1. Manuals
  2. Brands
  3. Novell Manuals
  4. Software
  5. OPEN ENTERPRISE SERVER 2.0 SP2 - DOMAIN SERVICE FOR...
  6. Administration manual

Novell CLIENT FOR LINUX 2.0 SP2 - ADMINISTRATION Administration Manual

Hide thumbs Also See for CLIENT FOR LINUX 2.0 SP2 - ADMINISTRATION:
Table of Contents

Advertisement

Quick Links

Download this manual See also: User Manual, Manual
AUTHORIZED DOCUMENTATION
Administration Guide
Novell
®
Client
for Linux
TM
2.0 SP2
September 2009
www.novell.com
Novell Client 2.0 SP2 for Linux Administration Guide

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the CLIENT FOR LINUX 2.0 SP2 - ADMINISTRATION and is the answer not in the manual?

Questions and answers

Related Manuals for Novell CLIENT FOR LINUX 2.0 SP2 - ADMINISTRATION

Summary of Contents for Novell CLIENT FOR LINUX 2.0 SP2 - ADMINISTRATION

  • Page 1 AUTHORIZED DOCUMENTATION Administration Guide Novell ® Client for Linux 2.0 SP2 September 2009 www.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...
  • Page 2 Further, Novell, Inc., reserves the right to make changes to any and all parts of Novell software, at any time, without any obligation to notify any person or entity of such changes.
  • Page 3 Novell Trademarks For Novell trademarks, see the Novell Trademark and Service Mark list (http://www.novell.com/company/legal/ trademarks/tmlist.html). Third-Party Materials All third-party trademarks are the property of their respective owners.
  • Page 4 Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 5: Table Of Contents

    Using the Novell Client Configuration Wizard ........
  • Page 6 Using the Novell Client for Linux Man Pages ....... . .

  • Page 7: About This Guide

    Chapter 4, “Managing File Security,” on page 31 Chapter 5, “Security Considerations,” on page 37 Appendix A, “The Novell Client for Linux Command Line Utilities,” on page 43 Appendix B, “Novell Client for Linux Man Pages,” on page 47 Audience This guide is intended for network administrators.
  • Page 8 Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 9: Understanding The Novell Client For Linux

    Linux Differs from the Novell Client for Windows 2000/XP Using the Novell Client for Linux differs in a few ways from using the Novell Client for Windows*. For users and network administrators who are familiar with the Novell Client for Windows, knowing these differences can help the transition to Linux run more smoothly.

  • Page 10: Understanding The Novell Client For Linux Virtual File System

    1.2 Understanding the Novell Client for Linux Virtual File System The Novell Client for Linux differs from previous Novell Clients to enable it to work on the Linux platform. In Windows, the Novell Client loads a single binary that works on multiple operating system platforms without modifications.

  • Page 11: Configuring The Novell Client For Linux

    Groups,” on page 20 2.1 Using the Novell Client Configuration Wizard The Novell Client for Linux includes a Novell Client Configuration Wizard to simplify the process of configuring your Novell Client. 1 Launch the Novell Client Configuration Wizard by using either of the following methods: Click >...

  • Page 12: Configuring Login Settings

    If you made changes to the Protocol Settings page or the Service Location Protocol (OpenSLP) Settings page, you must reboot the machine for those changes to take effect. Any changes you make to the Novell Client settings are written to a set of configuration ( .conf files in the directory.

  • Page 13: Configuring Map Settings

    Guide. 2.1.2 Configuring Map Settings Use the Map Settings page in the Novell Client Configuration Wizard to specify the directory on the local workstation where symbolic links to network resources are created and to select the first letter to use when creating these links.

  • Page 14: Configuring Protocol Settings

    Map next 2.1.3 Configuring Protocol Settings Use the Protocol Settings page in the Novell Client Configuration Wizard to determine the level of enhanced security support, select the providers to perform name resolution, and enable the Client to obtain configuration information from your DHCP server.
  • Page 15 Dynamic Host Configuration Protocol (DHCP): If a DHCP server is set up on your network, the DHCP server can inform the Novell Client of network-specific configuration information. This information is made available when a user clicks the Tree, Context, or Server buttons on the eDirectory tab of the Novell Login dialog box.

