[Samba] Folding Samba into existing PAM_LDAP?

Jehan PROCACCIA Jehan.Procaccia at int-evry.fr
Wed May 5 07:35:51 GMT 2004


Gerald (Jerry) Carter a écrit :

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Jehan PROCACCIA wrote
> :
> |> oops, I didn't noticed that pam was not compiled by default !
> |> [root at cobra3 /usr/src/redhat/BUILD/samba-3.0.3/source]
> |> $ ./configure --help | grep pam
> |>  --with-pam              Include PAM support (default=no)
> |
> |> I rebuild ...
> |> Anyway, if you have a doc or advices ...
>
> There should be something in the HOWTO collection
> included in the tarball.

Actually that works just fine, there's nearly nothing to be done to make 
samba read auth information from ldap.
compile samba --with-pam (also --with-pam_smbpass but don't knwo if it 
is used ?)
run authconfig on RedHat/fedora to use Ldap auth
set encrypt-password = no in smb.conf
and that's it ;-)
I've been reading and playing with samba-ldap docs and sample conf for a 
week now, and didn't realized that what I needed was so simple.
For My Information, why people struggle with adding sambaSAMAccount ldap 
information to their ldap database ?
1) in order to replace a win NT server (PDC) ?
2) to have a SSO between linux and windows clients ?
that's all the reasons ?

thanks again.

>
>
>
> cheers, jerry
>
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.4 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iD8DBQFAl8OiIR7qMdg1EfYRAtPeAKCTNK3nnW6q+pX8ABSNqzOHWTOnZwCg2ZlR
> zoC7htrKr43D/VjxnN44PSE=
> =8NR+
> -----END PGP SIGNATURE-----





More information about the samba mailing list