Does Samba 4 currently support SSL secured LDAP (636)?
Michael Wood
esiotrot at gmail.com
Wed Apr 3 08:21:32 MDT 2013
Hi
On 3 April 2013 15:08, Ricky Nance <ricky.nance at weaubleau.k12.mo.us> wrote:
> You might possibly need the libldap2-dev, and the libgnutls-dev (those are
> the ubuntu/debian packages, so get the ones for your distro). If you didn't
> have those when you ./configured, you will need to redo ./configure && make
> && make install (this shouldn't harm your existing setup).
>
> Ricky
In the past I think I also had to use something like:
./configure --enable-gnutls
to get this working, but it was a while ago and things might have changed.
> On Wed, Apr 3, 2013 at 5:46 AM, Gémes Géza <geza at kzsdabas.hu> wrote:
>
>> Hi,
>>
>> Hi!
>>>
>>> I currently maintain a small IT shop supporting Java developers. In this
>>> setup I use W2008r2 as directory solution to glue together everything from
>>> Windows terminals server to Linux SSH auth and stuff like Jenkins, JIRA and
>>> other tools.
>>>
>>> Right now I'm building a test setup using Samba4 instead of Windows AD.
>>> Currenty I've got an Debian box with a self compiled distribution of Samba
>>> 4.0.3. I've successfully joined a W2008 member server and configured JIRA
>>> and Confluence to use the Samba4 based directory. All well and promising.
>>>
>>> One the the things I setup in the Windows AD based environment is LDAPS
>>> (tcp 636) access to AD. Is the same thing possible using Samba4.0.3. or is
>>> this on the wish list / road map ? I tried searching the Interwebs but did
>>> not find any useable information. Any pointers would be greatly appreciated.
>>>
>>> Best wishes,
>>>
>>> Eelco Maljaars
>>>
>>>
>>>
>>> info at maljaars-it.nl
>>> 06 34 44 53 62
>>> http://www.maljaars-it.nl
>>>
>>>
>>>
>>> You could check with netstat -lpn if samba is listening on tcp/636 or
>> not. If yes you should put the right certificates/keys in
>> /usr/local/samba/private/tls (if you installed samba to /usr/local/samba)
>>
>> Regards
>>
>> Geza Gemes
--
Michael Wood <esiotrot at gmail.com>
More information about the samba-technical
mailing list