[Samba] Kerberos requirements for Samba and AD Membership

Gerald (Jerry) Carter jerry at samba.org
Wed Jun 8 15:02:55 GMT 2005

Hash: SHA1

Andy Pierce wrote:

| Hello. I currently have Samba running on AIX and
| joined to an NT4 domain. I need to change this
| membership to new Active Directory domain. Yes, it
| is running in Native Mode. I understand that Kerberos
| is *the* requirement to make this work. Are there
| any special Kerberos versions, configuration
| options, etc. that are required?

native mode only means no NT4 BDCs.  You can still
run 'security = domain' with native mode AD.

But if you want kerberos, make sure you have
current MIT or heimdal libs and OpenLDAP 2.2.x
client libraries.  Samba will need to link
against these.

Beyond this, there is a lot of existing documentation
on configuring Samba as member server.

cheers, jerry
Alleviating the pain of Windows(tm)      ------- http://www.samba.org
GnuPG Key                ----- http://www.plainjoe.org/gpg_public.asc
"I never saved anything for the swim back."     Ethan Hawk in Gattaca
Version: GnuPG v1.4.0 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org


More information about the samba mailing list