Novell CLIENT FOR LINUX 2.0 - ADMINISTRATION Manual
Hide thumbs
Also See for CLIENT FOR LINUX 2.0 - ADMINISTRATION:
- Quick start manual (6 pages) ,
- Manual (26 pages)
Related Manuals for Novell CLIENT FOR LINUX 2.0 - ADMINISTRATION
Summary of Contents for Novell CLIENT FOR LINUX 2.0 - ADMINISTRATION
- Page 1 Novell Client 2.0 for Linux Administration Guide Novell Client for Linux w w w . n o v e l l . c o m 2 . 0 A D M I N I S T R A T I O N G U I D E...
- Page 2 Further, Novell, Inc. reserves the right to make changes to any and all parts of Novell software, at any time, without any obligation to notify any person or entity of such changes.
- Page 3 Novell Trademarks For Novell trademarks, see the Novell Trademark and Service Mark list (http://www.novell.com/company/legal/ trademarks/tmlist.html). Third-Party Materials All third-party trademarks are the property of their respective owners.
-
Page 5: Table Of Contents
Using the Novell Client Configuration Wizard ........ - Page 6 Installing the Required Packages ..........45 Compiling the Novell Client Virtual File System Kernel Module ......46 A.2.1...
-
Page 7: About This Guide
Chapter 4, “Managing File Security,” on page 33 Chapter 5, “Security Considerations,” on page 39 Appendix A, “Compiling the Novell Client Virtual File System Kernel Module,” on page 45 Appendix B, “The Novell Client for Linux Command Line Utilities,” on page 49 Appendix C, “Novell Client for Linux Man Pages,”... - Page 8 Novell Client 2.0 for Linux Administration Guide...
-
Page 9: Understanding The Novell Client For Linux
Linux Differs from the Novell Client for Windows 2000/XP Using the Novell Client for Linux differs in a few ways from using the Novell Client for Windows*. For users and network administrators who are familiar with the Novell Client for Windows, knowing these differences can help the transition to Linux run more smoothly. -
Page 10: Understanding The Novell Client For Linux Virtual File System
1.2 Understanding the Novell Client for Linux Virtual File System The Novell Client for Linux differs from previous Novell Clients to enable it to work on the Linux platform. In Windows, the Novell Client loads a single binary that works on multiple operating system platforms without modifications. - Page 11 For example, if you download and install a patched version of novfs.ko, and then later install an SLED 10 update to your kernel, the Novell Client Virtual File System Kernel Module patch might be overwritten. You should then reinstall the novfs.ko patch and recompile the kernel in order to ensure that the kernel module and the kernel are compiled.
- Page 12 Novell Client 2.0 for Linux Administration Guide...
-
Page 13: Configuring The Novell Client For Linux
Using Configuration Files to Preconfigure the Novell Client (page 20) 2.1 Using the Novell Client Configuration Wizard The Novell Client for Linux includes a Novell Client Configuration Wizard to simplify the process of configuring your Novell Client. 1 Launch the Novell Client Configuration Wizard using either of the following methods: Click >... -
Page 14: Configuring Login Settings
If you made changes to the Protocol Settings page or the Service Location Protocol (OpenSLP) Settings page, you must reboot the machine for those changes to take effect. Any changes you make to the Novell Client settings are written to a set of configuration (.conf) files in the /etc/opt/novell/ncl directory. -
Page 15: Configuring Map Settings
Novell Client for Linux User Guide. 2.1.2 Configuring Map Settings Use the Map Settings page in the Novell Client Configuration Wizard to specify the directory on the local workstation where symbolic links to network resources are created and to select the first letter to use when creating these links. -
Page 16: Configuring Protocol Settings
This setting is used in commands such a Map *1 or Map next. 2.1.3 Configuring Protocol Settings Use the Protocol Settings page in the Novell Client Configuration Wizard to determine the level of enhanced security support, select the providers to perform name resolution, and enable the Client to obtain configuration information from your DHCP server. -
Page 17: Configuring Tray Application Settings
2.1.4 Configuring Tray Application Settings Use the Tray Application Settings page in the Novell Client Configuration Wizard to automatically launch the Novell Client Tray Application when the desktop starts and to determine which options are available to users on the Tray Application menu. -
Page 18: Configuring File Browser Settings
Use the File Browser Settings page in the Novell Client Configuration Wizard to specify which Novell Client options are available to users when they right-click Novell file system directories or files in a file manager, and which tabs are available on the Novell File, Folder, and Volume Properties pages. -
Page 19: Configuring Openslp Settings
Wizard to specify where and how the Client requests network services. In an IP-only network, the Novell Client needs a way to resolve the eDirectory tree, context and server names to an actual IP address of an eDirectory server that can provide authentication. On a simple LAN, the client can send an IP broadcast to discover this information, but on a multisite WAN, the SLP scope and Directory Agents must be listed. -
Page 20: Using Configuration Files To Preconfigure The Novell Client
2.2 Using Configuration Files to Preconfigure the Novell Client The Novell Client for Linux allows you to apply preconfigured client settings contained in one or more configuration (.conf) files. This option works similar to the unattend file that can be used to... - Page 21 /add-on/novell-client-conf directory and adds it to the list of RPMs it installs as part of the Client. Install with the Novell Client using YaST: Add the location of the newly created novell-client-conf-version_number.platform.rpm to the list of installation sources in YaST (add a local directory in the Installation Source option and point it to the directory containing novell-client-conf- version_number.platform.rpm).
