Samba and LDAP in 30 Minutes



Similar documents
Bring Linux into Microsoft s ADS

Linuxdays 2005, Samba Tutorial

An Information System

Creating an LDAP Directory

Configuring idrac6 for Directory Services

Introduction to Linux (Authentication Systems, User Accounts, LDAP and NIS) Süha TUNA Res. Assist.

Introduction Installing and Configuring the LDAP Server Configuring Yealink IP Phones Using LDAP Phonebook...

Directory Solutions Using OpenLDAP

The following gives an overview of LDAP from a user's perspective.

Implementazione dell autenticazione con LDAP

LDAP (Lightweight Directory Access Protocol) LDAP is an Internet standard protocol used by

Practical LDAP on Linux

Integrating Webalo with LDAP or Active Directory

Ciphermail Gateway Web LDAP Authentication Guide

User Management / Directory Services using LDAP

CA SiteMinder. Directory Configuration - OpenLDAP. r6.0 SP6

Integrating PISTON OPENSTACK 3.0 with Microsoft Active Directory

LDAP Server Configuration Example

Microsoft.Net Version 2.0 is required. You can obtain this from the Microsoft Website, or visit the Downloads page at voceware.co.uk for a link.

LDAP Server Configuration Example

User Management Resource Administrator. Managing LDAP directory services with UMRA

Configuring Sponsor Authentication

OpenLDAP. Linux Systems Authentication. Dr. Giuliano Taffoni IASFBO

Basic Configuration. Key Operator Tools older products. Program/Change LDAP Server (page 3 of keyop tools) Use LDAP Server must be ON to work

RHEL Clients to AD Integrating RHEL clients to Active Directory

DB2 - LDAP. To start with configuration of transparent LDAP, you need to configure the LDAP server.

Writing Access Control Policies for LDAP

TechJam Active Directory Auditing Presenter Matt Warburton Professional Services

Linux/Unix Active Directory Authentication Integration Using Samba Winbind

SAMBA VI: As a Domain Controller

NSi Mobile Installation Guide. Version 6.2

AD Schema Update IPBrick iportalmais

Security with LDAP. Andrew Findlay. February Skills 1st Ltd

Securing SAS Web Applications with SiteMinder

SAMBA SERVER (PDC) Samba is comprised of a suite of RPMs that come on the RHEL/Fedora CDs. The files are named:

Quality Center LDAP Guide

QuickBooks Enterprise Solutions. Linux Database Server Manager Installation and Configuration Guide

Homework 5b: Homework 5b: Samba

Using LDAP with Sentry Firmware and Sentry Power Manager (SPM)

rackspace.com/cloud/private

Steps to setup authentication and enrolment through LDAP protocol

SIMIAN systems. Sitellite LDAP Administrator Guide. Sitellite Enterprise Edition

Troubleshooting Active Directory Server

LDAP Implementation AP561x KVM Switches. All content in this presentation is protected 2008 American Power Conversion Corporation

NT4 PDC Migration to Samba 3

FreeIPA 3.3 Trust features

How to monitor AD security with MOM

' ( )* +), -., /0,, -+), ' /0! ) ) * :' 1

1 Introduction. Windows Server & Client and Active Directory.

SUSE Manager 1.2.x ADS Authentication

Using LDAP Authentication in a PowerCenter Domain

Summary. How-To: Active Directory Integration. April, 2006

Version 9. Active Directory Integration in Progeny 9

Configuring MailArchiva with Insight Server

Active Directory and Linux Identity Management

Intuit QuickBooks Enterprise Solutions. Linux Database Server Manager Installation and Configuration Guide

Agenda. NT4 PDC Migration to Samba-3. Site Objectives. Samba-3 is NOT MS Windows NT. John H Terpstra, Samba-Team jht@samba.org

Active Directory Commands ( )

Configuring Color Access on the WorkCentre 7120 Using Microsoft Active Directory Customer Tip

Active Directory Manager Pro New Features

AXIGEN Mail Server. Implementing, Deploying and Managing a High Availability Distributed Solution on. Copyright 2007 GECAD Technologies S.A.

Allowing Linux to Authenticate to a Windows 2003 AD Domain. Prepared by. Thomas J. Munn, CISSP 11-May-06

LDAP connectivity to the REDDOXX-Appliance

Creating a generic user-password application profile

Using Samba to play nice with Windows. Bill Moran Potential Technologies

Ponder Toolkit and the Munich Network Management Team

Configuration Guide for Active Directory Integration

TIBCO Spotfire Platform IT Brief

Step-by-Step Guide to Active Directory Bulk Import and Export

SuSE File and Print Services with

FirstClass Directory Services 10 (Build 11)

Configuring User Identification via Active Directory

SCOPTEL WITH ACTIVE DIRECTORY USER DOCUMENTATION

Active Directory LDAP Quota and Admin account authentication and management

Importing data from Linux LDAP server to HA3969U

1 Introduction. Ubuntu Linux Server & Client and Active Directory. Page 1 of 14

SSSD Active Directory Improvements

Using Single Sign-on with Samba. Appendices. Glossary. Using Single Sign-on with Samba. SonicOS Enhanced

Oracle Communications Cartridge Feature Specification for Broadsoft Broadworks Enterprise Services

Hinemos ver.2 Installation manual

Linux Authentication using LDAP and edirectory

Installing QuickBooks Enterprise Solutions Database Manager On Different Linux Servers

System Node Reference

Active Directory Quick Reference Guide for PowerCAMPUS Self-Service 7.x. Release 5 July 2011

Active Directory Requirements and Setup

Please return this document to when complete.

