[Samba] Help needed with installation

Kees van Vloten keesvanvloten at gmail.com
Fri Dec 10 14:43:27 UTC 2021 

Hi Jeroen,

Samba AD provides ldap + kerberos, ideal for central user management and 
single-sign-on.
Look at Louis' repo for recent Ubuntu or Debian packages.

Generally I use kerberos for authentication and ldap (with nested 
groups) for rbac.

- Kees


On 10-12-2021 15:36, L.P.H. van Belle via samba wrote:
> Hai Jeroen,
>
> So.. there is not modules ipasam in samba.
>
> At least,
> Debian, it only exists (currently) in Debian SID.   (4.9.7-3+b1)
> Ubuntu, it only exists (currently) in Ubuntu Bionic (4.7.0~pre)
> *( Both NOT usable).  As Rowland said already..
> Use samba AD Or change the Ubuntu server to Centos.
>
> Samba AD to MIT Kerberos upstream as shown in the bug report,
> maybe with Samba 4.16 (Work in progress)
>
> Also, setup samba AD and you have ldap.
>
>
> Greetz,
>
> Louis
>
>> -----Oorspronkelijk bericht-----
>> Van: samba [mailto:samba-bounces at lists.samba.org] Namens
>> Jeroen Baten via samba
>> Verzonden: vrijdag 10 december 2021 15:31
>> Aan: samba at lists.samba.org
>> Onderwerp: Re: [Samba] Help needed with installation
>>
>>
>> Op 10-12-2021 om 15:25 schreef Rowland Penny via samba:
>>> On Fri, 2021-12-10 at 14:13 +0000, Jeroen Baten via samba wrote:
>>>> Hi,
>>>>
>>>> I am trying to connect an Ubuntu 20.04 samba server to FreeIPA
>>>> (running
>>>> on CentOS).
>>>>
>>>> On Ubuntu I get " No builtin nor plugin backend for ipasam found",
>>>> the
>>>> smb.conf has "passdb backend = ipasam:ldap://ipa.company.com".
>>>>
>>>> What am I missing?
>>> The fact that you cannot build ipasam.so on Ubuntu.
>>>
>>>> What book to buy? What RTFM did I miss?
>>> This bug report:
>>>
>>> https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1552249
>> Yes, I found that but it started in 2016 so I hoped it would be
>> fixed/solved.
>>>> I really searched a lot but to no avail. Help!
>>> How about running a Samba AD DC instead of freeipa ?
>> I know Samba is an amazing project, but is that setup usable
>> for central
>> user management for other applications? With an LDAP backend
>> for those
>> apps not living in a Windows world?
>>
>>
>> Somebody suggested killing the Ubuntu fileserver and switch
>> to CentOS 8.
>> That seems to work.
>>
>> Does that mean that Samba works better on CentOS than on
>> Ubuntu? Somehow
>> I would not expect Ubuntu or Canonical to shoot themselves in
>> the foot
>> by not supporting authenticating Samba to a pretty well known
>> standard
>> product like FreeIPA. But maybe I am missing the point here.
>>
>>
>>> Rowland
>>>
>>>
>>>
>> -- 
>> Jeroen Baten              | EMAIL :  JBATEN at I2RS.NL
>>    ____  _  __              | web   :  www.i2rs.nl
>>     |  )|_)(_               | tel   :  +31 (0)648519096
>>    _|_/_| \__)              | Frisolaan 16, 4101 JK,
>> Culemborg, the Netherlands
>>
>>
>> -- 
>> To unsubscribe from this list go to the following URL and read the
>> instructions:  https://lists.samba.org/mailman/options/samba
>>
>>
>

More information about the samba mailing list