- Page 22 Novell Client 2.0 for Linux Administration Guide...
-
Page 23: Managing Login
2.0 for Linux provides a single, synchronized login to the SUSE Linux desktop and your Novell network. Users enter their name and password only once to access all the resources they are authorized to use. IMPORTANT: The integrated login feature is not available if you log in as the root user, and the integrated login feature does not work if a workstation is set up to not ask for a password in the display manager greeter. -
Page 24: Configuring Integrated Login
2 Enter your username and password, then click Advanced. 3 Specify the tree, context, and server information for the server you want to connect to. 4 Click the Startup tab, then make sure Run Novell Client Login at Session Startup is selected (it is selected by default). -
Page 25: Managing System Wide Integrated Login Settings
Login scripts are similar to batch files and are executed by Novell Login. You can use login scripts to map drives to Novell file system volumes and directories, display messages, set environment variables, and execute programs or menus. -
Page 26: Setting Up Login Restrictions
2 Log in using your username and password. You will have access only to those features you have rights to. To have full access to all Novell iManager features, you must log in as Supervisor/Administrator of the tree. 3 Make sure you are in the Roles and Tasks view by clicking on the top button bar, then select Users >... -
Page 27: Using Openslp To Simplify Login
For example, instead of remembering an IP address or DNS name for a server, users can select the server’s name from a list of available servers. SLP must be activated and set up on your Novell servers in order for the Novell Client to take advantage of it. For more information, see “SLP Services in the Network”... -
Page 28: Setting Up Slp
Enterprise Server Installation and Administration Guide (http://www.novell.com/documentation/ sles10/sles_admin/data/cha_slp.html). SLP is not set up by default on Linux workstations. The Novell Client for Linux includes a Novell Client Configuration Wizard to simplify the process of configuring your SLP and other Novell Client configuration options. -
Page 29: Troubleshooting Slp Configuration
3.4.2 Troubleshooting SLP Configuration If users cannot see a list of available trees, contexts, and servers when they use the Novell Client for Linux Login screen, use slptool, located in /usr/bin, to troubleshoot your SLP configuration. After you start slpd (located in /usr/sbin), you should be able to issue a query for SLP service... - Page 30 3 Click Stop Firewall Now, then click Next. 4 Click Accept to close the Firewall Configuration wizard. The next time you click the Novell Services button in your file browser, you should be able to scan for or access Novell services.
- Page 31 3 Click Interfaces in the left column, double-click your LAN interface, then select Internal Zone from the drop-down menu. 4 Click OK, then select Start-Up in the left panel. 5 Click Save Settings and Restart Firewall Now. 6 Click Next, then click Accept. Managing Login...
- Page 32 Novell Client 2.0 for Linux Administration Guide...
-
Page 33: Managing File Security
Administrator account can delete or rename a file that other users can only open and edit. The Novell file system keeps track of the rights that users have to files and directories on the network. When users try to access any file on the network, Novell File Services (NFS) either grants access or prohibits certain things that users can do with the file. - Page 34 Rights Concepts (http://www.novell.com/documentation/edir88/edir88/data/ fbachifb.html) in the Novell eDirectory 8.8 Administration Guide for more information). Rights can also be limited by Inherited Rights Filters and changed or revoked by lower trustee assignments. The net result of all these actions—the rights a user can employ—are called effective rights.
