[Samba] ldap user login issue

Rowland Penny rpenny at samba.org
Mon Aug 22 11:59:48 UTC 2016

On Mon, 22 Aug 2016 10:53:01 +0000
Parag Khuraswar <parag_k at citilindia.com> wrote:

> Hi Rowland,
> So as per your suggestion I should configure Samba 4 AD Domain and
> whatever I have configured now is Active Directory Domain Controller.
> Correct ? I will give you a brief idea of my setup & requirement,
> I have 1 RHEL server on which newly installed Openldap is configured
> for user authentication. (this is the only Linux Server in my
> environment), I have all windows 7 machines as client machines. I
> need Single Sign On (SSO).For this I want to add all client in one
> Domain so that Openldap user will be login in all client machines. To
> add all windows client machine in one domain I want to configure
> SAMBA domain controller/Samba PDC/Samba 4 AD Domain whichever will
> fulfill my requirement with the OpenLDAP at backend.

If you set up Samba 4 as an AD DC, you can then use this as the Domain
Controller for your windows machines, this way you will get SSO. You do
not need 'cals' with a Samba AD DC.

If you have any Unix machines, you can also extend your windows users
to become Unix users as well, you do this by adding RFC2307
attributes to the users.

Samba 4 running as an AD DC includes its own LDAP server that can be
used much the same as Openldap.

All of the info is on the Samba wiki, but if you have any questions,
just ask.


More information about the samba mailing list