add:

 deb http://ftp.debian.org/debian/ etch main contrib
 deb http://debiantest.cipux.org/ sid main

Type this commands:

change

base ou=People,dc=skole,dc=skolelinux,dc=no

to

base dc=skole,dc=skolelinux,dc=no

change

nss_base_passwd ou=People,

to

nss_base_passwd ou=People,
nss_base_passwd ou=CipUX,
nss_base_group ou=CipUX,

Use login cipadmin and known password to test the RPC server:

change my $cipux_home_directory = "/home/cipux0"; to my $cipux_home_directory = "/skole/tjener/home0";

CipUX Installation 3.4.x for plain Debian

This is under development for now. Do not install on productive systems,
as long this remark is here.

Choose a fresh installed Debian (Etch) with hostname cipux340 and domain name example.net (!!!).

(1)

edit /etc/apt/sources.list

comment out something like this:

# deb cdrom:[Debian GNU/Linux 4.0 r2 _Etch_ - Offical i386 NETINST Binary-1 20080103-00:44]/ etch contrib main

add:

 deb http://debiantest.cipux.org/ sid main

(2)

Type this commands:

Question 1 (Configuring slapd)
Please enter the password for the admin entry in your LDAP directory.
Admin password:
By default: empty
Correct answer: (choose one and remember it!)

Question 2 (libnss-ldap)
Please enter the URI of the LDAP server used. This is a string in the form ldap://<hostname or IP>:<port>/ . ldaps:// or ldapi:// can also be used. The port number is optional.
Note: It is usually a good idea to use an IP address; this reduces risks of failure in the event name service is unavailable.
LDAP server Uniform Resource Identifier
By default:     ldapi:///
Correct answer: ldap://127.0.0.1

Question 3 (libnss-ldap)
Please enter the distinguished name of the LDAP search base. Many sites use the components of their domain names for this purpose. For example, the domain "example.net" would use "dc=example,dc=net" as the distinguished name of the search base.
distinguished name of the search base
By default:     dc=example.net,dc=net
Correct answer: dc=example.net,dc=net

 Question 4 (libnss-ldap)
Please enter which version of the LDAP protocol ldapns is to use. It is usually a good idea to set this to highest available version number.
LDAP version to use
By default: 2 or 3
Correct answer: 3

Question 5 (libnss-ldap)
This account will be used for nss requests with root privileges.
Note: For this to work the account needs permission to access the attributes in the LDAP directory that are related to the users
shadow entries as well as users' and groups' passwords.
LDAP account for root
By default: cn=manager,dc=example,dc=net
Correct answer: cn=admin,dc=example,dc=net

Question 6 (libnss-ldap)
Bitte geben sie das Passwort ein, das verwendet wird, wenn libnss-ldap sich mit dem LDAP-Zugang fuer root am LDAP-Verzeichnis anmeldet.
Das Passwort wird in einer eigenene Datei /etc/libnss-ldap.secret gespeichert, die nur fuer root lesbar ist.
Beleibt das Passwort leer, wird das alte Passwort wieder benutzt.
Passwort des LDAP-Zugangs fuer Root:
by default: empty
correct answer: (use password from above)

 Question 7 (libpam-ldap)
This option will allow you to make password utilities that use pam, to
behave like you would be changing local passwords.
The password will be stored in a sepereate file which will be made
readable to root only.
If you are using NFS mounted /etc or any other custom setup, you should
disable this.
Make local root Datatbase admin.
By default: YES  (YES or NO)
Correct answer: YES

 Question 8 (libpam-ldap)
Choose this option if you can't retrieve entries from the datatbase
without logging in.
Note: Under normal setup, this not needed.
Does the LDAP database require login?
By default: NO  (YES or NO)
Correct answer: NO

Questin 9 (libpam-ldap)
This account will be used when root changes a password.
Note: This account has to be a privileged account.
LDAP account for root:
By default: cn=manager,dc=example,dc=net
Correct answer: cn=admin,dc=example,dc=net

Question 10 (libpam-ldap)
Please enter the password for the admin entry in your LDAP directory.
Admin password:
By default: empty
Correct answer: (choose one and remember it!)

Add "ldap" and "files" to the following services in /etc/nsswitch.conf and comment out "compat"

passwd:         files ldap
group:          files ldap
shadow:         files ldap
netgroup:       files ldap
automount:      files ldap
# passwd:         compat
# group:          compat
# shadow:         compat

Remarks:

CipUX Automatic Setup 3.4.x (TODO)

This chapter is intended for integrators or developers who would like to deploy CipUX on their distribution or LiveCD. So this page contains several methods to install CipUX.

apt-getting debs

You can fetch the debian packages of cipux from last svn-revision with the following entry in your sources list. Every half hour, the packages are build if there was any commit to svn-repository, so here you will get the very latest ones. This location is also available by browser via http://debiantest.cipux.org

 deb http://debiantest.cipux.org/ sid main

Get the package list

Setup process description

Attended installation procedure

Unattended installation procedure

Remarks:

Customization for (jet) unsupported Distributions

Other CipUX Installation Guides

Installation guides for different Debian and Debian-Edu/Skolelinux releases. For Updates please read the [:DebianEdu/CipUX/Update:update page].

On Debian (Etch) , Debian-Edu/ Skolelinux 3.0

Older installation guides

Debian-Edu/ Skolelinux 1.0 (Venus)

?Navigation(siblings,1)