enabling secure ldap samba4

Matthieu Patou mat at samba.org
Sun Jun 13 08:56:13 MDT 2010

On 13/06/2010 14:23, Matthias Rohm wrote:
> hey there.
> I am implementing a samba4 AD with radius auth system for various 
> services.
> At wich point samba starts slapd?
Are you using the ldb backend (default) or openldap backend for storing 
ldap ?

> As we know, slapd.conf is just for the configuration, but enabling 
> secure ldap is usually done via /etc/default/slapd config (debian 
> systems).
> Where do I have to change parameters for enabling secure slapd for TLS 
> encrypion? I was not able to find anything in the tree of samba 4.
When using the ldb backend openldap is not used, so you don't need to do 
anything the ldaps protocol is supported by default (and activated), 
when using the openldap (I'm not an expert with this one) it seems that 
I remember that openldap must be started first.
In anycase I suppose that you don't need to configure anything for 
supporting ldaps as samba use a private communication link to talk to 
the backend (otherwise someone could mess up the sam ldb by updating 
directly the ldap).


Matthieu Patou
Samba Team        http://samba.org

More information about the samba-technical mailing list