Scott Simmons
2003-Oct-03 18:05 UTC
[Samba] 2 (Suse), one NT 4 server machine and 5 user databases???
I currently have a setup of 1 NT 4.0 PDC server and to SUSE boxes sharing via a samba share. I seem to have to make 5 different usename/password databases. 1 for NT, 2 for each SuSe box (One Linux and one Samba). Is there a way to have 1 or maybe two databases to update? I've read about LDAP on other connections but I'm a little confused as to what is the best approach. Oh I'm using Webmin to update the systems, if that helps. Thanks in advance for any suggestions. -Scott
Adam Williams
2003-Oct-03 18:32 UTC
[Samba] 2 (Suse), one NT 4 server machine and 5 user databases???
> I currently have a setup of 1 NT 4.0 PDC server and to SUSE boxes > sharing via a samba share. I seem to have to make 5 different > usename/password databases. 1 for NT, 2 for each SuSe box (One Linux > and one Samba). Is there a way to have 1 or maybe two databases to > update? I've read about LDAP on other connections but I'm a little > confused as to what is the best approach.Yes, LDAP is the "best" approach. See Section 5 (current pg. 46) of us3.samba.org/samba/docs/Samba-HOWTO-Collection.pdf - and - hr.uoregon.edu/davidrl/samba.html#SAMBA-PDC bh.udev.org/filez/doc/ldap/samba-ldap-howto.pdf mandrakesecure.net/en/docs/samba-pdc.php ftp://ftp.kalamazoolinux.org/pub/pdf/ldapv3.pdf
Scott Simmons
2003-Oct-03 22:15 UTC
[Samba] 2 (Suse), one NT 4 server machine and 5 user databases???
> I currently have a setup of 1 NT 4.0 PDC server and to SUSE boxes > sharing via a samba share. I seem to have to make 5 different > usename/password databases. 1 for NT, 2 for each SuSe box (One Linux > and one Samba). Is there a way to have 1 or maybe two databases to > update? I've read about LDAP on other connections but I'm a little > confused as to what is the best approach.>Yes, LDAP is the "best" approach.>See Section 5 (current pg. 46) of >us3.samba.org/samba/docs/Samba-HOWTO-Collection.pdf>- and ->hr.uoregon.edu/davidrl/samba.html#SAMBA-PDC >bh.udev.org/filez/doc/ldap/samba-ldap-howto.pdf >mandrakesecure.net/en/docs/samba-pdc.php >ftp://ftp.kalamazoolinux.org/pub/pdf/ldapv3.pdfThanks for the info, I'm a little confused on the PDC issues? Will I have a Windows BDC and Linux/samba PDC or a Windows PDC and a Linux/samba PDC? The article seem to through these terms around a little to much without addressing what machine they are running on. Is there any gui from end to configure LDAP and Samba together. Webmin doesn't seem to have OpenLDAP support. Sorry I seem stuck in a windows state of mind. Please help me out of this nightmare. :) -Scott
Scott Simmons
2003-Oct-08 20:59 UTC
[Samba] 2 (Suse), one NT 4 server machine and 5 user databases???
Ok I have all of it set but this part:>keep in mind that you will need to configure NSSwitch and PAM to use >libnss_winbind and libpam_winbind - this will allow you to automatically >generate Linux accounts and authenticate them (and samba) against the PDC.I have winbind working :) Any pointers ?? I can send conf files if necessary. -Scott -----Original Message----- From: Phil Brutsche [mailto:phil@optimumdata.com] Sent: Friday, October 03, 2003 3:41 PM To: Scott Simmons Subject: Re: [Samba] 2 (Suse), one NT 4 server machine and 5 user databases??? Scott Simmons wrote:> Thanks for the info, I'm a little confused on the PDC issues? Will > I have a Windows BDC and Linux/samba PDC or a Windows PDC and a > Linux/samba PDC?If you go the LDAP route yes, you will.> The article seem to through these terms around a little to much > without addressing what machine they are running on. > > Is there any gui from end to configure LDAP and Samba together. > Webmin doesn't seem to have OpenLDAP support. Sorry I seem stuck in > a windows state of mind. Please help me out of this nightmare. :)Your best bet would be to make the Samba servers domain members: us4.samba.org/samba/docs/using_samba/ch04.html, scroll down to where you see "Samba as a Domain Member Server". Keep in mind that you will need to configure NSSwitch and PAM to use libnss_winbind and libpam_winbind - this will allow you to automatically generate Linux accounts and authenticate them (and samba) against the PDC. -- Phil Brutsche phil@optimumdata.com