LinuxQuestions.org
Have you heard the LinuxQuestions.org Podcast?
Go Back   LinuxQuestions.org > Forums > Linux > Linux - Server
Reload this Page replacing active directory when using samba and winbind
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Thread Tools
Old 09-14-2008, 04:20 PM   #1
wastingtime
Member
 
Registered: Sep 2004
Posts: 54
Thanked: 0
replacing active directory when using samba and winbind

[Log in to get rid of this advertisement]
My current configuration uses samba and winbind on a linux server that authenticates users from a windows active directory server.

samba config summary
workgroup = CORPNET
realm = corpnet.maydomain.com
netbios name = FS01
encrypt passwords = yes
security = ads
auth methods = winbind
wins server = 192.168.1.2
winbind uid = 10000-20000
winbind gid = 10000-20000
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
#idmap uid = 10000-20000
#idmap gid = 10000-20000
username map = /etc/samba/users.map
template shell = /bin/bash
template homedir = /home/%D/%U
winbind enum users = yes
winbind enum groups = yes
winbind cache time = 10
winbind use default domain = yes

I also have kerberos running.

The linux server mainly is a file server for remote windows users.
It also have local account for users under /home/CORPNET/username.
I also servers as a vpn server for windows built in vpn client.

The machine also has DNS service running.

It like to detach it from the active directory service, which runs on the windows server (separate box)

However, I do not want to recreate all user accounts, especially since the filse on the samba share (i.e. the file server) has access right set to specific users.

In short, I need to run a subset of active directory, enough to keep authentication for the file server, vpn, and local user accounts.

I understand I could use ldap, winbind, or winbind + ldap, but cannot find a good howto.

Also unclear is how can I copy over the user accounts info, or easily recreate their settings? I understand I need to maintain the
wastingtime is offline     Reply With Quote

Reply

Bookmarks


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
winbind- cannot make user authentication with Active Directory chenboly Linux - Networking 1 04-12-2008 10:09 AM
SAMBA, WINBIND and KERBEROS against Windows 2000 Active Directory mago Linux - Networking 2 07-29-2006 12:52 AM
Best/simplist way to authenticate with active directory? WSFU, WINBIND, or ?? Fillys6 Linux - Networking 1 02-02-2006 10:28 PM
Samba 3.0.4 with winbind and active directory upgrade problem jhibbets Red Hat 0 08-16-2004 12:24 PM
Opinion, does samba+winbind work well with windows 2000+active directory? tisource Linux - Networking 5 02-23-2003 02:34 AM


All times are GMT -5. The time now is 08:28 PM.

Contact Us - Advertising Info - Rules - LQ Merchandise - Donations - Contributing Member - LQ Sitemap - LinuxQuestions.org - Linux Forums
Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
RSS2  LQ Podcast
RSS2  LQ Radio
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: @linuxquestions
Open Source Consulting | Domain Registration