Setup an LDAP user home directory on a remote NFS server

Setup an LDAP user home directory on a remote NFS server, where the server is found outside of the system, such as a remote NFS server that is integrated with an LDAP server. If you are using a remote NFS server, then Platform Cluster Manager Community Edition must have access to the LDAP user home directory on the remote NFS server.

About this task

On a remote NFS server, where the server is found outside of the system, such as a remote NFS server that is integrated with an LDAP server, Platform Cluster Manager Community Edition must have access to the LDAP user home directory. To access LDAP user home directories that are stored on a remote NFS server, ensure that the LDAP user home directory is set up correctly throughout the system and accessible by compute nodes. This can be done by storing your automount configuration in a central LDAP directory, and configure the compute nodes to point to that directory.

An LDAP user home directory is typically mounted to /home. This mount point is that same mount point that is automatically used by the Platform Cluster Manager Community Edition management node and exported to the compute nodes in the system. To use LDAP user authentication, the LDAP user home directory must be mounted to a different directory. It cannot be mounted to /home.

To change the LDAP user home directory, complete the following steps:

Procedure

  1. Ensure that your LDAP users home directory on the LDAP server is not mounted to /home. For example, change the LDAP user home directory to /rhome/username.
  2. Configure auto mount on management node to enable access to the LDAP servers.
    1. Install autofs.
      For RHEL:
      # install autofs with yum/zypper
yum -y install autofs
      For SLES:
      # install autofs with yum/zypper
zypper install -y --auto-agree-with-licenses  autofs
    2. Update autofs configuration files. In this example, replace $NFSURL with the NFS server path of the NFS sever which stores the LDAP user home directory, and replace $MOUNTOPTS with any mount options. 
      # update autofs configuration files
echo "/rhome /etc/auto.pcm --timeout=10000" >> /etc/auto.master’

echo "* $MOUNTOPTS $NFSURL/&" > /etc/auto.pcm
    3. Restart the autofs service 
      /etc/init.d/autofs restart
  3. Configure auto mount for computes nodes in a cluster. For each existing cluster and any new clusters, create a post-provision script template that uses automount to mount the LDAP directories onto the servers across the cluster. A sample (LDAP Client AutoFS setup sample script) script template can be found in the Cluster Template Designer. To add a post-provision script template, complete the following steps:
    1. Create a new, or modify an existing cluster template. This opens the Cluster Template Designer.
    2. From the My Drafts > Script Template menu, click the LDAP Client AutoFS setup sample script template and drag it to the post-provision layer in a tier.
    3. In the script template, specify the remote server NFS path ($NFSURL) and mount options ($MOUNTOPTS). Then save your changes.

      The LDAP Client AutoFS setup sample script creates a log file (scriptlayer_ldap_autofs.log) on cluster creation for informational and debugging purposes.

  4. Configure auto mount for compute nodes that are not in a cluster. For example:
    1. Install autofs on compute nodes.
      For RHEL:
      xdsh compute000 'yum -y install autofs'
      For SLES:
      xdsh compute000 'zypper install -y --auto-agree-with-licenses  autofs'

    2. Update and restart the autofs service on compute nodes. 
      xdsh compute000 'echo "/rhome   /etc/auto.pcm --timeout=10000" > /etc/auto.master'
xdsh compute000 'echo "* $MOUNTOPTS $NFSURL/&" > /etc/auto.pcm'
xdsh compute000  '/etc/init.d/autofs restart'