Finally implemented SSL for CalypsoAdmin. Authentication was being handled by GSSAPI, so no passwords were being sent in the clear, but it’s nice have all of the LDAP data no longer in the clear.
The initial plan was to use TLS. TLS works fine under LdapContext, but that broke GSSAPI, which works fine under DirContext. For the time being, SSL seems to work fine with DirContext, so I’m putting it to rest until another day.
The CalypsoClient for Windows is complete. The Windows client will add the computer to LDAP, create the kerberos host/ principal, create a keytab for the princiapl, copy the kaytab over, and join the computer to the Samba domain. ::phew::
Next up: CalypsoControl, and putting that host keytab to good use.
The custom ldap attributes and objectClasses have been created and are loading nicely into ldap. Now it’s time to get some code down for Calypso Control. With a little luck, we could have something very nice to show by the end of summer.
Having received our OID from IANA, we are now ready start implementing custom object classes and attributes in LDAP. This will pave the way for computer management, email management, and Calypso Control. As of now: Users, Groups, and DNS are up and running and manageable in CalypsoAdmin. This could be an exciting summer!
Addition, removal, and editing of host entries is now done in CalypsoAdmin. Just need to implement domain addition/removal, which will hopefully just work nicely with the existing interface. I can turn JTree nodes into LDAP DN’s in my sleep now.
All Lucid servers and clients have been upgraded to Lucid Beta 1, and they kept right on chugging. What great news for Wednesday morning.
Calypso Installer: 0.3.0
DHCP Installer: 0.1.0
And both are happily working side-by-side in Ubuntu 10.04. Who could ask for more?
It turns out that “valid users = …” in smb.conf breaks kerberos logins to Samba. Otherwise it was returning “tree connect failed: NT_STATUS_ACCESS_DENIED”, even though it worked fine with NTLM authentication. Wasn’t falling asleep tonite until I had this one figured out.
Having worked out most of the bugs in migrating the Calypso installer to Ubuntu 9.10, I’m moving right along and bringing the test environment to Ubuntu 10.04 LTS. While alpha, it seems incredibly stable, and I feel much better target an LTS release. Also, most of the bug fixes being done in 10.04 apply directly to 9.10 installs.
The Calypso Installer works with Ubuntu Server 9.10 and reaches version 0.2.0!
Better still, it’s using cn=config instead of slapd.conf and is officially welcomed into the 21st century.