  • Page 16: Configuring Tray Application Settings

    Use the File Browser Settings page in the Novell Client Configuration Wizard to specify which Novell Client options are available to users when they right-click Novell file system directories or files in a file manager, and which tabs are available on the Novell File, Folder, and Volume Properties pages.
  • Page 17 Novell file system directory or file in a file manager and then click Novell Properties). Novell Rights: Enables or disables the Novell Rights tab on the File and Folder Properties pages (available when users right-click a Novell file system directory or file in a file manager and then click Novell Properties).

  • Page 18: Configuring Openslp Settings

    Wizard to specify where and how the Client requests network services. In an IP-only network, the Novell Client needs a way to resolve the eDirectory tree, context and server names to an actual IP address of an eDirectory server that can provide authentication. On a simple LAN, the client can send an IP broadcast to discover this information, but on a multisite WAN, the SLP scope and Directory Agents must be listed.

  • Page 19: Using Configuration Files To Preconfigure The Novell Client

    2.2 Using Configuration Files to Preconfigure the Novell Client The Novell Client for Linux allows you to apply preconfigured client settings contained in one or more configuration ( ) files. This option works similarly to the unattend file that can be used to .conf...

  • Page 20: Server Side Configuration For Sending Messages From Client To Users And Groups

    RPMs it installs as part of on/novell-client-conf the Client. Install with the Novell Client using YaST: Add the location of the newly created to the list of installation novell-client-conf-version_number.platform.rpm sources in YaST (add a local directory in the Installation Source option and point it to the directory containing ).

  • Page 21: Managing Login

    2.0 for Linux provides a single, synchronized login to the SUSE Linux desktop and your Novell network. Users enter a name and password only once to access all the resources they are authorized to use. IMPORTANT: The integrated login feature is not available if you log in as the...

  • Page 22: Installing And Enabling Casa

    3 Click Configure CASA, then click OK. 4 Click Finish to close the CASA Configuration Wizard. 3.1.2 Configuring Integrated Login 1 Use one of the following methods to open the Novell Login dialog box: Click > Novell Login. GNOME: Click Computer > More Applications > Novell Login.

  • Page 23: Managing System-Wide Integrated Login Settings

    2 Enter your username and password, then click Advanced. 3 Specify the tree, context, and server information for the server you want to connect to. 4 Click the Startup tab, then make sure Run Novell Client Login at Session Startup is selected (it is selected by default).

  • Page 24: Setting Up Login Scripts

    Login scripts are similar to batch files and are executed by Novell Login. You can use login scripts to map drives to Novell file system volumes and directories, display messages, set environment variables, and execute programs or menus.
  • Page 25 2 Log in using your username and password. You have access only to those features you have rights to. To have full access to all Novell iManager features, you must log in as Supervisor/Administrator of the tree. 3 Make sure you are in the Roles and Tasks view by clicking on the top button bar, then select Users >...

  • Page 26: Using Openslp To Simplify Login

    For example, instead of remembering an IP address or DNS name for a server, users can select the server’s name from a list of available servers. SLP must be activated and set up on your Novell servers in order for the Novell Client to take advantage of it. For more information, see “SLP Services in the Network”...

  • Page 27: Troubleshooting Slp Configuration

    4 Complete the Novell Client Configuration Wizard. 5 Restart the workstation. 3.4.2 Troubleshooting SLP Configuration If users cannot see a list of available trees, contexts, and servers when they use the Novell Client for Linux Login screen, use , located in , to troubleshoot your SLP configuration.
  • Page 28 3 Click Stop Firewall Now, then click Next. 4 Click Accept to close the Firewall Configuration Wizard. The next time you click the Novell Services button in your file browser, you should be able to scan for or access Novell services.

  • Page 29: Single Sign-On For Lum Users

    1 Configure Linux User Management (LUM) for a user and verify that the LUM user can log in successfully. 2 Install Novell Client. 3 Login as root 4 In YaST, click Network Services > Novell Client to launch the Novell Client Configuration Wizard. 5 Select the Login option and click Start Wizard. Managing Login...
  • Page 30 NOTE: Consider the following while configuring single-sign on for LUM users: The Default Tree field in the Novell Client Configuration Wizard is a mandatory field. You must specify a value in this field for the Single Sign-On feature to work.

