[Samba] Re: Samba & LDAP, with XP and Linux clients

David Collins david.8.collins at gmail.com
Sat Oct 4 10:25:55 GMT 2008


I went through the same process that you did, for the same reason if I
understand you right - I wanted to have one central user database for
authenticating both Windows clients and Linux (ie. posix) clients.  My
(Samba/Posix) LDAP server is implemented on Hardy Xubuntu and I use the
smbldap-tools commands for creating user accounts, changing passwords, etc.
and avoid using any other commands, but use Luma to check the LDAP data and
change simple attribute values.
I have recorded the process that I used in
https://help.ubuntu.com/community/OpenLDAP-SambaPDC-OrgInfo-Posix .
Maybe this might be of some help.

David Collins

--------- Forwarded message ----------
From: "Dave Beach" <drbeach at rogers.com>
To: <samba at lists.samba.org>
Date: Thu, 2 Oct 2008 10:11:42 -0400
Subject: [Samba] Samba & LDAP, with XP and Linux clients
Hello - I'm not sure if this is the right place to ask, so if not I will be
grateful to learn of a more appropriate mailing list.

I have a Slackware box (2.6.26 kernel) running Samba 3.0.25b (yes, I know,
I'll upgrade soon). This machine provides DC functionality for several
Windows XP workstations in my house. I recently changed the backend password
database to OpenLDAP (v2.3.33) specifically because I wanted to start
introducing Linux clients to the domain as well. I thought everything went
well with the database migration, and all the XP clients seemed to continue
to interact with the DC normally (it may be relevant here to note that I
only use local profiles on the workstations, and no roaming profiles at

I brought up a Debian (v4.0.x) workstation, and am having problems
authenticating on it with a valid domain username. My experiences are
causing me to question whether I fully understand my own OpenLDAP
implementation and Samba reconfiguration, along with the necessary additions
of things like NSS, PAM, etc.

I'd like to have a fairly detailed discussion of configurations and steps
for just about all of these things, which is why I'm not sure this is
exactly the right mailing list. I'd also be very willing to take a
discussion offline to e-mail with anyone who may be willing to help out.

So, before I post stuff that may be wildly off-topic, I thought I'd ask.
Please let me know.

More information about the samba mailing list