[Samba] Samba Internal DNS vs. BIND_DLZ
L.P.H. van Belle
belle at bazuin.nl
Fri Aug 28 06:29:23 UTC 2015
>We *require*, not desire, but *require* OpenLDAP. OpenLDAP is used
>for, amongst other things, a Corporate email address book and by the
>RADIUS server.
wel.. same here, But you can use the ldap of samba,.. i dont see you problem..
coperate e-mail adresses in ldap, wel.. i use zarafa mail server,
which is integrated in ldap also. i extended the schema of samba for that.
i now have multiple adresbooks and other "trick" accounts and/or users/group
for other things.
as by example one of my postfix configs.
server_host = ldap://dc1.internal.domain.tld:389 ldap://dc2.internal.domain.tld:389
search_base = OU=General-Aliasses,OU=Company,DC=internal,DC=domain,DC=tld
version = 3
bind = yes
bind_dn = CN=ldap-bind,OU=Service-Accounts,OU=Company,DC=internal,DC=domain,DC=tld
bind_pw = MyVerySecretPassword
scope = sub
query_filter = (&(objectClass=contact)(displayName=%s))
result_attribute = description
Here in this case for example, i create a contact, and use the displayName and results in description.
and for my users an other filter like..
query_filter = (&(objectClass=person)(zarafaAccount=1)(|(mail=%s)(otherMailbox=%s)))
result_attribute = mail
so, again, if needed extend you schema and enjoy your samba AD..
go here :
https://wiki.samba.org/index.php/User_Documentation
scrol to the bottem, there are also other examples
then
https://wiki.samba.org/index.php/VPN_Single_SignOn_with_Samba_AD
and..
https://wiki.samba.org/index.php/VPN_Single_SignOn_with_Samba_AD#Install_.26_Configure_a_Radius_Server
here is your radius setup example.
Greetz,
Louis
>-----Oorspronkelijk bericht-----
>Van: samba [mailto:samba-bounces at lists.samba.org] Namens Jim Seymour
>Verzonden: vrijdag 28 augustus 2015 02:45
>Aan: samba at lists.samba.org
>Onderwerp: Re: [Samba] Samba Internal DNS vs. BIND_DLZ
>
>On Thu, 27 Aug 2015 17:00:28 -0400
>Robert Moskowitz <rgm at htt-consult.com> wrote:
>
>> Ah, LDAP is included within Samba, I find. Don't install provided
>> one...
>[remainder snipped]
>
>Yikes!
>
>I thought it awfully suspicious that Samba required so few additional
>packages and so little "glue work" to get an AD PDC going. Now I
>know why.
>
>We *require*, not desire, but *require* OpenLDAP. OpenLDAP is used
>for, amongst other things, a Corporate email address book and by the
>RADIUS server. Eventually the entire set of network directory data
>that currently resides in and is served by NIS+ will be in LDAP.
>
>I'm beginning to suspect this is going to be Not Much Fun :(
>
>Regards,
>Jim
>--
>Note: My mail server employs *very* aggressive anti-spam
>filtering. If you reply to this email and your email is
>rejected, please accept my apologies and let me know via my
>web form at <http://jimsun.LinxNet.com/contact/scform.php>.
>
>--
>To unsubscribe from this list go to the following URL and read the
>instructions: https://lists.samba.org/mailman/options/samba
>
>
More information about the samba
mailing list