LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Fedora
User Name
Password
Fedora This forum is for the discussion of the Fedora Project.

Notices


Reply
  Search this Thread
Old 08-16-2005, 06:03 PM   #1
vrooom305
LQ Newbie
 
Registered: Aug 2005
Posts: 5

Rep: Reputation: 0
Fedora Core 4 in Win 2000/03 Domain


So I got two Win 2000 Servers and one 2003 Server. Now I am hoping to get the Linux computer to interact with Windows Active Directory. Anyone know how I can do this or if it can even be done?

On a side note, using the GUI, I created a Samba shared folder (/home/test). I have read, write, and visible permissions. In addition I have also set plaintextpassword(s?) on the computer running XP. Now, I can see the Linux box in the domain, but I cannot access the share through a Win XP computer.

here's the configuration of the smb.conf file
Code:
[global]
# workgroup or domain.
workgroup = xxx

# Netbios name (name of the Samba server).
netbios name = yyy

# Server string is the equivalent of the NT Description field
server string = Linux Samba Server

# Samba Security Setting
security = user

# Password encryption for Windows computers. 
encrypt passwords = no

# Set local master to no if you don't want Samba to become a master 
# browser on your network. 
local master = no

#===== Share Definitions =====
# This will let the the home directory get shared. All users home 
# directory on the computer will show up with if this is added. 

[homes]
comment = Home Directories
browseable = yes
writable = yes
Thanks
 
Old 08-17-2005, 10:47 AM   #2
PenguinPwrdBox
Member
 
Registered: Oct 2003
Posts: 568

Rep: Reputation: 30
You can indeed achieve full AD AAA on a unix machine using MS SFU, LDAP, and Kerberos. I intend to write a how to on this, however, it will be quite extensive. Essentially, what you will be doing, is extending your AD schema using MS SFU, configuring Kerberos for auth on the client machine, and LDAP with NIS for user information.

Having a slow day at work today. If I get a chance, I'll get started
 
Old 08-18-2005, 03:01 PM   #3
arenasa
LQ Newbie
 
Registered: Oct 2000
Location: Curaçao
Distribution: Fedora, Centos
Posts: 18

Rep: Reputation: 1
I have samba woring fine in a W2003 envoronment. I use encrypted passwords and the smbusers file to map linux vs Windows users. It works fine here. Hope this help.


Here is my smb.conf file:

[global]

# workgroup = NT-Domain-Name or Workgroup-Name
workgroup = DOMAIN-NAME

# server string is the equivalent of the NT Description field
server string =

# This option is important for security. It allows you to restrict
# connections to machines which are on your local network. The
# following example restricts access to two C class networks and
# the "loopback" interface. For more examples of the syntax see
# the smb.conf man page
hosts allow = 192.168.1. 127.

# all log information in one file
log file = /var/log/samba/smbd.log

# Put a capping on the size of the log files (in Kb).
max log size = 50

# Security mode. Most people will want user level security. See
# security_level.txt for details.
security = server
# Use password server option only with security = server (This is a DC)
password server = 192.168.1.10

# You may wish to use password encryption. Please read
# ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation.
# Do not enable this option unless you have read those documents
encrypt passwords = yes
smb passwd file = /etc/samba/smbpasswd

# Unix users can map to different SMB User names
username map = /etc/samba/smbusers

# Configure Samba to use multiple interfaces
# If you have multiple network interfaces then you must list them
# here. See the man page for details.
interfaces = 192.168.1.3/24


# Browser Control Options:
local master = no
domain master = no
preferred master = no


#============================ Share Definitions ==============================
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
template shell = /bin/false
winbind use default domain = no
[homes]
comment = Home Directories
browseable = yes
writable = yes

# Un-comment the following and create the netlogon directory for Domain Logons
; [netlogon]
; comment = Network Logon Service
; path = /home/netlogon
; guest ok = yes
; writable = no
; share modes = no


# Un-comment the following to provide a specific roving profile share
# the default is to use the user's home directory
;[Profiles]
; path = /home/profiles
; browseable = no
; guest ok = yes


# NOTE: If you have a BSD-style print system there is no need to
# specifically define each individual printer
[printers]
comment = All Printers
path = /var/spool/samba
browseable = no
# Set public = yes to allow user 'guest account' to print
guest ok = no
writable = no
printable = yes
 
Old 08-18-2005, 04:54 PM   #4
vrooom305
LQ Newbie
 
Registered: Aug 2005
Posts: 5

Original Poster
Rep: Reputation: 0
^ thank you sir, I will look into that
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Problem with Fedora Core 3, Samba, gnome & win 2000/XP edesmarais Linux - Networking 21 12-15-2005 02:36 PM
Linux box not able to join win 2000 domain jomy Linux - Networking 0 12-13-2004 03:59 AM
Linux to get authenticated by win 2000 domain ctrl jomy Linux - Networking 1 12-01-2004 10:46 AM
Win XP + Win 2000 + Fedora Core 2 koyi Linux - Newbie 6 09-30-2004 05:09 AM
want to ADD REDHAT 7.1 BOX into WIN 2000 DOMAIN soulofunix Linux - Networking 5 07-03-2003 03:08 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Fedora

All times are GMT -5. The time now is 06:34 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration