The libnss_ato module is a set of C library extensions which allows to map every nss request for unknown user to a single predefined user.
Suppose your system has only one account (apart from root and system users) named user_test:
]$ id user_test
]$ uid=1000(user_test) gid=1000 groups=1000If you add libnss-ato to the chain of nss modules (in /etc/nsswitch.conf) you get something like:
]$ id randomname
]$ uid=1000(user_test) gid=1000 groups=1000for every query of a random username not present in /etc/passwd.
This module can be used for pubblic workstations where you only need to verify username / password from a pam module (for example pam-krb5 for Active Directory users) and there is no need to give the user his own uid, gid or homedir.
From source just make and make install.
The only configuration file is /etc/libnss-ato.conf which consists of one line in the passwd format. For example:
test_user:x:1000:1000:Test User:/home/test:/bin/bashOnly the first line of the file /etc/libnss-ato.conf is parsed and the
uid number (1000 in this example) must be the one of a real user in the system.
Here an example of the system file /etc/nsswitch.conf to make use of libnss-ato:
passwd: files ato
group: files
shadow: files atoIf you have an nscd service running, please reload it after the changes in the file
/etc/nsswitch.conf.
To build the Debian packages, run the following:
fakeroot debian/rules binaryThis should create the correct .deb in the parent directory.
This package can then be installed as with any other package:
sudo dpkg -i <package_name>You will then need to modify the config files, as above.
To build the CentOS packages, run the following:
make rpmThis should create the correct .rpm in the parent directory.
This package can then be installed as with any other package:
sudo yum install <package_name>You will then need to modify the config files, as above.