Roaming user profiles in Linux

linux user-management profile migration

Solution 1:

There's actually not one solution to this, but a kazillion.

The single sign-on that Active Directory does, is nothing more than Kerberos and delegation of credentials. We can do that too, using a Linux KDC or your old domain controllers. No problem: there's your domain users.

Roaming profiles exist (iirc, my Windows days are far behind me) in different forms: you can have the user data on a network share, or you can have (a part of) the user data on the local filesystem and some more data of the same user on a network share.

Both are possible, though the first is easier: with a something like NFS, or even GFS (which has some brilliant features for using it as a filesystem for shared home-directories), having home-directories - and thus user profiles - on the network is easy. Just make sure to use NFSv4 (or Kerberos enabled NFSv3, if you cannot pull off NFSv4) to provide some security and integrity of your data.

Having parts of the user data on a share and parts of it locally either means mounting, for example, /home/user/Documents over NFS again or using one filesystem to 'lay over' another one. I'm not sure how robust that is though, and I'd recommend you go for option 1: everything on a network share.

I'd also recommend hiring someone how know his Linux, btw. It's going to be tough to do this and be successful - both financially and technically - if you are doing this all for the first time. Good luck.

Solution 2:

You may want to look into the 389 Directory Server Project (Formerly FedoraDS) which is an LDAP server. http://directory.fedoraproject.org

It would take the place of Active directory (it is completely configurable to do tls authentication and provides a new GUI for an admin).

Then you set up NFS shares on a server (as wzzrd mentioned), set your automount configuration files on your local machines, and you should be all set. What you would get is a single login (handled via LDAP/389DS) with remotely mounted directories, as long as one of them is the users home directory (auto.home) then a user would get their home directory mounted on login which is exactly what you want.

Related

Ubuntu Software font too bad in Ubuntu 21.10 [duplicate]
What's the difference between hardstatus and caption in GNU Screen?
Tomcat 6.0 service does not start: java/lang/NoClassDefFoundError
Ping "replies" from same computer with 'Destination host unreachable' (no route to other computer)
I can't remove packages that have unmet dependencies
Override LDAP shell
How can I install windows 7 over ubuntu?
Does Mac OS X throttle the RATE of socket creation?
What exactly is the Linux kernel and does Ubuntu use a modified Linux kernel?
Setting up a local stratum 2 NTP server
AD: What is the difference between local, global and universal groups?
What determines whether the FQDN is interpreted as IPv6 or IPv4?