[Samba] connection to AD wtih kerberos and samba
Cyril DE DANILOFF
cyril at fwa.eu
Thu Feb 19 13:55:58 GMT 2009
Hello,
I can not list the users in my AD Domain server with my curx.
I want to centralize authentication sessions unix in the domain Ad.
Help me please.
#net ads join -U administrator
Enter administrator's password:
Using short domain name -- FWAVPC
Joined 'CRUX' to realm 'FWAVPC.LAN'
#wbinfo -u is null.
#wbinfo -g is null.
J want
Smb.conf :
#cat /etc/samba/smb.conf
[global]
realm = FWAVPC.LAN
workgroup = FWAVPC
server string = test
netbiosname = crux
security = ads
password server = 10.0.0.140
winbind separator = +
idmap uid = 1-200000
idmap gid = 1-200000
winbind enum users = yes
winbind enum groups = yes
client use spnego = yes
#client ntlmv2 auth = yes
#encrypt passwords = yes
winbind use default domain = yes
restrict anonymous = 2
client use spnego = yes
winbind nested groups = Yes
domain master = no
local master = no
preferred master = no
os level = 0
template shell = /bin/bash
ldap ssl = off
template homedir = /home/%D/%U
#cat /etc/krb5.conf
[libdefaults]
ticket_lifetime = 24h
default_realm = FWAVPC.LAN
#default_tkt_enctypes = des3-hmac-sha1 des-cbc-crc
#default_tgs_enctypes = des3-hmac-sha1 des-cbc-crc
[realms]
FWAVPC.LAN = {
kdc = 10.0.0.140
default_domain = FWAVPC.LAN
}
[domain_realm]
.yourdomain = FWAVPC.LAN
yourdomain = FWAVPC.LAN
[kdc]
profile = /etc/krb5kdc/kdc.conf
[logging]
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmin.log
default = FILE:/var/log/krb5lib.logog
--
Cyril at fwa.eu
More information about the samba
mailing list