Slackware 13.37 + ftp server + Active Directory integration...
 

Hello everyone,

I have installed a full version of Slackware 13.37 in order to make an ftp server for my company. The company is Windows based so most of the servers are windows but I would like to import the Linux option. Since its up to me, I chosen Slackware that is the distro that I have used more in the past.

So, I have installed Slackware, recompiled the vsftpd with ldap module. Ftp is working fine with local accounts, so my concern is to have AD integration in order to avoid the local accounts that my supervisor will reject for sure.

Any ideas on how to proceed from this point on? I have read a lot of stuff that confused me. Do I need PAM? Do I need anything else? What I would like firstly, is to point me to the right way (need to install this and this and that) and I'll try to find out how to complete it.

Thanks in advance,
Argi.

Argi --

I've 'joined' CentOS Boxes to AD (via PAM) but I've never tried to
integrate Slackware with AD.

I run Slackware at home but have no Windows AD Server and we have
a number of customers running AD and CentOS but none with Slackware.

This looks promising:

http://canich.net/slackware/krb5.html

There are a lot of patches involved but it seems to address all the
essential ingredients.

-- kjh

<NoFlamesPlease>

p.s. I love Slackware myself and this looks like an interesting
experiment, but since you're starting a new project and since it's
for your employer, maybe CentOS might be the way to go i ?

Handy resource:

http://www.google.com/url?sa=t&rct=j...VUw4Tg&cad=rja

</NoFlamesPlease>

I don't know about vsftp. Its pretty easy to make work without pam on Slackware with proftpd. You will need to add the MIT Kerb5 package. Configure /etc/kerb5.conf to use your domain controller as the KDC. Configure Samaba and join your domain. Set up your nsswhich.conf to use winbindd for users and groups. I used to replace the login program with login.kerb5 and setup ssh to also use kerb, these are optional but nice because than you can login to the box not just ftp with your ADs credentials. Add the domains admins group to /etc/sudoers as appropriate. You will need to configure proftd to use kerberose as well; that is pretty well documented.

I wish could be of more help but I have moved on from the employer I built for and it was back on like Slackware 10.2. I doubt things have changed much though, you should be able to make it work. Hope these pointers help.

Thanks a lot guys for your help.

I will try the Slackware as it is already installed and if this doesn't work, I might give it a try with CentOS.

I wrote something on here awhile back on AD integration for slackware, just use current packages and you should be fine

http://www.linuxquestions.org/questi...9/#post3766986

Thanks. I had already seen your post. I just thought that there might be some changes due to samba/ftp that the two posts are mentioned to ;)
Now that you say that the process is the same, I will take a closer look.

Argi --

Tom Canich (who also wrote the HOWTO I referenced) maintains a kerberos SlackBuild for 13.37:

http://slackbuilds.org/repository/13.37/network/krb5/

I have not tried it but might be helpful.

-- kjh