I have searched and searched. so i though that i would put here what i have done.
PAM - on Slackware doesn't seem to want to compile. also if it has holes in the program i do not want it.
downloaded
krb5 from MIT
OPENldap from
www.openldap.com
nss_ldap from ??
openssl from ??
samba from ??
My first set was that i complied samba - WRONG!!!
I needed krb5(kerberos v5) first installed along with OPENldap. so i got krb5 and openldap installed. wonderful. then installed samba. wonderful. then read about nss_ldap is better than PAM so i installed it along with openssl.
krb5 doesn't need a /etc/krb5.conf from what i have read. i could be wrong. i have tried both ways.
part of my issue is that i'm a green twig when it comes to linux but i chose slackware because it was close to unix. anyway back to the issue.
_________________________________________________
How do you configure Slackware 10.2 to be used as a file server with Windows 2000 ADS authentication?
I have installed kerberos v5 on slack. kinit
administrator@DOMAIN.COM ask me for my password i respond and i'm back to a prompt. Wootage I was able to authenticate to Window 2000. With that part done i move on to the next phase.
Code:
root@Magneto:~# testparm
Load smb config files from /etc/samba/smb.conf
Loaded services file OK.
'winbind separator = +' might cause problems with group membership.
Server role: ROLE_STANDALONE
Press enter to see a dump of your service definitions
[global]
workgroup = DOMAIN
server string = Samba Server
log file = /var/log/samba/%m.log
max log size = 50
socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192
load printers = No
disable spoolss = Yes
preferred master = No
enhanced browsing = No
dns proxy = No
idmap uid = 100000-200000
idmap gid = 100000-200000
template shell = /bin/tcsh
winbind separator = +
winbind cache time = 1800
winbind enum users = No
winbind enum groups = No
winbind use default domain = Yes
ok so i got that far. i don't know if it is right though. so then i do a net help ads.
Code:
root@Magneto:~# net help ads
ADS support not compiled in
no compiled in? how is that possible when i know that my config file for the "make" had
Code:
/* Whether to have KRB5 support */
#define HAVE_KRB5 1
in it as well as
Code:
/* Whether ldap is available */
#define HAVE_LDAP 1
as well as
Code:
./configure --with-winbind --with-smbmount --with-ads --with-ldap
Now what are my steps for getting samba do 'net ads join' with out giving me the error 'ads not complied in'
any help at all would be great. If i can get this figured out i will be on my way to getting rid of MS on my network. just have to take it a step at a time with this. File server is first.
If you need other config files please let me know will be happy to post them here and get some things figured out.
