[Samba] Problem with 02 domains on a single PDC

Allysson Steve Mota Lacerda stevelacerda at gmail.com
Wed Mar 21 11:57:02 GMT 2007


On 3/21/07, Asier Baranguán <abaranguan at elpagestion.com> wrote:
>
> This is not related to yout question, instead is about your setup.
>
> I've seen that you share the same LDAP between two domains, and you share
> the ou's of users, groups and computers. I'm looking for a similar setup for
> my work and your experience would be very useful.


I have Qmail, Samba, Moodle and Squid sharing a single account for each
user. The problem with this integration is related to Samba and Qmail
schemas because it's not possible to have person and sambaSamAccount in a
single entry. I solved this by inserting 'manually' the entries on LDAP. Now
I have an bash script that do all the work to me.

My setup:

Slackware 11.0 with a minimal install. I like to compile all the packages I
need. The script below downloads and compiles the programs I need.

You need to put slapd.conf to /usr/local/openldap/etc/openldap/slapd.conf
and smb.conf to lib dir of each compilation.

If you have any doubt, contact me on GTalk (stevelacerda) or MSN (
stevelacerda at stevelacerda.net).

Suggestions will be helpful.

#!/bin/sh

#------------------------------------------------------#
# SAMBA-LDAP INSTALLATION SCRIPT                       #
# Allysson Steve Mota Lacerda - stevelacerda at gmail.com #
#------------------------------------------------------#

mkdir -p /downloads
cd /downloads

wget http://www.nano-editor.org/dist/v2.0/nano-2.0.3.tar.gz # I LIKE NANO =)
wget http://www.openssl.org/source/openssl-0.9.8d.tar.gz
wget http://mirror.mcs.anl.gov/openssh/portable/openssh-4.5p1.tar.gz
wget http://download-east.oracle.com/berkeley-db/db-4.5.20.tar.gz
wget http://ftp.andrew.cmu.edu/pub/cyrus-mail/cyrus-sasl-2.1.22.tar.gz
wget
ftp://ftp.openldap.org/pub/OpenLDAP/openldap-release/openldap-2.3.33.tgz
wget http://samba.org/samba/ftp/stable/samba-3.0.23d.tar.gz

# NANO

cd /usr/local/src
tar zxvf /downloads/nano-2.0.3.tar.gz
cd nano-2.0.3
./configure --prefix=/usr/local/nano-2.0.3 --enable-all && \
make && \
make install
ln -s /usr/local/nano-2.0.3 /usr/local/nano
echo '/usr/local/nano/lib' >> /etc/ld.so.conf
ldconfig

# OPENSSL

cd /usr/local/src
tar zxvf /downloads/openssl-0.9.8d.tar.gz
cd openssl-0.9.8d
./config --prefix=/usr/local/openssl-0.9.8d \
--openssldir=/usr/local/openssl-0.9.8d shared && \
make && \
make install && \
ln -s /usr/local/openssl-0.9.8d /usr/local/openssl && \
echo '/usr/local/openssl/lib' >> /etc/ld.so.conf && \
ldconfig

# OPENSSH

cd /usr/local/src
tar zxvf /downloads/openssh-4.5p1.tar.gz
cd openssh-4.5p1
./configure --prefix=/usr/local/openssh-4.5p1 \
--with-ssl-dir=/usr/local/openssl --with-libs=-ldl && \
make && \
make install && \
ln -s /usr/local/openssh-4.5p1 /usr/local/openssh && \
echo '/usr/local/openssh/lib' >> /etc/ld.so.conf && \
ldconfig

# DB4

cd /usr/local/src
tar zxvf /downloads/db-4.5.20.tar.gz
cd db-4.5.20/build_unix
../dist/configure --prefix=/usr/local/db-4.5.20 && \
make && \
make install && \
ln -s /usr/local/db-4.5.20 /usr/local/db && \
echo '/usr/local/db/lib' >> /etc/ld.so.conf && \
ldconfig


