I have the same question, I've got an existing openldap sever running with posixAccount users for linux pam/nss auth working OK . How can I enter smbpasswd users information to the existing Ldap database (just add the sambaSamAccount information needed for a PDC base on Ldap auth) !? Idealx scripts creates a whole dedicated Ldap database :-( .
jehan.procaccia wrote:> I have the same question, I've got an existing openldap sever running > with posixAccount users for linux pam/nss auth working OK . > How can I enter smbpasswd users information to the existing Ldap > database (just add the sambaSamAccount information needed for a PDC base > on Ldap auth) !? Idealx scripts creates a whole dedicated Ldap database > :-( .I used a tool called directory_administrator, which I had to patch to support Samba v3.0. All you need to do is ensure the LDAP object that represents your domain is set up correctly, and then edit each user to add that user to the domain. The patched version is at http://www.sharp.fm/software/directory_administrator available as a patch, or as an SRPM. If you have thousands of users, then this is probably not going to be practical. In that case use the idealx scripts to create a "test" LDAP tree, which will allow you to see what attributes you need to add to your users. Once this is set up, your users are going to have to reset their passwords so that the windows specific versions of the passwords are stored properly. Regards, Graham --
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 jehan.procaccia wrote: | I have the same question, I've got an existing | openldap sever running with posixAccount users for | linux pam/nss auth working OK . How can I enter | smbpasswd users information to the existing Ldap | database (just add the sambaSamAccount information | needed for a PDC base on Ldap auth) !? Idealx | scripts creates a whole dedicated Ldap database | :-( . pdbedit a <username> will add the necessary attributes to the users accounts assuming your have setup the appripriate ldap parameters in smb.conf. cheers, jerry - ---------------------------------------------------------------------- Hewlett-Packard ------------------------- http://www.hp.com SAMBA Team ---------------------- http://www.samba.org GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc "...a hundred billion castaways looking for a home." ----------- Sting -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFAl67eIR7qMdg1EfYRAhDHAJ0buR4UKOGaZR2J4EOnqWScIwY6ZACg1o+2 6sB6klEoIsuiT5/OkzMXhTo=W5lA -----END PGP SIGNATURE-----