[Samba-it] Samba "legge" gli utenti di windows 2003
Poliedrasrl.it - Pino Andrea
a.pino at poliedrasrl.it
Tue Sep 20 14:38:02 MDT 2005
Finalmente ho capito che la strada dovrebbe essere winbind (correggetemi se
sbaglio)!
Ho seguito questo howto: http://linuxdidattica.org/docs/samba/samba9.html
Il client linux è una fedora core 1 mentre il pdc è win2003sp1
Samba è 3.0.7-2
In sostanza ho modificato smb.conf inserendo:
################################################################
workgroup name = nome_dominio_win
encrypt password = yes
security = domain
password server = nome_PDC_WIN
; impostazioni per il demone winbindd winbind separator = +
template shell = /bin/bash
template homedir = /home/%D/%U
winbind uid = 10000-20000
winbind gid = 10000-20000
winbind enum users = yes
winbind enum groups = yes
#################################################################
Il mio /etc/pam.d/system-auth è:
auth required /lib/security/$ISA/pam_env.so
auth sufficient /lib/security/$ISA/pam_winbind.so
auth sufficient /lib/security/$ISA/pam_unix.so likeauth nullok
use_first_pass
auth required /lib/security/$ISA/pam_deny.so
account required /lib/security/$ISA/pam_unix.so
password required /lib/security/$ISA/pam_cracklib.so retry=3 type=
password sufficient /lib/security/$ISA/pam_unix.so nullok use_authtok
md5 shadow
password required /lib/security/$ISA/pam_deny.so
session required /lib/security/$ISA/pam_limits.so
session required /lib/security/$ISA/pam_unix.so
#################################################################
E /etc/pam.d/login e':
auth required pam_securetty.so
auth required pam_stack.so service=system-auth
auth required pam_nologin.so
account sufficient pam_winbind.so
account required pam_stack.so service=system-auth
password required pam_stack.so service=system-auth
session required pam_stack.so service=system-auth
session required pam_mkhomedir.so skel=/etc/skel/ umask=0022
session optional pam_console.so
#################################################################
net rpc join -S serverone -U Administrator
Password:
Joined domain DOMINIO.
wbinfo -g
BUILTIN+System Operators
BUILTIN+Replicators
BUILTIN+Guests
BUILTIN+Power Users
BUILTIN+Print Operators
BUILTIN+Administrators
BUILTIN+Account Operators
BUILTIN+Backup Operators
BUILTIN+Users
wbinfo -u
Error looking up domain users
Dove sbaglio?
Grazie a tutti!!!
----- Original Message -----
From: "Simo Sorce" <simo.sorce at xsec.it>
To: <samba-it at xsec.it>
Sent: Wednesday, September 07, 2005 4:53 PM
Subject: Re: [Samba-it] Samba "legge" gli utenti di windows 2003
On Wed, 2005-09-07 at 16:29 +0200, Poliedrasrl.it - Pino Andrea wrote:
> La domanda è questa: è possibile far sì che samba utilizzi gli
> utenti e le relative
> password del domino e a questi dare o meno la possibilità di vedere le
> share di se stessa?
La risposta è: si
vedi:
http://www.samba.org/samba/docs/man/Samba3-HOWTO/domain-member.html
simo.
--
Simo Sorce - simo.sorce at xsec.it
Xsec s.r.l. - http://www.xsec.it
via Garofalo, 39 - 20133 - Milano
mobile: +39 329 328 7702
tel. +39 02 2953 4143 - fax: +39 02 700 442 399
_______________________________________________
Samba-it mailing list
Samba-it at xsec.it
https://lists.xsec.it/mailman/listinfo/samba-it
More information about the samba-it
mailing list