I searched the forums and samba docs without finding a solution.
We have Windows 2003 Active Directory server holding mail user accounts. Users manage their passwords through Exchange's Webmail application. Most users are not joined to Windows domain and have plain workgroup setup.
I would set up a Samba server with this behaviour:
- Samba's share definition in smb.conf list the users allowed to access THAT share;
- Users provide their username and mail (AD) password;
- Samba checks if THAT user is allowed to access the share and verifies the password via Active Direectory's LDAP;
- No need to change AD password from Samba, no change to made in AD LDAP structure.
In other words I would replicate what I'm doing with Apache's mod_ldap, so users can access reserved pages supplying their (mail) username and password.
Any chance to succeed in making that?