===== Install needed =====
<code>
sudo apt-get install libpam-ldap libnss-ldap portmap openssh-server sendmail nfs-common
</code>
===== LDAP =====
Edit files for LDAP (128.178.70.40 / lthcserv1.epfl.ch - dc=lost - bind_policy soft)
<code>
/etc/libnss-ldap.conf
/etc/nss-ldap.conf
/etc/pam_ldap.conf
</code>
===== PAM & NSS =====
Edit files for pam & nss see [[http://doc.ubuntu-fr.org/applications/ldapclient]]
<code>
/etc/nsswitch.conf
/etc/pam.d/common-account
/etc/pam.d/common-auth
/etc/pam.d/common-password
/etc/pam.d/common-session
</code>
===== NFS =====
Edit files for NFS (///etc/fstab//) and add
<code>
lthcserv4.epfl.ch:/vol/vol0/home///username// /home///username// nfs rw,nfsvers=3,rsize=8192,wsize=8192,timeo=14,intr,addr=128.178.70.90 0 0
lthcserv1.epfl.ch:/export/opt             /opt/new       nfs rw,rsize=8192,wsize=8192 0 0
lthcserv1.epfl.ch:/export/texmf           /opt/texmf     nfs ro,rsize=8192,wsize=8192 0 0
lthcserv1.epfl.ch:/export/asis/usr.local  /opt/ul        nfs rw,rsize=8192,wsize=8192 0 0
lthcserv1.epfl.ch:/export/asis/asis.local /opt/al        nfs rw,rsize=8192,wsize=8192 0 0
</code>
And exec :
<code>
sudo mkdir /home///username//
sudo mkdir /opt
sudo mkdir /opt/new
sudo mkdir /opt/texmf
sudo mkdir /opt/ul
sudo mkdir /opt/al
</code>
in "~/.bashrc" add "/opt/new/bin" to the "PATH".

===== Mail config ====
(///etc/main/sendmail.cf//) the line start with D replace by**
<code>
Dlthmail.epfl.ch
</code>

===== Cups =====
Edit files for cups activate browsing
<code>
/etc/cups/cupsd.conf
</code>
add 
<code>
Browsing On
</code>
===== give admin access =====
<code>
sudo addgroupe //user// admin
sudo addgroupe damir admin
</code>
===== Fun Install =====
<code>
sudo apt-get install yakuake katapult
</code>

===== Add to /etc/hosts =====
<code>
192.168.1.3  students
192.168.1.11 radio1
192.168.1.12 radio2
192.168.1.13 radio3
192.168.1.2  fileserver
</code>

===== Route for labs =====
<code>
sudo route add -net 192.168.1.0 netmask 255.255.255.0 gw lcmpc10.epfl.ch
</code>
===== Log =====
<code>
change the /etc/logrotate.conf to monthly cadence and maintain the last 12 </code>
months records for every log file.

you can remove the bluetooth subsystem, you don't need it, and it's 
unuseful also the check on the frequency, the fans are not controlled by 
the chipset.

you can stop the hp daemons they are used only to discover/use the HP 
printers directly, our printers accept to print only from the printers 
servers
===== SSH =====
edit file ///etc/ssh/sshd_config// 
change //PermitRootLogin yes// by
<code>
PermitRootLogin no
</code>
change //X11Forwarding no// by
<code>
X11Forwarding yes
</code>