Large scale X
Russell Shaw
If i have 1000 user accounts on one accounts server and dozens of X apps on
another apps server, how can a user start an X app when they don't have an
account on the apps server? (no user accounts at all on apps server)
I'm thinking of traditional X where the users use dumb X terminals, and
xdm gives the log-in screen.
Do i need to use nfs, or is there some better way?
Tony
> Hi,
> If i have 1000 user accounts on one accounts server and dozens of X apps
> on another apps server, how can a user start an X app when they don't have
> an account on the apps server? (no user accounts at all on apps server)
(cross-posting removed)
I'm going to break with X tradition, and use the following broad
definitions:
1) The server is the machine which has the application we want to run.
2) The client is the desktop PC/X terminal that wants to connect (1) above.
I know that X wants to call the desktop PC the server, and the machine on
which the application actually runs the client, but it causes more confusion
than it's worth.
My experience with X has been with Linux on a small scale (about 10 users
per box), so I'm not an authority. However, I don't think there is any way
to run an X application from a server without having an account.
> I'm thinking of traditional X where the users use dumb X terminals, and
> xdm gives the log-in screen.
The client can use XDMCP to get a list of all available servers on the
network, and select a server to connect to. However, a normal system login
is still required for a connection.
> Do i need to use nfs, or is there some better way?
This depends on your situation. For public access terminals where I work,
we setup a single generic account that the general public uses to log into
the server. For one of my personal clients, I also have a single account
they use with remote X connections. This is a small company where security
isn't a big issue.
For cases where security does matter, then yes, you'll need to have accounts
on the application server(s) for anyone you want to be able to log in to the
machine.
If I understand your question, NFS is neither here nor there.
Robert Riches
>
> I know that X wants to call the desktop PC the server, and the machine on
> which the application actually runs the client, but it causes more confusion
> than it's worth.
Until you understand that that notation is correct from the
intended perspective, that the X server (which can be diskless)
is providing display services and the application is requesting
display services as a client would do.
--
Robert Riches
spamt...@verizon.net
(Yes, that is one of my email addresses.)
Russell Shaw
Hi,
I figured out a way but haven't tried it. The user could log in using the xdm
log-in screen on an X terminal. xdm could be running on the X applications box.
The user can be authenticated by xdm with no user accounts on the apps box, if
pam and LDAP are installed for single-sign-on across the network. Then LDAP
nfs mounts the user account from the accounts box on to the apps box
temporarily for the length of the session.
Michael Tosch
> Hi,
> If i have 1000 user accounts on one accounts server and dozens of X apps on
> another apps server, how can a user start an X app when they don't have an
> account on the apps server? (no user accounts at all on apps server)
X-apps run in the user's context.
So all users must be defined where the X-apps run.
> I'm thinking of traditional X where the users use dumb X terminals, and
> xdm gives the log-in screen.
The X-apps run where the xdm runs, and all users must be known there.
> Do i need to use nfs, or is there some better way?
If the "another apps server" holds the app files, then yes, make it
an NFS server, and use the NFS client (i.e. nfs-mount) on your
"accounts server".
--
echo imhcea\.lophc.tcs.hmo |
sed 's2\(....\)\(.\{5\}\)2\2\122;s1\(.\)\(.\)1\2\11g;1s;\.;::;2'