Displaying 3 results from an estimated 3 matches for "ext_keytab".
2015 Sep 04
1
Authentication against Apple Open Directory (was: Re: LDAP authentication without Samba schema)
...n -l
> kadmin> add --random-key cifs/mynas.apples-od.local at APPLES-OD.LOCAL
> Max ticket life [unlimited]:
> Max renewable life [unlimited]:
> Principal expiration time [never]:
> Password expiration time [never]:
> Attributes []:
> Policy [default]:
>
> kadmin> ext_keytab cifs/mynas.apples-od.local at APPLES-OD.LOCAL
> kadmin> exit
This is exactly the problem I am having on OS X.
- John
>
> Sadly, that doesn't work for us yet.
>
> > The last thing I tried was to
> > use pam_smbpass and have everyone ssh into the Samba server and...
2015 Aug 12
2
LDAP authentication without Samba schema
Hi,
I am in a position where I would like to have LDAP authentication for
CIFS shares, but cannot modify the LDAP server. The LDAP server is Open
Directory and does not have the Samba schema included or configured. I
only have read only access, a keytab, and possibly a read only bind
user. Is this possible?
I have attempted to get this working in various ways. I tried enabling
plaintext auth and
2015 Sep 04
0
Authentication against Apple Open Directory (was: Re: LDAP authentication without Samba schema)
...It seems it should be as simple as:
kadmin -l
kadmin> add --random-key cifs/mynas.apples-od.local at APPLES-OD.LOCAL
Max ticket life [unlimited]:
Max renewable life [unlimited]:
Principal expiration time [never]:
Password expiration time [never]:
Attributes []:
Policy [default]:
kadmin> ext_keytab cifs/mynas.apples-od.local at APPLES-OD.LOCAL
kadmin> exit
Sadly, that doesn't work for us yet.
> The last thing I tried was to
> use pam_smbpass and have everyone ssh into the Samba server and have
> their passwords stored locally in a TDB database.
>
> Clearly there must...