Managing Identities and Admin Access

WirelessOffice Administrator LDAP/Active Directory Support

How To Set Up An Openfire With Libap On A Cdd (Dns) On A Pc Or Mac Or Ipad (Dnt) On An Ipad Or Ipa (Dn) On Your Pc Or Ipo (D

Avaya CM Login with Windows Active Directory Services

Samba/LDAP How-To using Samba v. 3

UNIL Administration. > Many databases and applications:

Samba. Samba. Samba 2.2.x. Limitations of Samba 2.2.x 1. Interoperating with Windows. Implements Microsoft s SMB protocol

Oracle Mobile Security Suite Workshop. Installation

Server Installation/Upgrade Guide

Group Policy and Organizational Unit Re-Structuring Template

Messages are printed to the info and debug files. Messages which cause an abort may have additional information in the debug file.

System Authentication for AIX and Linux using the IBM Directory Server

Open Directory & OpenLDAP. David M. O Rourke Engineering Manager

Attunity RepliWeb PAM Configuration Guide

Transcription:

Samba and LDAP in 30 Minutes Configuring LDAP and a Samba-PDC on RHEL4 by Jens Kühnel Bad Vilbel, Germany freelance SuSE- and RedHat-Trainer book author Samba 3 - Wanderer zwischen den Welten

Overview LDAP Schema slapd.conf smbldap-tools smbldap_conf.pm smbldap-populate.pl Samba smb.conf

LDAP-Schema The Building-Plan has to be updated cp /usr/share/doc/samba-3.0.*/ldap/samba.schema \ /etc/openldap/schema/samba.schema Add the Schema to /etc/openldap/slapd.conf include /etc/openldap/schema/samba.schema

Add Access-Rights in slapd.conf access to attrs=userpassword,sambalmpassword,\ sambantpassword,shadowlastchange by dn.children="ou=admin,dc=example,dc=com" write by self write by anonymous auth by * none access to * by dn.children="ou=admin,dc=example,dc=com" write by * read

suffix and root Account in slapd.conf Adjust suffix and rootdn: suffix rootdn "dc=example,dc=com" "cn=manager,dc=example,dc=com" Use the programm slappasswd to create password-hash: rootpw {SSHA}GLYiF62wn1O6iHYJCHDriCSjFGj

Speedup with Indexing Indexing improves Speed index sambasid,sambaprimarygroupsid,sambadomainname eq

Smbldap-tools Put in File ~/.rpmmarcos: %_solve_pkgsdir http://192.168.0.2/rhel4/redhat/rpms/ %_solve_name_fmt %{?_solve_pkgsdir}%%{name}-\ %%{VERSION}-%%{RELEASE}.%%{ARCH}.rpm Installing smbldap-tools rpm -ivh --aid http://www.kuehnel.org/smbldap-tools.rpm

Smbldap_conf.pm Change the SID Take the output of net getlocalsid and add it like: $SID='S-1-5-21-3516781642-1962875130-3438800523'; Change Suffix and Login $suffix $binddn $bindpasswd

Start LDAP and populate Start LDAP /etc/init.d/ldap start Create the LDAP-Groups and -Users smbldap-populate.pl

Create a Admin-Account-File ldapadd -cxw -D cn=manager,dc=... Password: securepassword dn: ou=admin,dc=example,dc=com objectclass: organizationalunit ou: admin dn: cn=samba,ou=admin,dc=example,dc=com objectclass: person cn: samba sn: Samba-Admin-User userpassword: verysecure

Using LDAP as a Auth-Source Authconfig Add LDAP as both User- and Password-Source authconfig --enableldap --enableldapauth \ --ldapserver=127.0.0.1 --ldapbasedn=dc=example,dc=com

Adding Samba Adjusting the following options Workgroup=Domainname Ldap admin=cn=samba,ou=admin,... Ldap suffix=... Add the following options: Passdb backend=ldapsam:ldap://127.0.0.1/ Domain master = yes Domain logon = yes Ldap {group,user,machine} suffix = \ ou={groups,people,computers}

Automatic Adding to the LDAP add user script = /usr/sbin/smbldap-useradd.pl -m %u delete user script = /usr/sbin/smbldap-userdel.pl -r %u add machine script = /usr/sbin/smbldap-useradd.pl -w %u add group script = /usr/sbin/smbldap-groupadd.pl -a %g delete group script = /usr/sbin/smbldap-groupscript.pl %g add user to group script = /usr/sbin/smbldap-groupmod.pl \ -m %u %g delete user from group script = /usr/sbin/smbldap-\ groupmod.pl -x %u %g

LDAP-Password Giving Samba the right to write into the LDAP- Directory smbpasswd -w verysecure

Ready to join Old version you need root with a SMB password With newer Versions you need to add rights to your account

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information