[Samba] Samba PDC with Squid NTLM_AUTH

Andrew Bartlett abartlet at samba.org
Thu Mar 23 06:27:19 GMT 2006

On Wed, 2006-03-22 at 09:15 +0100, Martin Hoffmann wrote:
> Hi list,
> Can somebody please enlighten me:
> I have Samba PDC running and want to add Squid with ntlm_auth on the same
> machine!
> As far as i understand ntlm_auth needs winbind!?

Yes, it does.

> So i started winbind, but "wbinfo -u" still ain't working :-) Neither is
> ntlm_auth!

If this is a PDC, you must still join samba to itself with 'net rpc

> Do i have to change my nsswitch.conf to "search" winbind aswell? Currently
> it looks this way:
> passwd:     files ldap
> shadow:     files ldap
> group:      files ldap

No, this should not be changed.

> Which received the Samba users and groups from my ldap backend! Fine!
> Do i have to change it to "files winbind" - does this break some of my Samba
> PDC functionality?
> Searching the internet i found the hint to add the PDCs computer account to
> the Domain!? Is this necessary? Isn't the PDC implicit member of the domain?

No, it must be done explicitly.

> You see i don't want to break anything, so "testing" in my productive
> environment is no option:-(

Then you will break something.  You always must have a test environment.

Andrew Bartlett

Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Student Network Administrator, Hawker College  http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20060323/931ea555/attachment.bin

More information about the samba mailing list