[abalamut]

Hello, I have the same setup expect I have Ubuntu server (but I think it does not matter).
I would like setup addition file server for our win users, with samba & authentication from OD.
In my Ubuntu box I setup ldap to look to OD & it works. I even modify nsswitch & PAM. I can “getent passwd” & see my OD users, also I setup netatalk on the same box, configure kerberos & I able login to netatalk server using OD credentials. Everything is working expect samba…

I did a little research & found this:
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/passdb.html
samba docs says that Unix(Linux) password & windows passwords stores in different ways, thats why samba use its own passed db.
“Many people ask why Samba cannot simply use the UNIX password database. Windows requires passwords that are encrypted in its own format. The UNIX passwords can’t be converted to Windows-style encrypted passwords. Because of that, you can’t use the standard UNIX user database, and you have to store the LanMan and NT hashes somewhere else.”
So where is password stores in OD? I don’t know. When I check samba configuration file from ox server, there is a line
passdb backend = odsam
using man it is not hard to understand that it is “pdb_odsam – Open Directory account information database for smbd”
As far as I know it is not open source Apple solution to read account information from from OD to samba.

So the main question is – is it possible bind some linux server to OD, setup samba to win users & use credentials dorm OD to authenticate users (kerberos preferred)?

I also found this article on the web
http://blog.irisproservices.com/2010/01/26/using-apple’s-open-directory-pdc-to-authenticate-linux-samba-servers/
I try this setup with no luck, also I post some question, but my comment awaiting for moderation for a some days.

If some one have the setup, please help me

Alex

[abalamut]

Hello, I have the same setup expect I have Ubuntu server (but I think it does not matter).
I would like setup addition file server for our win users, with samba & authentication from OD.
In my Ubuntu box I setup ldap to look to OD & it works. I even modify nsswitch & PAM. I can “getent passwd” & see my OD users, also I setup netatalk on the same box, configure kerberos & I able login to netatalk server using OD credentials. Everything is working expect samba…

I did a little research & found this:
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/passdb.html
samba docs says that Unix(Linux) password & windows passwords stores in different ways, thats why samba use its own passed db.
“Many people ask why Samba cannot simply use the UNIX password database. Windows requires passwords that are encrypted in its own format. The UNIX passwords can’t be converted to Windows-style encrypted passwords. Because of that, you can’t use the standard UNIX user database, and you have to store the LanMan and NT hashes somewhere else.”
So where is password stores in OD? I don’t know. When I check samba configuration file from ox server, there is a line
passdb backend = odsam
using man it is not hard to understand that it is “pdb_odsam – Open Directory account information database for smbd”
As far as I know it is not open source Apple solution to read account information from from OD to samba.

So the main question is – is it possible bind some linux server to OD, setup samba to win users & use credentials dorm OD to authenticate users (kerberos preferred)?

I also found this article on the web
http://blog.irisproservices.com/2010/01/26/using-apple’s-open-directory-pdc-to-authenticate-linux-samba-servers/
I try this setup with no luck, also I post some question, but my comment awaiting for moderation for a some days.

If some one have the setup, please help me

Alex

[Author]

Posts