I am trying to get Samba running on RH Linux 9 to act as a file server and authenticate against the domain. I don't want it to be actively involved in Active Directory or be a domain controller. I do not have the ability to add a machine to AD. All I'm looking for is, when a user wants to access a share that the user is authenticated against the domain and if they are a valid user grant them access. I have this configuration running with VisionFS on SCO/Unix and just trying to replicate this environment. With Samba I keep getting messages like: could not fetch trust account password for domain. Any help on how to configure it to do this would be appreciated. Bob Lawson Georgetown Casting
Lawson, Bob P wrote:> I am trying to get Samba running on RH Linux 9 to act as a file server and authenticate > against the domain. I don't want it to be actively involved in Active Directory or be > a domain controller. I do not have the ability to add a machine to AD. > > All I'm looking for is, when a user wants to access a share that the user is authenticated > against the domain and if they are a valid user grant them access. > > I have this configuration running with VisionFS on SCO/Unix and just trying to replicate > this environment. > > With Samba I keep getting messages like: > could not fetch trust account password for domain. > > Any help on how to configure it to do this would be appreciated.I don't think you can. As I understand it when a user requests access to a share then a request is made to the domain controller by the host computer to see if the user is authenticated. As you havn't added the host computer to the domain then the domain controller will reject the request and hence you see the error message above. You need to either have your own authentication on the host box or get it added to the domain. Nathan
I would think the same thing except I have 5 SCO/Unix systems running visionFS that are not part of the domain and manage to use the domain controller to authenticate users. It works great! So I figured I should be able to accomplish the same thing with Samba but I have not found a configuration that works. Bob -----Original Message----- From: Nathan Howard [mailto:nhoward@brokers-online.co.uk] Sent: Thursday, October 28, 2004 4:43 AM To: 'samba@lists.samba.org' Cc: Lawson, Bob P Subject: Re: [Samba] Passive file server. Lawson, Bob P wrote:> I am trying to get Samba running on RH Linux 9 to act as a file server and authenticate > against the domain. I don't want it to be actively involved in Active Directory or be > a domain controller. I do not have the ability to add a machine to AD. > > All I'm looking for is, when a user wants to access a share that the user is authenticated > against the domain and if they are a valid user grant them access. > > I have this configuration running with VisionFS on SCO/Unix and just trying to replicate > this environment. > > With Samba I keep getting messages like: > could not fetch trust account password for domain. > > Any help on how to configure it to do this would be appreciated.I don't think you can. As I understand it when a user requests access to a share then a request is made to the domain controller by the host computer to see if the user is authenticated. As you havn't added the host computer to the domain then the domain controller will reject the request and hence you see the error message above. You need to either have your own authentication on the host box or get it added to the domain. Nathan