[Samba] Re: Samba3 ADS without Microsoft?
paul k
paul at subsignal.org
Thu Oct 9 12:55:43 GMT 2003
John H Terpstra wrote:
> On Wed, 8 Oct 2003, Mike wrote:
>
>
>>I've setup samba to use ldap.
>>I've propogated the directory.
>>I've setup the kerberos realm.
>>
--snipp----
> However, I'd appreciate a crystal clear understanding of precisely what
> you are trying to implement and how you want it to work.
>
> - John T.
Just guessing,
-Setting up samba as PDC
-Setting up (MIT) kerberos
-Setting up LDAP
-Storing account Information in LDAP
-Creating a service ticket in kerberos like smbd/host.foo
-Exporting to a keytab and telling samba where to look for
-ksetup W2k SP3+ to use MIT REALM and map the principal to the
sambaaccount in LDAP
-authenticate to samba PDC with kerberos credentials obtained from the KDC
greetings
Paul
More information about the samba
mailing list