[Samba] Samba in AD + trusted KDC environment
Andrew Bartlett
abartlet at samba.org
Wed Jun 25 00:32:15 GMT 2003
On Tue, 2003-06-24 at 00:35, Jerome Walter wrote:
> Hi,
>
> I am trying to set a samba server as my fileserver in a Win2k network with a
> AD domain Controller. Authentication is already done against an unix KDC,
> trusted by the DC and everything work fine from now.
>
> When trying to connect i have two problem.
> first is not that related to Samba, as i get a UNKNOWN_SERVER as the reply for
> the TGS-REQ sent by Win2k client. Excuse me if it is ununderstanble for you ;)
>
>
> Second is that event if i configured Samba server with security = domain, set
> up domain as the pre-windows 2000 name of the network, and have done the
> smbpasswd -j RND -r ads.es.efrei.fr (AD DC), authentication is refused from
> Samba server and a password is asked...
>
> Do you know if this last problem could come from the fact that i trust
> authentication from another realm that the one used by AD ?
>
> In fact, i am using Samba 2.2.3-12 from Debian stable, perhaps only 3.0 does
> support this type of fileserver settings ?
Only Samba 3.0 (now in beta) supports ADS/Kerberos for authentication.
Andrew Bartlett
--
Andrew Bartlett abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team abartlet at samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
http://samba.org http://build.samba.org http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20030625/17b68568/attachment.bin
More information about the samba
mailing list