  • Page 31: Managing File Security

    Administrator account can delete or rename a file that other users can only open and edit. The Novell file system keeps track of the rights that users have to files and directories on the network. When users try to access any file on the network, Novell File Services (NFS) either grants access or prohibits certain things that users can do with the file.
  • Page 32 Rights Concepts (http://www.novell.com/documentation/edir88/edir88/data/ fbachifb.html) in the Novell eDirectory 8.8 Administration Guide for more information). Rights can also be limited by Inherited Rights Filters and changed or revoked by lower trustee assignments. The net result of all these actions—the rights a user can employ—are called effective rights.

  • Page 33: Changing Trustee Rights

    Rights and filters. 4.3 Adding a Trustee When you add a trustee to a Novell file system directory or file, you grant a user (the trustee) rights to that directory or file.You must have the Access Control right to add a trustee.

  • Page 34: Removing A Trustee

    6 Click OK. 4.4 Removing a Trustee When you remove a trustee of a Novell file system directory or file, you delete a user’s rights to that directory or file. You must have the Access Control right to remove a trustee.
  • Page 35 Michael has Read, Write, and File Scan rights to both FILEA and FILEB. To combine multiple trustees: 1 In a file manager, select all the Novell files or directories that you want to combine rights for. 2 Right-click the files or directories, then select one of the following: GNOME: Click Novell Properties.
  • Page 36 Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 37: Security Considerations

    Section 5.4, “New and Modified Files,” on page 39 Section 5.5, “Other Security Considerations,” on page 42 5.1 Security Features ® The following table contains a summary of the Novell Client for Linux security features: Novell Client for Linux Security Features...

  • Page 38: Known Security Threats

    FIPS-compliant. 5.2 Known Security Threats The following section provides a list of known security threats for the Novell Client for Linux, an indication of how difficult it would be to exploit the threat, and what the consequences would be for a customer.

  • Page 39: Identification And Authentication

    5.4 New and Modified Files The following sections describe the files that are added or modified during the installation of the Novell Client for Linux. Section 5.4.1, “Configuration Files,” on page 40 Section 5.4.2, “PAM Login Files,” on page 40 Section 5.4.3, “User Profile Startup Files,”...

  • Page 40: Configuration Files

    YaST through the Novell Client Configuration Wizard for the login page (click the Novell Tray icon, select System Settings, and start the Login wizard). 5.4.2 PAM Login Files New and Modified PAM Login Files Table 5-4...

  • Page 41: User Profile Startup Files

    GUI for authentication, processing scripts, and gnwlogin saving settings. This file adds a new tab (called Startup) to the Novell Login dialog box, which allows users to save their current login settings for use during the next system startup to automatically log in the user.

  • Page 42: Installation Files

    For example, if a malicious root entity gets access, it might be able to steal user credentials and authenticate to the network root with those credentials. Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 43: A The Novell Client For Linux Command Line Utilities

    Novell file systems, log a user in to or out of a Novell file server or eDirectory tree, map a local file system to a remote file system on a Novell file server, and display or modify a user’s trustee assignments or inherited rights filter for volumes, directories, or files.

  • Page 44: Gui Utilities

    (instead of the traditional command) to view NCL-related man pages. To do this, enter the following in a terminal the first time you want to view a Novell Client for Linux man page: /opt/novell/ncl/bin/ncl_man This modifies the MANPATH to allow the Novell Client man pages to be displayed.You can then...
  • Page 45 You can also enter in a terminal window to access a help page for the utility_name --help utility. For more information, see Appendix B, “Novell Client for Linux Man Pages,” on page The Novell Client for Linux Command Line Utilities...
  • Page 46 Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 47: B Novell Client For Linux Man Pages

    Novell Client for Linux Man Pages “gnwlogin(1)” on page 48 “login.conf(4)” on page 51 “mapdrives.conf(4)” on page 53 “ncl_control(8)” on page 55 “ncl_install(8)” on page 56 “ncl_man(1)” on page 58 “ncl_tray(1)” on page 59 “nwconnections(1)” on page 60 “nwcopy(1)” on page 61 “nwflag(1)”...

