Hi, I try to configure a PDC in FreeBSD with Samba using MySQL for database for users, groups, computers and other resources in domain like printers, sites...but without success. I installed * FreeBSD 5.3 with support for linux bin; * Samba-3.0.7,1 with CONFIGURE_ARGS --with-ldap --with-expsam=mysql --with-mysql-prefix=/usr/local --with-pam --with-pam_smbpass --with-ldapsam --with-syslog --with-quotas --with-manpages-lan=en --with-acl-support --with-winbind automaticaly was installed openldap-client-2.2.15; * pam_ldap-1.7.1_1 in default mode; * and MySQL 4.0.21 (server and client) in default mode. First, I just want register the Windows client in Domain and make logon in Windows using the username stored in MySQL database. When I change security=domain to security=share in smb.conf, then from Windows station I can access de Server PDC and open folders and automaticaly a user is stored in MySQL with the name nobody, but when I change to "domain" I can?t register Windows in domain and I can?t access the Server using the username and password. I have to create a username in FreeBSD using pw or adduser and then I can use smbpasswd -a username, this way I can write in MySQL, but still no working and I will have the 2 user, one in de FreeBSD and in MySQL. For my table I use the mysql.dump in Samba examples. After I will use Apache with PHP for MySQL databases and retire PDC Windows NT Server. Can you help me to configure this? Thanks. ________________ Alexandre Melo
Andrew Bartlett
2005-Jan-02 07:52 UTC
MySQL passdb module, and biting of more than you can chew (was: Re: [Samba] Help Me)
On Thu, 2004-12-30 at 15:07 -0200, Alexandre Melo wrote:> Hi, I try to configure a PDC in FreeBSD with Samba using MySQL for > database for users, groups, computers and other resources in > domain like printers, sites...but without success.Firstly, 'Help Me' doesn't tell me very much about your problem, but I digress... This very much sounds like trying to create the most complex solution first. I know, because I've been there, and done that. I would not suggest the use of the experimental MySQL passdb backend until you first understand the operation of a system using nss_ldap and pdb_ldap, as described in the documentation. (and handle the system with just smbpasswd before that). This way, you don't try and solve all the problems at once, and realise that you do indeed need an nss_mysql module to make this kind of thing go. Furthermore, are you even running a version of FreeBSD that allows arbitrary nss modules? Personally, I'm a bit skeptical of 'use MySQL for everything', as I instead use LDAP, which almost everything talks to without modification, and which can (with a little pain) be made to back onto a real DB, or be synchronised with one. Andrew Bartlett -- Andrew Bartlett abartlet@samba.org Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College abartlet@hawkerc.net -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.samba.org/archive/samba/attachments/20050102/24ac5227/attachment.bin