# CYRUS-SASL

cd /usr/local/src
tar zxvf /downloads/cyrus-sasl-2.1.22.tar.gz
cd cyrus-sasl-2.1.22
env CPPFLAGS="-I/usr/local/openssl/include/openssl \
-I/usr/local/openssl/include" LDFLAGS="-L/usr/local/lib/ \
-L/usr/local/openssl/lib/" \
./configure --prefix=/usr/local/cyrus-sasl-2.1.22 \
--with-bdb-libdir=/usr/local/db/lib \
--with-bdb-incdir=/usr/local/db/include && \
make && \
make install && \
ln -s /usr/local/cyrus-sasl-2.1.22 /usr/local/cyrus-sasl && \
ln -s /usr/local/cyrus-sasl/lib/sasl2 /usr/lib/sasl2 && \
echo '/usr/local/cyrus-sasl/lib' >> /etc/ld.so.conf && \
ldconfig

# OPENLDAP

cd /usr/local/src
tar zxvf /downloads/openldap-2.3.33.tgz
cd openldap-2.3.33
env CPPFLAGS="-I/usr/local/openssl/include/openssl \
-I/usr/local/openssl/include -I/usr/local/db/include \
-I/usr/local/cyrus-sasl/include" LDFLAGS="-L/usr/local/lib/ \
-L/usr/local/openssl/lib/ -L/usr/local/db/lib -L/usr/local/cyrus-sasl/lib" \
./configure --prefix=/usr/local/openldap-2.3.33 --with-cyrus-sasl \
--with-tls --with-ssl --enable-crypt && \
make depend && \
make && \
make install && \
ln -s /usr/local/openldap-2.3.33 /usr/local/openldap && \
echo '/usr/local/openldap/lib' >> /etc/ld.so.conf && \
chmod 700 /usr/local/openldap/var/openldap-data && \
mv /usr/local/openldap/var/openldap-data/DB_CONFIG.example \
/usr/local/openldap/var/openldap-data/DB_CONFIG && \
ldconfig

# SAMBA

cd /usr/local/src
tar zxvf /downloads/samba-3.0.23d.tar.gz
mv samba-3.0.23d samba.admin-3.0.23d
cd samba.admin-3.0.23d/source
env CPPFLAGS="-I/usr/local/openldap/include" \
LDFLAGS="-L/usr/local/openldap/lib" \
./configure --prefix=/usr/local/samba.admin-3.0.23d \
--disable-cups --with-smbmount --with-ldapsam --with-syslog \
--with-quotas --with-acl-support --with-ldap --with-winbind && \
make && \
make install && \
ln -s /usr/local/samba.admin-3.0.23d /usr/local/samba.admin && \
cp /usr/local/src/samba.admin-3.0.23d/examples/LDAP/samba.schema  \
/usr/local/openldap/etc/openldap/schema/
mkdir -p /var/samba/netlogon/admin
mkdir -p /var/samba/profiles/admin
mkdir -p /var/samba/arquivos/admin

cd /usr/local/src
tar zxvf /downloads/samba-3.0.23d.tar.gz
mv samba-3.0.23d samba.labi-3.0.23d
cd samba.labi-3.0.23d/source
env CPPFLAGS="-I/usr/local/openldap/include" \
LDFLAGS="-L/usr/local/openldap/lib" \
./configure --prefix=/usr/local/samba.labi-3.0.23d \
--disable-cups --with-smbmount --with-ldapsam --with-syslog \
--with-quotas --with-acl-support --with-ldap --with-winbind && \
make && \
make install && \
ln -s /usr/local/samba.labi-3.0.23d /usr/local/samba.labi && \
cp /usr/local/src/samba.labi-3.0.23d/examples/LDAP/samba.schema \
/usr/local/openldap/etc/openldap/schema/
mkdir -p /var/samba/netlogon/labi
mkdir -p /var/samba/profiles/labi
mkdir -p /var/samba/arquivos/labi

-- 
Allysson Steve Mota Lacerda
stevelacerda at stevelacerda.net
http://www.stevelacerda.net


More information about the samba mailing list