[Samba] Samba and LDAP
infractory at gmail.com
Wed Nov 25 09:44:30 UTC 2015
To perform ldapsearch on AD DC I think you have to authenticate first.
As I don't like typing passwords I'm using here GSSAPI to authenticate
during LDAP searches.
To do that you will need:
- kinit to generate a kerberos ticket
- GSSAPI libraries (perhaps it's that one Debian
8: libsasl2-modules-gssapi-heimdal, on Centos7 I think you would need
- the right ldapsearch command:
ldapsearch -h <YOUR DC> -v -LLL -b 'OU=Domain
Controllers,DC=SAMBA,DC=DOMAIN,DC=TLD' '(objectclass=computer)' dn -Y GSSAPI
Hoping this could help...
2015-11-25 10:21 GMT+01:00 Rowland Penny <rowlandpenny241155 at gmail.com>:
> On 24/11/15 23:56, Jeff Hodson wrote:
>> Ok great! So I'm using the turnkey Linux samba appliance as an ad-dc. It
>> is samba 4.x.
> What you are trying to achieve should be possible, never done it myself,
> try searching using 'active directory' and 'jabber' in the search terms.
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
More information about the samba