[Samba] Fwd: Replace completely an AD PKI authentication with Samba ?
samba-th at pfoertner-net.de
samba-th at pfoertner-net.de
Sun Mar 15 14:00:53 UTC 2020
sorry, had a typo in my specific sender address used for the list...
Hi Lionel,
I had been searching for a decent docker image myself a few month ago.
I found lots for a file server, standalone and AD member, a few for a DC
and less than a handfull with a minimum of documentation.
The one I started to work with was this one nowsci/samba-domain
(https://hub.docker.com/r/nowsci/samba-domain)
It was extremely helpful and shoudl be a good starting point fopr you.
However I found a few things not working for me. So I built my own image
based on it.
One thing that forced me to take some detour was the need to separate DC
and FS as I wanted to have POSIX rights management which lead to
clashing ports on the host. The approach taken in nowsci/samba-domain
did not work for me. I ended up in different images for both.
practically mainly init files difffer and could be recombined.
I went for a dedicated docker network with individual IP adresses
separate from that on the host.
I did not plan to publish my stuff as I do not have much time to follow
up on comments and doing documentation. However I'd be more than happy
to share dockerfile, init script and docker-compose file if you are
interested.
Regards
Thomas
Am 14.03.2020 um 19:52 schrieb Lionel Monchecourt:
> Hi,
>
> I'm currently using an AD with PKI/certificate authentication ( some of my
> users are even using smartcards ).
>
> Could I replace my Microsoft AD & certificates with a pure Samba solution ?
> any tricks, non features I should know ?
>
> If so , do you know any docker image maybe that I could start with to do my
> test ? ( or some VM ? )
>
> Thanks _
>
>
>
>
>
--
*Thomas Pförtner, Dipl.-Ing. Univ., PMP*
Wallbergstraße 2 · 85635 Höhenkirchen-Siegertsbrunn · Germany
Tel. +49-8102-8056-130 · Fax -129 · Mob. +49 157 78 85 64 51 · Skype tpf4all
E-Mail: consulting at pfoertner-net.de <mailto:consulting at pfoertner-net.de>
Web: www.pfoertner-net.de <http://www.pfoertner-net.de>
Xing: www.xing.com/profile/Thomas_Pfoertner2
<https://www.xing.com/profile/Thomas_Pfoertner2> Thomas Pförtner
Consulting - Wachstum durch Innovation
More information about the samba
mailing list