How to authenticate Samba server with another LDAP Server.
- I would like to set up samba server(CentOS5 samba version 3.0.33)for sharing directory. WindowXP client will can access to samba if username and password match with username and password of another existing LDAP server.

- I only know URL and DN of LDAP server and can not modify anything on LDAP Server.

- Can I config at samba server for requirment above.

thanks,
Pawa

Assuming OpenLDAP and Samba3, you will need a user in your LDAP to bind with.
smb.conf:

security = user
passdb backend = ldapsam:ldap://ldap.foo.bar
ldap ssl = start tls
ldap suffix = dc=foo,dc=bar
ldap user suffix = ou=people
ldap group suffix = ou=group
ldap admin dn = uid=binduser,ou=people,dc=foo,dc=bar

password for binduser is stored in /etc/samba/secrets.tdb by running
# sudo 'smbpasswd -w passwd'

restart samba

Note: avoid spaces between comas sometimes they can cause trouble.

Cheers,
OK

Thanks for your reply. I try to following your suggestion. The result is when I login to samba server with window client via Windows Explorer--\\localhost\sharedirectory-- and use username and password in existing LDAP server. It can not access to samba but ask me for username and password again.

- I have modifiled smb.conf file only.
- How can I assign a permision in each user in ldap server to access to samba? Note that,it already have existing user in ldap server and I cannot modify any thing in ldap server. I would like to use only username and password in ldap server to authenticate samba server.

Thanks,

1 members found this post helpful.