[Samba-it] Samba "legge" gli utenti di windows 2003

Poliedrasrl.it - Pino Andrea a.pino at poliedrasrl.it
Tue Sep 20 14:38:02 MDT 2005 

Finalmente ho capito che la strada dovrebbe essere winbind (correggetemi se 
sbaglio)!
Ho seguito questo howto: http://linuxdidattica.org/docs/samba/samba9.html

Il client linux è una fedora core 1 mentre il pdc è win2003sp1
Samba è 3.0.7-2

In sostanza ho modificato smb.conf inserendo:

################################################################
   workgroup name = nome_dominio_win
   encrypt password = yes
   security = domain
   password server = nome_PDC_WIN
; impostazioni per il demone winbindd   winbind separator = +
   template shell = /bin/bash
   template homedir = /home/%D/%U
   winbind uid = 10000-20000
   winbind gid = 10000-20000
   winbind enum users = yes
   winbind enum groups = yes
#################################################################
Il mio /etc/pam.d/system-auth è:

auth        required      /lib/security/$ISA/pam_env.so
auth        sufficient    /lib/security/$ISA/pam_winbind.so
auth        sufficient    /lib/security/$ISA/pam_unix.so likeauth nullok 
use_first_pass
auth        required      /lib/security/$ISA/pam_deny.so

account     required      /lib/security/$ISA/pam_unix.so

password    required      /lib/security/$ISA/pam_cracklib.so retry=3 type=
password    sufficient    /lib/security/$ISA/pam_unix.so nullok use_authtok 
md5 shadow
password    required      /lib/security/$ISA/pam_deny.so

session     required      /lib/security/$ISA/pam_limits.so
session     required      /lib/security/$ISA/pam_unix.so
#################################################################
E /etc/pam.d/login e':
auth       required     pam_securetty.so
auth       required     pam_stack.so service=system-auth
auth       required     pam_nologin.so
account    sufficient   pam_winbind.so
account    required     pam_stack.so service=system-auth
password   required     pam_stack.so service=system-auth
session    required     pam_stack.so service=system-auth
session    required     pam_mkhomedir.so skel=/etc/skel/ umask=0022
session    optional     pam_console.so
#################################################################

net rpc join -S serverone -U Administrator
Password:
Joined domain DOMINIO.

wbinfo -g
BUILTIN+System Operators
BUILTIN+Replicators
BUILTIN+Guests
BUILTIN+Power Users
BUILTIN+Print Operators
BUILTIN+Administrators
BUILTIN+Account Operators
BUILTIN+Backup Operators
BUILTIN+Users

wbinfo -u
Error looking up domain users

Dove sbaglio?
Grazie a tutti!!!


----- Original Message ----- 
From: "Simo Sorce" <simo.sorce at xsec.it>
To: <samba-it at xsec.it>
Sent: Wednesday, September 07, 2005 4:53 PM
Subject: Re: [Samba-it] Samba "legge" gli utenti di windows 2003


On Wed, 2005-09-07 at 16:29 +0200, Poliedrasrl.it - Pino Andrea wrote:

> La domanda è questa: è possibile far sì che samba utilizzi gli
> utenti e le relative
> password del domino e a questi dare o meno la possibilità di vedere le
> share di se stessa?

La risposta è: si










vedi:
http://www.samba.org/samba/docs/man/Samba3-HOWTO/domain-member.html


simo.



-- 
Simo Sorce - simo.sorce at xsec.it
Xsec s.r.l. - http://www.xsec.it
via Garofalo, 39 - 20133 - Milano
mobile: +39 329 328 7702
tel. +39 02 2953 4143 - fax: +39 02 700 442 399

_______________________________________________
Samba-it mailing list
Samba-it at xsec.it
https://lists.xsec.it/mailman/listinfo/samba-it

More information about the samba-it mailing list