-
Page 35: Changing Trustee Rights
Rights and filters. 4.3 Adding a Trustee When you add a trustee to a Novell file system directory or file, you grant a user (the trustee) rights to that directory or file.You must have the Access Control right to add a trustee. -
Page 36: Removing A Trustee
6 Click OK. 4.4 Removing a Trustee When you remove a trustee of a Novell file system directory or file, you delete a user’s rights to that directory or file. You must have the Access Control right to remove a trustee. - Page 37 Michael has Read, Write, and File Scan rights to both FILEA and FILEB. To combine multiple trustees: 1 In a file manager, select all the Novell files or directories that you want to combine rights for. 2 Right-click the files or directories, then select one of the following: GNOME: Click Novell Properties.
- Page 38 Novell Client 2.0 for Linux Administration Guide...
-
Page 39: Security Considerations
Section 5.4, “New and Modified Files,” on page 41 Section 5.5, “Other Security Considerations,” on page 44 5.1 Security Features ® The following table contains a summary of the Novell Client for Linux security features: Novell Client for Linux Security Features... -
Page 40: Known Security Threats
FIPS-compliant. 5.2 Known Security Threats The following section provides a list of known security threats for the Novell Client for Linux, an indication of how difficult it would be to exploit the threat, and what the consequences would be for a customer. -
Page 41: Identification And Authentication
5.4 New and Modified Files The following sections describe the files that are added or modified during the installation of the Novell Client for Linux. Section 5.4.1, “Configuration Files,” on page 42 Section 5.4.2, “PAM Login Files,” on page 42 Section 5.4.3, “User Profile Startup Files,”... -
Page 42: Configuration Files
This file is modified only by the root user, login.conf normally with YaST using the Novell Client Configuration Wizard for the login page (click the Novell Tray icon, select System Settings, and start the Login Wizard). 5.4.2 PAM Login Files New and Modified PAM Login Files... -
Page 43: User Profile Startup Files
/opt/novell/ncl/bin/ saving settings. This file adds a new tab (called gnwlogin Startup) to the Novell Login dialog box which allows users to save their current login settings for use during the next system startup to automatically log in the user. -
Page 44: Installation Files
If root is compromised, all network access could also be compromised. For example, if a malicious entity gets root access, it might be able to steal user credentials and authenticate to the network with those credentials. Novell Client 2.0 for Linux Administration Guide... -
Page 45: A Compiling The Novell Client Virtual File System Kernel Module
See the “Novell Client 2.0 for Linux Installation Quick Start.” NOTE: If you installed the Novell Client for Linux and the installation failed, you do not need to repeat this step. 3. Compile the Novell Client Virtual File System Kernel Module. -
Page 46: Compiling The Novell Client Virtual File System Kernel Module
A.2.1 Compiling the Novell Client Virtual File System Kernel Module After a Kernel Update If you have updated the kernel on the workstation, you must compile the Novell Client Virtual File System Kernel Module so that it works with the updated kernel. -
Page 47: Compiling The Novell Client Virtual File System Kernel Module On Workstations Running A Custom Kernel
A.2.2 Compiling the Novell Client Virtual File System Kernel Module on Workstations Running a Custom Kernel If you have a custom kernel on the workstation, you must compile the Novell Client Virtual File System kernel module so that it works with the custom kernel. - Page 48 Novell Client 2.0 for Linux Administration Guide...
-
Page 49: B The Novell Client For Linux Command Line Utilities
Novell file systems, log a user in to or out of a Novell file server or eDirectory tree, map a local file system to a remote file system on a Novell file server, and display or modify a user’s trustee assignments or inherited rights filter for volumes, directories, or files. -
Page 50: Gui Utilities
You should use the ncl_man command (instead of the traditional man command) to view NCL-related man pages. To do this, enter the following in a terminal the first time you want to view a Novell Client for Linux man page: /opt/novell/ncl/bin/ncl_man This modifies the manpath to allow the Novell Client man pages to be displayed.You can then... - Page 51 You can also enter utility_name --help in a terminal window to access a help page for the utility. The Novell Client for Linux Command Line Utilities...
- Page 52 Novell Client 2.0 for Linux Administration Guide...
- Page 53 Novell Client for Linux Man Pages “gnwlogin(1)” on page 54 “login.conf(4)” on page 57 “mapdrives.conf(4)” on page 59 “ncl_control(8)” on page 61 “ncl_install(8)” on page 62 “ncl_man(1)” on page 64 “ncl_tray(1)” on page 65 “nwconnections(1)” on page 66 “nwcopy(1)” on page 67 “nwflag(1)”...