  • Page 48: Gnwlogin

    -] [-v][-h] Description The gnwlogin utility allows a user to log in to a Novell file server or eDirectory tree. Running the gnwlogin command launches the Novell Login dialog box. You can add variables and strings to run additional scripts and modify variables.
  • Page 49 The variables are replaced in the order specified, by selecting -2, -3, -4, or -5. -2 <value>, --var2 <value> Allows an additional parameter to be entered that the login utility passes to the login script. Novell Client for Linux Man Pages...
  • Page 50 Displays version information and exits. --h, --help Display usage information and exits. Authors Copyright 2009, Novell, Inc. All rights reserved. http://www.novell.com See Also nwlogin(1) To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 51: Login.conf

    This file can be modified only by the user, normally with YaST through the Novell Client root Configuration Wizard for the login page (click the Novell Tray icon, select System Settings, and start the Login Wizard). Usage Each entry occupies a single line in the file. Lines that are blank, or that start with a pound sign (#), are ignored.
  • Page 52 Clear_Username=true Allow_Integrated_Login=false Default_Tree=mycompany Default_Context=marketing Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 53: Mapdrives.conf

    Name - Novell Client for Linux user configuration file. mapdrives.conf Files $HOME/.novell/ncl/MapDrives.conf Description Allows you to specify drive mappings to run at startup. Integrated Login is not required, but credentials must be saved or the login dialog box appears to get the password at desktop startup.
  • Page 54 Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 55: Ncl_Control

    Novell Client. If the Novell Client is running correctly, the status is returned as 0 with a message stating that the daemon is running. If the Novell Client is not running correctly, you receive a status other than 0 and a message stating the issues.

  • Page 56: Ncl_Install

    [ install | upgrade | uninstall | verify | information | files ] [ force ] Description Allows you to install, upgrade, and uninstall the Novell Client for Linux packages. You can also run it to verify the installation of the files. You must be logged in as to run this utility.
  • Page 57 Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client for Linux Man Pages...

  • Page 58: Ncl_Man

    Syntax ncl_man <Novell Client man page name> Description The ncl_man utility modifies the MANPATH to allow the Novell Client man pages to be displayed. If you enter , the following error is displayed: man <Novell Client man page name>...

  • Page 59: Ncl_Tray

    [--waitfortray <integer>] [--author] [--] [-v] [-h] Description Allows you to manually load the Novell Client for Linux tray application. This application provides GUI access to Novell Client functionality such as login, logout, mapping drives, and many other functions. It requires the X Windows System to be running, because it is a GUI application.

  • Page 60: Nwconnections

    Displays the version for the package that supplies the nwconnections utility. -h, -help Displays the help strings. Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com See Also nwmap(1) To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 61: Nwcopy

    Syntax nwcopy [-f] [-c] [-s] -t <target_path> -p <source_path> [--] [-v] [-h] Description The nwcopy utility allows you to copy files and directories to and from Novell file systems. Using nwcopy preserves Novell file system attributes. Options -f, --force Rewrites existing targets.
  • Page 62 Copies all files or directories from and rewrites the existing targets. my_vol your_vol Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 63: Nwflag

    Name - Displays or modifies the attributes of files and directories on Novell file systems. nwflag Syntax nwflag {-a|-n} {-w|-e <eDir object>|<+|-> <attr modifier>} [-s] [-d|-f] [--] [-v] [-h] <URI1> {URI2} {URI3} ... Description The nwflag utility allows you to display and modify the attributes of files or directories.
  • Page 64 For additional information on file system attributes, see the File Systems Management Guide for OES at http://www.novell.com/documentation/oes/stor_filesys/data/hn0r5fzo.html. In this guide, the “Understanding File System Access Control for NSS and NetWare Traditional File Systems” section provides information on flags. See http://www.novell.com/documentation/oes/ stor_filesys/data/bs3fih1.html. o=Read-only...
  • Page 65 -n -w -s -f //MYSERVER/USER | grep -i “adam.cont.org” Lists all files owned by user ADAM on volume USER. Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client for Linux Man Pages...

  • Page 66: Nwlogin

    [-r] [-L <string>] [-P <string>] [-2 <string>] [-3 <string>] [-4 <string>] [-5 <string>] [--clearconn] [--] [-v][-h] Description The nwlogin utility allows a user to log in to a Novell file server or eDirectory tree from a terminal. When you execute the command, you can add variables and strings to run additional nwlogin scripts and modify variables.
  • Page 67 -h, --help Displays usage information and exits. Examples nwlogin -s MYSERVER -u MYUSER -c MYCONTEXT -t MYTREE -p MYPASSWORD -2 MYVARIABLE L P r nwlogin -u MYUSER -p MYPASSWORD -t MYTREE -c MYCONTEXT -s MYSERVER Novell Client for Linux Man Pages...
  • Page 68 Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com See Also nwlogout(1), nwconnections(1) To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 69: Nwlogout

