[Samba] "security = server" vs "security = domain" + samba auth problems

Andrew Bartlett abartlet at samba.org
Fri Dec 6 11:23:43 MST 2013


On Sat, 2013-12-07 at 07:21 +1300, Andrew Bartlett wrote:
> On Wed, 2008-08-13 at 11:52 +0930, Jake Carroll wrote:
> > Hi all,
> > 
> > So, in a long running battle with samba service provisioning, I've run  
> > up against an authentication problem. It was outlined in an email to  
> > the list a few days ago. After coming to the conclusion that it is not  
> > a kerberos issue (the kerberos MIT list helped me work through this),  
> > I can now be fairly assured me issues are related to my samba config.
> 
> > 
> > Well, of course I don't have this. I have a kerberised samba solaris  
> > host using an OpenLDAP system as a PDC/KDC. How does one achieve  
> > "security = domain" in this circumstance? How does my samba server  
> > join the OpenLDAP "domain" per se?
> 
> If the 'samba solaris host using an OpenLDAP system as a PDC' is a
> genuine PDC, then it is hosting a domain of one kind or another. 
> 
> If it isn't, then configure it so it is. 

(and I realise that again, I'm starting to reply to years-old messages
on the samba list...  Oops). 

Andrew Bartlett

-- 
Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba




More information about the samba mailing list