Hello all.
We have a Windows Domain and are looking for ways to migrate some servers to linux.
The current project is to convert our file servers.
What we like to do is:[list=1][*]Put the files on linux boxes[*]Make the transitions seemless for the users (who are all windows users)[*]Not have to change password on both domain and linux level. It is hard enough to enforce a password policy for users
[*]Set up and maintain ACL for extended group and user permissions.[*]As a bonus, although it is not needed, enable DFS, to create the illusion of just one fileserver.[/list=1]
From what we have found out, this might be done with Samba 3.0.2 which has support for Active Directory (linux machine as a member server), LDAP, ACL and Kerberos.
The documentation states that account lookups and authentication can be passed on to a DC in an AD, as well as ACL permissions on files and directories, via LDAP and Kerberos, using winbind
The problem is that ACL is not enabled by default in the samba runtimes, which means that we have to compile the source manually (I'm guessing here, as I am what my name states, namely a newbie on linux, living i Sweden). And this we don't succed with. We have the source files.
./configure can't complete, and spits out:
ldap.h is needed for ldap support.
openldap and heimdall kerberos5 (both client and server is installed on the test box). I have located the ldap.h file and copied it to /usr/include to no avail.
Has anyone any tips or solutions.
Perhaps someone has this setup and can post a small HOWTO, as this configuration is woefully badly documented, and the only links I have found are of other people having the same problems, and no solutions to these problems.
Hopefully yours,
Henrik, Linux newbie
_______________________________
Configuration:
AMD Athlon 1000 MHz on Asus A7V133 mobo
256 MB
20 GB HDD (Reiserfs)
530 MB SWAP
SuSe 9.0
nVidia GF 4 + Creative Audigy 2
(the test computer is my home box, in case you're wondering why these cards in a server box)
Samba and ADS domain authentication
