[Samba] Authentication of user through Win2k to Samba PDC failed
Pablo Molina Candel
pmc2 at alu.um.es
Wed Feb 18 10:47:13 GMT 2004
I have set up a Samba PDC with LDAP password backend schema. I found the way of
connecting win2k workstations to this Samba server by setting the
parameter "workgroup" (in smb.conf) to the name of the domain I created
previously in Samba/LDAP.
Once in win2k workstations, I changed the identification from workgroup members
to domain. But when validating, it asked for any user who belongs to that
domain.
I am logged in win2k with a user that is already created in Samba.
What's the problem?
It doesn't matter the user (in Samba) I try to connect from win2k, but it says
both username and password are unknown.
I attach here my smb.conf file:
# Samba config file created using SWAT
# from 0.0.0.0 (0.0.0.0)
# Date: 2004/02/16 15:42:24
# Global parameters
[global]
domain master = Yes
preferred master = yes
local master = yes
domain logons = yes
directory mask = 0770
passdb backend = ldapsam:ldap://localhost:389
logon script = logon.cmd
veto files = /*.eml/*.nws/riched20.dll/*.{*}/
printing = cups
force directory mode = 0770
ldap admin dn = cn=root,dc=my,dc=domain
#logon path = \{}\{}%N\{}profiles\{}%U
#logon path = /var/lib/samaba/netlogon
workgroup = LINUXTEST
os level = 255
create mask = 0770
wins support = true
ldap machine suffix = ou=machines
printcap name = CUPS
#logon home = \{}\{}%N\{}\{}%u\{}winprofile
netbios name = LINUXTEST
force create mode = 0770
ldap group suffix = ou=Groups
ldap filter = (&(uid=%u)(objectclass=sambaSamAccount))
logon drive = H:
ldap user suffix = ou=People
auto services = homes
time server = Yes
security = user
map to guest = Bad User
socket options = TCP_NODELAY SO_RCVBUF=8192 IPTOS_LOWDELAY
SO_SNDBUF=8192
ldap suffix = dc=my,dc=domain
ldap ssl = off
hide unreadable = yes
#hosts allow = 192.168.0.0/255.255.255.0 127.0.0.1
#hosts deny = all
[homes]
comment = Home Directories
valid users = %S
read only = No
create mask = 0740
directory mask = 0750
browseable = No
[printers]
comment = All Printers
path = /var/tmp
create mask = 0600
printable = Yes
browseable = No
[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = @ntadmin, root
force group = ntadmin
create mask = 0664
directory mask = 0775
[supersamba]
user = @ldapusers
path = /usr/local/shares/super
writeable = yes
comment = Samba ist Super
valid users = @ldapusers
[netlogon]
path = /var/lib/samba/netlogon
write list = root
read only = yes
guest ok = yes
browseable = no
[profiles]
path = /var/lib/samba/profiles
browseable = no
read only = no
directory mask = 0700
create mask = 0600
-------------------------------------------------
This mail sent through IMP: http://horde.org/imp/
More information about the samba
mailing list