LTSP / KIWI / OpenSUSE 11 / Novell eDirectory

Below is the checklist I compiled for our new OpenSUSE 11 KIWI-LTSP server, which pushes out images for ~25 clients. This list isn't totally complete, and somewhat customized for our company. However, it should get most people where they need to be if they're using OpenSUSE with Novell servers.

Updated -- Added info about the NWsetdrivebase2 error here

I'll add our custom pam_scripts if demand warrants it. Let me know if you're having trouble finding any of the packages to install, and need a copy.

* install opensuse 11 DVD
-- boot partition /dev/sda1 - 100M
-- root /dev/sda5 - 70G
-- var /dev/sda6 - 10G
-- swap /dev/sda7 2G
* Install gnome, development packages, KDE3 libs

Checklist:
kiwi-ltsp
* one-click install for SuSE 11
* copy our kiwi-ltsp-backup to /srv
* make sure nbd xinetd is not running (disabled = yes)
* after kiwi one-click setup is done, change the nbd device pointer to the right image
* set uid lbmount +s
* chkconfig nbd-server on
* copy over rpms required for nvidia graphics

Novell Client / Pam script
* make sure kdelibs3 and gtk are installed
* download / mount the NovellSUSE10.2 iso (not SLED10SP1)
* copy the contents to /opt/ncldisk
* edit ncl_install to get rid of novfs (but not novfsd)
* link libbfd to proper library in /usr/lib/libbfd-?
* rpm --nodeps novell-xtier-base
* rpm --nodeps novell-novfsd
*edit /etc/init.d/novfsd and eliminate mk_novfs and the cd command before it
* ncl_install
* rpm --nodeps novell-client
* yast2 --> network services --> novell client
Install PAM
* download novell-NLDAPbase and NLDAPsdk
* rpm -Uvh novell-NLDAP*
* rpm -Uvh novell-lum-2.2.0.14-3.7.i586.rpm
* rpm -Uvh yast2-linux-user-mgmt-2.13.1-0.8.noarch.rpm
* download newest pam_script and compile for system
* unpack the kioskserv /etc/pam.d scripts
* edit /etc/nssswitch for passwd and group should say: compat nam
* unpack the kioskserv /etc/security scripts
* run namconfig add -a cn=MYDOMAIN,o=NOVELL,o=com -p PASSWORD -r cn=MYDOMAIN,o=NOVELL,o=com -w ou=UNIXSYSTEMS,cn=MYDOMAIN,o=NOVELL,o=com -S SERVERIP:389 -l 636
* namconfig -k
* /etc/init.d/nscd stop
* chkconfig nscd off
* /etc/init.d/namcd restart
restart server
when restarted, test by typing: 'id (NDS USER)' and getent password (NDS USER)
---below we link our /home directory to our nfs server---
note: as of this checklist, we cannot figure out a way for user's home directories to be mounted as NSS shares from eDirectory without any root directory first. That and we've had bugs where novell login will fail. So our other option is to create a home directory on our file server for thin-clients, then link their documents and a public directory to their nss shares through the login script.
To do this, perform the following:
add the /home directory to fstab
SERVERIP:/home /home nfs defaults 1 2
mount -t nfs SERVERIP:/home /home
check home nss: cd /home && ls -al --> should output usernames not uid/gids
copy over /etc/hosts file