[Samba] Howto get Samba to auth. from W2k PDC

Mikko Rautiainen mrautia6 at welho.com
Tue Nov 5 22:47:03 GMT 2002


  Hi,

I would like to get my Samba server to get authetication from Win2000 
domain (PDC).
Does anyone have this working right? My Samba server(mandrake 9) can get 
the
users and groups information from the win2000 server but cannot 
authenticate them.
What is the problem ?

Please help me with this. I have tried looking in mailing lists but 
havent found any help.
And thanks in advance.

Here is my smb.conf

[global]
workgroup = XXX
netbios name = TESTI
server string = Samba Server %v
; message command = /usr/bin/linpopup "%f" "%m" %s; rm %s
; printcap name = lpstat
; load printers = yes
; printing = cups
; printer admin = @adm
; printer admin = @"Domain Admins"
log file = /var/log/samba/log.%m
max log size = 500
; log level = 3

security = domain
password server = *

password level = 4
username level = 4

encrypt passwords = yes
; smb passwd file = /etc/samba/smbpasswd

pam password change = yes
; passwd program = /usr/bin/passwd %u
; passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n
;*passwd:*all*authentication*tokens*updated*successfully*

; username map = /etc/samba/smbusers

; include = /etc/samba/smb.conf.%m

winbind uid = 10000-20000
winbind gid = 10000-20000
winbind separator = +
winbind use default domain = no
template homedir = /home/%D/%U

; obey pam restrictions = yes

template shell = /bin/bash

socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

; interfaces =
; remote browse sync =
; remote announce =
; local master = no

; os level = 33

; domain master = yes

; preferred master = yes

add user script = /usr/sbin/useradd -d /dev/null -g machines -c 'Machine 
Account' -s /bin/false -M %u
add user script = /usr/sbin/useradd -s /bin/false %u

domain admin group = root @wheel

wins server = 192.168.8.1

dns proxy = no


[homes]
comment = Home Directories
browseable = no
writable = yes


[test]
path = /export
comment = test
guest ok = yes
browseable = yes
writable = yes





More information about the samba mailing list