- Page 54 <name>] [-s <server>] [-t <tree>] [--] [-v][-h] Description The gnwlogin utility allows a user to log in to a Novell file server or eDirectory tree. Running the gnwlogin command launches the Novell Login dialog box. You can add variables and strings to run additional scripts and modify variables.
- Page 55 The variables are replaced in the order specified by the selecting -2, -3, -4, or -5. -2 <value>, --var2 <value> Allows an additional parameter to be entered that the login utility passes to the login script. Novell Client for Linux Man Pages...
- Page 56 Displays version information and exits. --h, --help Display usage information and exits. Authors Copyright 2007, Novell, Inc. All rights reserved. http://www.novell.com See Also nwlogin(1) To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 for Linux Administration Guide...
- Page 57 Files /etc/opt/novell/ncl/login.conf Description This file can be modified only by the root user, normally with YaST using the Novell Client Configuration Wizard for the login page (click the Novell Tray icon, select System Settings, and start the Login Wizard). Usage Each entry occupies a single line in the file.
- Page 58 Clear_Username=true Allow_Integrated_Login=false Default_Tree=mycompany Default_Context=marketing Authors Copyright 2005-2007, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 for Linux Administration Guide...
- Page 59 Name mapdrives.conf - Novell* Client* for Linux user configuration file. Files $HOME/.novell/ncl/MapDrives.conf Description Specify drive mappings to run at startup. Integrated Login is not required, but credentials must be saved or the login dialog box will appear to get the password at desktop startup.
- Page 60 Authors Copyright 2005-2007, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 for Linux Administration Guide...
- Page 61 Novell Client. If the Novell Client is running correctly, the status is returned as 0 with a message stating that the daemon is running. If the Novell Client is not running correctly, you receive a status other than 0 and a message stating the issues.
- Page 62 Displays the package information for all installed Novell Client for Linux packages. files Displays a list of all files related to the packages installed with Novell Client for Linux. verify Verifies installation of all installed Novell Client for Linux packages.
- Page 63 To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client for Linux Man Pages...
- Page 64 <Novell Client man page name> Description The ncl_man utility modifies the MANPATH to allow the Novell Client man pages to be displayed. If you enter man <Novell Client man page name>, the following error is displayed: No manual entry for <Novell Client man page name>.
- Page 65 [--waitfortray <integer>] [--author] [--] [-v] [-h] Description Ncl_tray manually loads the Novell Client for Linux tray application. This application provides GUI access to Novell Client functionality such as login, logout, mapping drives, and many other functions. It requires the XWindows system to be running, because it is a GUI application.
- Page 66 Displays the version for the package that supplies the nwconnections utility. -h, -help Displays the help strings. Authors Copyright 2005-2007, Novell, Inc. All rights reserved. http://www.novell.com See Also nwmap(1) To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 for Linux Administration Guide...
- Page 67 - Copies files and directories to and from Novell* file systems. Syntax nwcopy [-f] [-c] [-s] -t <target_path> -p <source_path> [--] [-v] [-h] Description The nwcopy utility allows you to copy files and directories to and from Novell file systems. Using nwcopy preserves Novell file system attributes. Options -f, --force Rewrites existing targets.
- Page 68 Copies all files or directories from my_vol to your_vol and rewrites the existing targets. Authors Copyright 2005-2007, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 for Linux Administration Guide...
- Page 69 Name nwflag - Displays or modifies the attributes of files and directories on Novell* file systems. Syntax nwflag {-a|-n} {-w|-e <eDir object>|<+|-> <attr modifier>} [-s] [-d|-f] [--] [-v] [-h] <URI1> {URI2} {URI3} ... Description The nwflag utility allows you to display and modify the attributes of files or directories.
- Page 70 For additional information on file system attributes, see the File Systems Management Guide for OES at http://www.novell.com/documentation/oes/stor_filesys/data/hn0r5fzo.html. In this guide, the “Understanding File System Access Control for NSS and NetWare Traditional File Systems” section provides information on flags. See http://www.novell.com/documentation/oes/ stor_filesys/data/bs3fih1.html. o=Read-only...
- Page 71 -n -w -s -f //MYSERVER/USER | grep -i “adam.cont.org” Lists all files owned by user ADAM on volume USER. Authors Copyright 2005-2007, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client for Linux Man Pages...
