[Samba] sssd + samba4 not working (yet)
L.P.H. van Belle
belle at bazuin.nl
Wed Feb 19 05:33:00 MST 2014
google for : "If people want, this is how: samba 4.1.3 and sssd 1.11.3 for debian wheezy"
and here you go:
https://lists.samba.org/archive/samba/2014-January/177934.html
outlined what you need.
The order of the file you install with dpkg -i must be correct. ( or setup a apt repo )
and you need samba-dev for sssd to compile, so first samba, and all samba depends.
I did it.. its do-able.
and tip samba 4.1.4 is hard to do, didnt work for me last time, so pik the source of 4.1.3 and start compileing
and if you ask nice i can put them online, but only for a short time.
I dont have the needed line atm for everybody.
I have the source and packages there if you want. ( with needed depends )
apt-cache policy sssd-ad
sssd-ad:
Installed: 1.11.3-1
Candidate: 1.11.3-1
Version table:
*** 1.11.3-1 0
700 http://CENCORED/debian/wheezy/amd64/ Packages
100 /var/lib/dpkg/status
apt-cache policy samba
samba:
Installed: 2:4.1.3+dfsg-2
Candidate: 2:4.1.3+dfsg-2
Version table:
*** 2:4.1.3+dfsg-2 0
700 http://CENCORED/debian/wheezy/amd64/ Packages
100 /var/lib/dpkg/status
and tip, if you start compiling, i advice to use your own compiles samba4 and not the backports.
this is because of needed depends for compiling.
you can try but i didnt test that mix
Best regards,
Louis
>-----Oorspronkelijk bericht-----
>Van: kenneth.westelinck at gmail.com
>[mailto:samba-bounces at lists.samba.org] Namens Kenneth Westelinck
>Verzonden: woensdag 19 februari 2014 12:58
>Aan: steve
>CC: samba at lists.samba.org
>Onderwerp: Re: [Samba] sssd + samba4 not working (yet)
>
>- Updated (using s4domaingroup-change-gid) gidNumber to 513
>(to match what
>it was in my old LDAP + SAMBA setup)
>- Created a new user (1002:513) with samba-tool and made sure
>uidNumber and
>gidNumber are filled in
>- checked with apache directory studio (
>http://www.clearcenter.com/support/documentation/clearos_guides
>/using_apache_directory_studio_with_samba_directory_-_samba_4)
>if attributes are available in LDAP, they are
>
>What's next?
>(in the meantime I'll try to backport sid's sssd package)
>
>
>On Wed, Feb 19, 2014 at 12:31 PM, Kenneth Westelinck <
>kenneth.westelinck at gmail.com> wrote:
>
>> this might work:
>>
>http://linuxcostablanca.blogspot.be/2012/02/samba-4-posix-domai
>n-user.html
>>
>>
>> On Wed, Feb 19, 2014 at 11:58 AM, steve <steve at steve-ss.com> wrote:
>>
>>> On Wed, 2014-02-19 at 08:07 +0100, Kenneth Westelinck wrote:
>>> > All,
>>> >
>>> >
>>> > Keytab should be fine, as I used the instructions from the wiki to
>>> > export it:
>>> > root at bubba3-one:/etc# klist -k krb5.sssd.keytab
>>> > Keytab name: FILE:krb5.sssd.keytab
>>> > KVNO Principal
>>> > ----
>>> >
>>>
>---------------------------------------------------------------
>-----------
>>> > 1 bubba3-one$@EARTH.LOCAL
>>> > 1 bubba3-one$@EARTH.LOCAL
>>> > 1 bubba3-one$@EARTH.LOCAL
>>> > root at bubba3-one:/etc#
>>> >
>>> >
>>> > getent passwd Administrator doesn't return anything
>>> >
>>> >
>>> > I guess I have the uid number stored:
>>> > root at bubba3-one:/etc# wbinfo --user-info Administrator
>>> > EARTH\Administrator:*:0:100::/home/EARTH/Administrator:/bin/false
>>> > root at bubba3-one:/etc#
>>>
>>> getent doesn't work because you do not have the uid:gid
>stored in AD.
>>> Add something like:
>>> uidNumber: 10000
>>> gidNumber: 20513
>>> to the DN of Administrator
>>> and:
>>> gidNumber: 20513
>>> to the DN of Domain Users
>>>
>>> HTH
>>> Steve
>>>
>>> Next question? How?
>>>
>>>
>>>
>>
>--
>To unsubscribe from this list go to the following URL and read the
>instructions: https://lists.samba.org/mailman/options/samba
>
>
More information about the samba
mailing list