[Samba] SUCCESS report: samba3 as single-sign-on provider in
heterogeneous network
Marcus Blomenkamp
Marcus.Blomenkamp at epost.de
Wed Oct 8 07:43:09 GMT 2003
Hi all,
to raise the bug vs success ratio i'd like to express my gratitude to all
samba members and those who, though not in-core developers, generously
supported noobs like me on this mail list.
I've set up an environment two months ago and it has run without glitches or
tweaks since then. Now as misusing my family as beta testers has worked out
so nicely i will deploy an identical setup in the institute i'm working for.
Samba and OpenLDAP in pair function as single-sign-on provider. All
information (passwords, users, mappings etc) is stored in ldap under strict
permission policies - all within ldap except the password to access ldap. :)
Authentication is handled centrally through samba. Clients are debian woody
and windows xp machines joined into the domain. The network is heterogenous
itself with some machines sitting on wireless lan. Roaming profiles perform
great with only one warning being spit out on the winxp machines: 'cannot
find active directory controller' or similar ;)
Unix clients currently suck their uid/gid information directly from ldap as
i'm still relying upon NFS for home directory access. I've setup auto-mount
smb/cifs home dirs through pam_mount too, however smbfs/cifs seem far from
usable in respect of unix specialties such as absolute symbolic links. Has
anythind happened in this direction recently? This would definitively be the
dot on the i.
big thanks from here, Marcus
More information about the samba
mailing list