So I got two Win 2000 Servers and one 2003 Server. Now I am hoping to get the Linux computer to interact with Windows Active Directory. Anyone know how I can do this or if it can even be done?

On a side note, using the GUI, I created a Samba shared folder (/home/test). I have read, write, and visible permissions. In addition I have also set plaintextpassword(s?) on the computer running XP. Now, I can see the Linux box in the domain, but I cannot access the share through a Win XP computer.

here's the configuration of the smb.conf file
Thanks

You can indeed achieve full AD AAA on a unix machine using MS SFU, LDAP, and Kerberos. I intend to write a how to on this, however, it will be quite extensive. Essentially, what you will be doing, is extending your AD schema using MS SFU, configuring Kerberos for auth on the client machine, and LDAP with NIS for user information.

Having a slow day at work today. If I get a chance, I'll get started

I have samba woring fine in a W2003 envoronment. I use encrypted passwords and the smbusers file to map linux vs Windows users. It works fine here. Hope this help.


Here is my smb.conf file:

[global]

# workgroup = NT-Domain-Name or Workgroup-Name
workgroup = DOMAIN-NAME

# server string is the equivalent of the NT Description field
server string =

# This option is important for security. It allows you to restrict
# connections to machines which are on your local network. The
# following example restricts access to two C class networks and
# the "loopback" interface. For more examples of the syntax see
# the smb.conf man page
hosts allow = 192.168.1. 127.

# all log information in one file
log file = /var/log/samba/smbd.log

# Put a capping on the size of the log files (in Kb).
max log size = 50

# Security mode. Most people will want user level security. See
# security_level.txt for details.
security = server
# Use password server option only with security = server (This is a DC)
password server = 192.168.1.10

# You may wish to use password encryption. Please read
# ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation.
# Do not enable this option unless you have read those documents
encrypt passwords = yes
smb passwd file = /etc/samba/smbpasswd

# Unix users can map to different SMB User names
username map = /etc/samba/smbusers

# Configure Samba to use multiple interfaces
# If you have multiple network interfaces then you must list them
# here. See the man page for details.
interfaces = 192.168.1.3/24


# Browser Control Options:
local master = no
domain master = no
preferred master = no


#============================ Share Definitions ==============================
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
template shell = /bin/false
winbind use default domain = no
[homes]
comment = Home Directories
browseable = yes
writable = yes

# Un-comment the following and create the netlogon directory for Domain Logons
; [netlogon]
; comment = Network Logon Service
; path = /home/netlogon
; guest ok = yes
; writable = no
; share modes = no


# Un-comment the following to provide a specific roving profile share
# the default is to use the user's home directory
;[Profiles]
; path = /home/profiles
; browseable = no
; guest ok = yes


# NOTE: If you have a BSD-style print system there is no need to
# specifically define each individual printer
[printers]
comment = All Printers
path = /var/spool/samba
browseable = no
# Set public = yes to allow user 'guest account' to print
guest ok = no
writable = no
printable = yes

^ thank you sir, I will look into that