some quick/small samba3+ldap2 help
Heya Gang, I'm trying to setup a stand alone samba server to auth via
ldap. There is no domain/PDC/BDC. The users do not have/need unix
accounts. Can someone just sorta break down what i need to get things
running. I've read some docs and its just not clicking for me, having a
hard time wrapping my brain around it. Plus all the docs are taking me
through setting up password syncing with unix and enabling my linux box to
auth via ldap. I dont want this, I just want samba to auth via ldap and
give access and not even if the user exists, local unix account wise.
here is my slapd.conf
---------------------------------------------
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/pureftpd.schema
include /etc/openldap/schema/samba.schema
pidfile /var/run/slapd.pid
argsfile /var/run/slapd.args
TLSCipherSuite HIGH:MEDIUM:SSLv3:SSLv2
TLSCACertificateFile /etc/ssl/certs/ca.cert
TLSCertificateFile /etc/openldap/certs/ldap.cert
TLSCertificateKeyFile /etc/openldap/private/ldap.key
allow bind_v2
database bdb
suffix "dc=domain,dc=net"
rootdn "cn=Manager,dc=domain,dc=net"
rootpw {SSHA)????????
directory /var/openldap-data
here is my smb.conf
---------------------------------------------
[global]
netbios name = thekid
server string = thekid SMB Server
workgroup = XBO
security = user
encrypt passwords = yes
log file = /var/log/samba/samba-%m.log
log level = passdb:4 auth:4
socket options = TCP_NODELAY IPTOS_LOWDELAY
bind interfaces only = True
interfaces = eth1
hosts allow = 192.168.1. 127.0.0.1
#### LDAP SETTINGS #####
passdb backend = ldapsam:ldap://ldap
ldap port = 389
ldap ssl = on
ldap admin dn = "cn=Samba Manager,ou=sambaUsers,dc=domain,dc=net"
ldap suffix = "ou=sambaUsers,dc=domain,dc=net"
[share]
path = /data
create mask = 0664
directory mask = 0775
guest ok = no
valid users = users
etc etc..
i've added sambaGroup to ldap and put people in that group, however still no dice.
So i was just hoping someone could give me some quick pointers and what i need to do as
far as setting up the users in ldap so samba will auth and not care about unix.
|