[Samba] Samba4 and sssd authentication not working due "Transport encryption required."

Fosiul Alam fosiul at gmail.com
Sat Sep 3 20:24:07 UTC 2016


Hi Thanks to All.

so i understand that i will have to use ca.pem from Clinet to
authenticaiotn vis tls , is that right ?

also, if i use default tls file which was created by samba4 installation,
do i need to add them into smb.conf ?
I can see the wiki say, if i create selfsigned then i will need add, but I
am not sure if this is true for defautl .pem file ?

bellow is smb.conf

Thanks for the help

# Global parameters
[global]
        bind interfaces only = Yes
        interfaces = lo eth0 eth1
        netbios name = xxxx
        realm = xx.xx
        workgroup = xxx
        server role = active directory domain controller
        idmap_ldb:use rfc2307 = yes
        comment =

[netlogon]
        path = /usr/local/samba/var/locks/sysvol/upc.acc/scripts
        read only = No

[sysvol]
        path = /usr/local/samba/var/locks/sysvol
        read only = No
~


On Sat, Sep 3, 2016 at 2:18 PM, Marc Muehlfeld <mmuehlfeld at samba.org> wrote:

> Hi Fosiul,
>
> Am 03.09.2016 um 14:59 schrieb Fosiul Alam via samba:
> > from Samba4 side i need this help, I can see that sshd has this option,
> can
> > you just tell me by default when i installed samba4 , did it create any
> > .crt file , if yes where? which i can use in sssd tls authenticaiton ?
> > Thanks for the help
>
> # ls -1 /usr/local/samba/private/tls/*.pem
> /usr/local/samba/private/tls/ca.pem
> /usr/local/samba/private/tls/cert.pem
> /usr/local/samba/private/tls/key.pem
>
>
>
> Regards,
> Marc
>
>


-- 
Regards
Fosiul Alam


More information about the samba mailing list