- Page 72 <string>] [-2 <string>] [-3 <string>] [-4 <string>] [-5 <string>] [--clearconn] [--] [-v][-h] Description The nwlogin utility allows a user to log in to a Novell file server or eDirectory tree from a terminal. When you execute the nwlogin command, you can add variables and strings to run additional scripts and modify variables.
- Page 73 -h, --help Displays usage information and exits. Examples nwlogin -s MYSERVER -u MYUSER -c MYCONTEXT -t MYTREE -p MYPASSWORD -2 MYVARIABLE L P r nwlogin -u MYUSER -p MYPASSWORD -t MYTREE -c MYCONTEXT -s MYSERVER Novell Client for Linux Man Pages...
- Page 74 Authors Copyright 2005-2007, Novell, Inc. All rights reserved. http://www.novell.com See Also nwlogout(1), nwconnections(1) To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 for Linux Administration Guide...
- Page 75 - Logs the user out of a Novell* or eDirectory* tree. Syntax nwlogout {-s <string>|-t <string>|-a} [-f] [--] [-v] [-h] Description The nwlogout utility allows a user to log out of a specific Novell file server or eDirectory tree or to log out of all trees and servers. Options Required: -s <string>, --server <string>...
- Page 76 Authors Copyright 2005-2007, Novell, Inc. All rights reserved. http://www.novell.com See Also nwlogin(1) To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 for Linux Administration Guide...
- Page 77 Name nwmap - Creates a mapping (mount) from a local file system to a remote file system on a Novell* file server. Syntax map -d drive <-s server> -v volume <-f filespec> map <<options> | <parameters> drive:=<path> | local_path:=<remote_path>>...
- Page 78 Maps the next available drive when used without specifying a drive number or letter. Authors Copyright 2005-2007, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 for Linux Administration Guide...
- Page 79 - Purges deleted files and directories from Novell* file systems. Syntax nwpurge [flags] -p <target_path> Description The nwpurgepath utility allows you to purge deleted files and directories from Novell file systems. Options -p <target_path> Specifies the source path of the files you want to purge.
- Page 80 Syntax nwrights <flags> <-r <+|->rights_list> <-o user_or_group_object><-p network_path> Description The nwrights utility allows you to display and give rights to files and directories on a Novell* server. Rights can be given directly or through inherited rights filters. Options -r <+|-><rights>...
- Page 81 -p <network path> Specifies the network path to the file. Displays the help strings. Authors Copyright 2005-2007, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client for Linux Man Pages...
- Page 82 - Restores deleted files and directories on Novell* file systems. Syntax nwsalvage <flags> -p target path Description The nwsalvage utility allows you to salvage deleted files and directories from Novell file systems. Options -p <string> Specifies the source path of the files you want to salvage.
- Page 83 Name nwsend - Sends messages to users or groups who are currently connected to a Novell* server or sends a message to the server console. Syntax nwsend <flags> -s <target_server> -o <fully_distinguished_user_name> -m <message_text> Description The nwsend utility allows you to send messages to users or groups who are currently connected to a Novell server or to send a message to the server console.
- Page 84 Files $HOME/.novell/ncl/StartupLogin.conf Description All the current fields in the Novell Login dialog box (except the password) are stored in this configuration file. This file uses the same format as the login.conf file. Usage Each entry occupies a single line in the file. Lines that are blank, or that start with a pound sign (#), are ignored.
- Page 85 These variables are replaced in order by the parameters the user entered when logging in. AllowLoginGUI=[true or false] The default is true. If eDirectory authentication fails, display Novell Login dialog during session startup (after initial login). Examples A sample StartupLogin.conf file is given below:...
- Page 86 Variable3 = Variable4 = Variable5 = Authors Copyright 2007, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 for Linux Administration Guide...
- Page 87 StartupMaps.conf(4) Name StartupMaps.conf - Novell* Client* for Linux configuration file. Files $HOME/.novell/ncl/StartupMaps.conf Description Specify drive mappings to run at startup. Integrated Login is not required, but credentials must be saved or the login dialog box will appear to get the password at desktop startup.
- Page 88 [/home/mycompany/Desktop/pub] UserName = admin.novell Tree = MYCOMPANY_TREE Context = Mapped = \\mycompany\SYS:PUBLIC\ Authors Copyright 2007, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 for Linux Administration Guide...