Hi, This may be a dumb question (I'm new with this), but is it possible to use SAMBA in combination with LDAP in a Workgroup? All the manuals and examples I can find, are talking about Domains and PDCs. I have to set up a new Samba server and checkout LDAP but I'm not allowed to change the Workgroup settings... Now we use smbpasswd... Is LDAP worth the effort and time? Kind Regards, ToHa
Tom, Personally I believe LDAP is an excellent backend database for Samba, especially if you are looking for Single-Sign-On capabilities. PC's do not have to join the Samba Domain in order to still gain domain access, however users will be prompted for username and password when accessing a share for your Samba Domain. One way around this is to use the same username and password for your LDAP database as you do currently for their machine logon accounts. Also, in order to find samba shares on Samba/LDAP servers with a different domain your current WINS servers should be able to find the new domain and list it within your Network List so you should be able to browse to them. Otherwise you can use DNS. Good Luck! James -----Original Message----- From: samba-bounces+jtaylor=laszlosystems.com@lists.samba.org [mailto:samba-bounces+jtaylor=laszlosystems.com@lists.samba.org] On Behalf Of Tom Haerens Sent: Thursday, March 16, 2006 1:00 AM To: samba@lists.samba.org Subject: [Samba] SAMBA+LDAP in a Workgroup Hi, This may be a dumb question (I'm new with this), but is it possible to use SAMBA in combination with LDAP in a Workgroup? All the manuals and examples I can find, are talking about Domains and PDCs. I have to set up a new Samba server and checkout LDAP but I'm not allowed to change the Workgroup settings... Now we use smbpasswd... Is LDAP worth the effort and time? Kind Regards, ToHa -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
On Thu, 2006-03-16 at 10:00 +0100, Tom Haerens wrote:> Hi, > > This may be a dumb question (I'm new with this), but is it possible to use > SAMBA in combination with LDAP in a Workgroup? > All the manuals and examples I can find, are talking about Domains and > PDCs. > > I have to set up a new Samba server and checkout LDAP but I'm not allowed > to change the Workgroup settings... > Now we use smbpasswd... > > Is LDAP worth the effort and time?---- for maintaining user accounts on one UNIX/Linux system to interface with Samba? Doubtful for maintaining user accounts on more than one UNIX/Linux system so there is across the board continuity of uid's, gid's passwords, integration with Samba and other services such as mail...Yes. The reason that the documentation always uses the Windows Domain model when talking about LDAP is because the Windows Domain model is a basic logical and security structure in any group of Windows computers. That doesn't mean you have to use Samba & LDAP in a Windows Domain model...it means that almost all Administrators and Users would prefer to have it integrate into a Windows Domain model because there is less password management, access management, security management in a predictable way and it would only be the rare case for someone to set up LDAP and not integrate it. Craig
HiHo Tom! Tom Haerens wrote:> Hi, > > This may be a dumb question (I'm new with this), but is it possible to use > SAMBA in combination with LDAP in a Workgroup? > All the manuals and examples I can find, are talking about Domains and > PDCs.I've such a setup running here and I'm quite satisfied. We once migrated from NIS to LDAP and later added the Samba scheme to our LDAP server. We are just using simple file- and print services with Samba. We don't use the PDC functionality as, up to now, I don't see an advantage for us - just more administration effort. Roughly said, the LDAP is just used for user accounts and groups, i.e. passwords and userid/group matching. There are enough websites that describe such a setup, by the way. Start with these here: http://www.ofb.net/~jheiss/samba/ldap.shtml http://www.coe.tamu.edu/cs/Manuals/Samba/Samba-LDAP-HOWTO.html Markus -- Senior Executive - Systemadministration Direct Phone: + 49 / 234 9787-57 Direct Fax: +49 / 234 9787-77 Viisage Technology AG Universitaetsstrasse 160 44801 Bochum Germany http://www.viisage.com ----------------------------------------------