    Syntax nwlogout {-s <string>|-t <string>|-a} [-f] [--] [-v] [-h] Description The nwlogout utility allows a user to log out of a specific Novell file server or eDirectory tree or to log out of all trees and servers. Options Required: -s <string>, --server <string>...
  • Page 70 Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com See Also nwlogin(1) To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 71: Nwmap

    Name - Creates a mapping (mount) from a local file system to a remote file system on a Novell file nwmap server. Syntax map -d drive <-s server> -v volume <-f filespec> map <<options> | <parameters> drive:=<path> | local_path:=<remote_path>>...
  • Page 72 Maps the next available drive when used without specifying a drive number or letter. Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 73: Nwpurge

    {-l|-a|-r|-f <string> ... } [--] [-v] [-h] <FileSystem objects to perform operations with> ... Description The nwpurge utility enables you to purge deleted files and directories from Novell file system. Options -l, --list Displays the objects to be purged.
  • Page 74 See Also nwsalvage(1) To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 75: Nwrights

    >rights_list |-w|-e} [-o <string>] [-s] [--] [-v] [-h] <FileSystem objects to perform operation with> ... Description The nwrights utility allows you to display and give rights to files and directories on a Novell server. Rights can be given directly or through inherited rights filters. Options View the trustees, inheritance filter, or effective rights.
  • Page 76 -t -m +r -o "abc.xyz" dir1 Assigns read access to the trustee abc.xyz. Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 77: Nwsalvage

    ... Description The nwsalvage utility enables you to salvage deleted files and directories from Novell file system. In a hierarchical directory structure, you must use this utility to salvage files or directories at each level of the directory structure before proceeding to the next level.
  • Page 78 -f file1 /home/localuser1/VKNSSVOl1/Salvage1/Salvage12/ Salvages only the specified objects. Authors Copyright 2005-2009, Novell, Inc. All rights reserved. http://www.novell.com See Also nwpurge(1) To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 79: Nwsend

    Name - Sends messages to users or groups who are currently connected to a Novell server or sends nwsend a message to the server console. Syntax nwsend <flags> -s <target_server> -o <fully_distinguished_user_name> -m <message_text> Description The nwsend utility allows you to send messages to users or groups who are currently connected to a Novell server, or allows you to send a message to the server console.

  • Page 80: Startuplogin.conf

    - Novell Client for Linux user configuration file. StartupLogin.conf Files $HOME/.novell/ncl/StartupLogin.conf Description All the current fields in the Novell Login dialog box (except the password) are stored in this configuration file. This file uses the same format as the file. login.conf Usage Each entry occupies a single line in the file.
  • Page 81 These variables are replaced in order by the parameters the user entered when logging in. AllowLoginGUI=[true or false] The default is true. If eDirectory authentication fails, display Novell Login dialog during session startup (after initial login). Examples...
  • Page 82 Variable3 = Variable4 = Variable5 = Authors Copyright 2009, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 83: Startupmaps.conf

    StartupMaps.conf(4) Name - Novell Client for Linux configuration file. StartupMaps.conf Files $HOME/.novell/ncl/StartupMaps.conf Description Specify drive mappings to run at startup. Integrated Login is not required, but credentials must be saved or the login dialog box appears to get the password at desktop startup.
  • Page 84 [/home/mycompany/Desktop/pub] UserName = admin.novell Tree = MYCOMPANY_TREE Context = Mapped = \\mycompany\SYS:PUBLIC\ Authors Copyright 2009, Novell, Inc. All rights reserved. http://www.novell.com To report problems with this software or its documentation, visit http://bugzilla.novell.com Novell Client 2.0 SP2 for Linux Administration Guide...

  • Page 85: C Documentation Updates

    SUSE Linux Enterprise Desktop 10 and SUSE Linux Enterprise Desktop 10 SP2 to SUSE Linux Enterprise 11. Novell Client 2.0 for Linux SP1 to Novell Client 2.0 SP2 for Linux. Removed text regarding the dependency of virtual file system module novfs.ko on the kernel version and compilation for a new kernel.
  • Page 86 Novell Client 2.0 SP2 for Linux Administration Guide...

Table of Contents