Fwd: [Samba] Joining a SAMBA 4 TP4 Active Directory with WinXP

Andrew Bartlett abartlet at samba.org
Wed Jun 4 12:30:35 GMT 2008


On Wed, 2008-06-04 at 13:47 +0200, julien.malaise at fr.thalesgroup.com
wrote:
> 
> 	Thanks for your answers and sorry for the inappropriate thread title
> (first time I use mailing lists).
> 
> 	My client is a Win XP pro SP2.
> 	I've compiled Samba with -DPKINIT option

PKINIT is always enabled, so this changes nothing. 

> , and created a krb5.conf
> with the path to the certificates.
> 	Maybe my certification authority should be member of the LDAP group
> "cert publishers" ?
> 
> 	I'm gonna try with alpha 4 release.

You might want to try this with an all-linux setup for clients first, to
resolve which problems are Windows-PKINIT issues, and which are more
generic (as these can hopefully be solved by the very knowlegable
Heimdal community). 

Andrew Bartlett

-- 
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20080604/7ebde4b9/attachment.bin


More information about the samba-technical mailing list