LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 01-07-2010, 10:41 AM   #1
matiasquestions
Member
 
Registered: Sep 2005
Posts: 65

Rep: Reputation: 15
Samba, Openldap and authentication mechanisms


Hi,

I would like somebody to clarify me the options I have to integrate a Samba fileserver running under Debian with openldap.
We have an openldap server that we manage with a custom web interface we developed. Users have unixAccount object class and their password is stored encrypted via SSH on the userPassword attribute.

As far as I understand, there are two options:

1) Set up samba as described everywhere and add to each user the sambaSamAccount object class and the sambaLMPassword and sambaNTPassword attributes. That would work perfectly but the problem I see is that both of these password attributes are like "clear text" because they are weakly encrypted and this would also force everyone to change his password.

2) Set up samba to authenticate against pam, having pam to work with ldap. Would be perfect but the problem is that it seems that you have to force the clients to not send the password encrypted, and in order to each client computer to do that, you will have to tweak its registry......


The only thing I want is to authenticate the password against the ldap instead of the smbpasswd file. Why the samba daemon can't just do a bind with the supplied password against the ldap server like postfix, courier-imap, etc,etc??

Do I have any other option or any way to workaround the problems described here?


Thanks for your time and help.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] Postfix SASL : No Authentication Mechanisms Cybrax Linux - Newbie 1 11-13-2010 01:58 AM
Samba authentication from openLdap CNBarnes Linux - Server 1 12-29-2009 01:32 PM
beehive: Is it possible to use other authentication mechanisms? eantoranz Linux - Software 0 10-07-2008 12:45 PM
samba and openldap authentication issues! kcorupe Linux - Server 2 04-24-2008 08:14 PM
regarding openldap authentication Bharatsoni Linux - Enterprise 0 08-16-2006 04:59 AM


All times are GMT -5. The time now is 12:32 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration