Hi,

for this i wrote a howto, its on the samba list.
it covers verything you need.

here's a link=20

http://www.nabble.com/BIG-Samba-howt...813392.html=20

Louis=20

>-----Oorspronkelijk bericht-----
>Van: samba-bounces+louis=3Dvan-belle.nl@lists.samba.org=20
>[mailto:samba-bounces+louis=3Dvan-belle.nl@lists.samba.org]=20
>Namens Michael Fern=E1ndez M.
>Verzonden: woensdag 8 februari 2006 21:16
>Aan: Samba List
>Onderwerp: [Samba] PDC. Samba
>
>Hi, i=B4ve installed Samba Version: 3.0.14a-3sarge1 on Debian Sarge.-
>
>Samba works great like a pdc with system users.... but i want to
>connect with ldap.. but it does not work.-
>
>my ldap suffix is like this:
>
>ou=3Dsamba,o=3Dsernam=20
>ou=3DUsers,ou=3Dsamba,o=3Dorganization
>ou=3DGroups,ou=3Dsamba,o=3Dorganization
>ou=3DComputers,ou=3Dsamba,o=3Dorganization
>ou=3DIdmap,ou=3Dsamba,o=3Dorganization
>sambaDomainName=3Ddebian,ou=3Dsamba,o=3Dorganizati on
>uid=3DAdministrator,ou=3DUsers,ou=3Dsamba,o=3Dorga nization
>uid=3Dnobody,ou=3DUsers,ou=3Dsamba,o=3Dorganizatio n
>cn=3DDomain Admins,ou=3DGroups,ou=3Dsamba,o=3Dorganization
>cn=3DDomain Users,ou=3DGroups,ou=3Dsamba,o=3Dorganization
>cn=3DDomain Guests,ou=3DGroups,ou=3Dsamba,o=3Dorganization
>cn=3DDomain Computers,ou=3DGroups,ou=3Dsamba,o=3Dorganization
>cn=3DAdministrators,ou=3DGroups,ou=3Dsamba,o=3Dorg anization
>cn=3DPrint Operators,ou=3DGroups,ou=3Dsamba,o=3Dorganization
>cn=3DBackup Operators,ou=3DGroups,ou=3Dsamba,o=3Dorganization
>cn=3DReplicators,ou=3DGroups,ou=3Dsamba,o=3Dorgani zation
>
>this was created by smbldap-polulate (from smbldap-tools)=20
>
>if i create a user i cannot conect to the domain, this happend with
>win9x and 200x
>
>mi smb.con is:
>
>[global]
> workgroup =3D debian
> netbios name =3D debian
> server string =3D %h server (Samba %v)
> domain master =3D yes
> local master =3D yes
> preferred master =3D yes
> hosts allow =3D 127.0.0.1 10.0.20.0/255.255.255.0
> domain logons =3D yes
> logon path =3D \\%L\Profiles\%U
> logon script =3D prueba.bat
> logon home =3D \\%L\%U\profile
> dns proxy =3D no
> ldap admin dn =3D cn=3Dadmin,o=3Dsernam
> ldap suffix =3D ou=3Dsamba,o=3Dsernam
> ldap group suffix =3D ou=3DGroups
> ldap user suffix =3D ou=3DUsers
> security =3D user
> encrypt passwords =3D yes
> passdb backend =3D ldapsam:ldap://127.0.0.1
> add user script =3D /usr/sbin/smbldap-useradd -a 'u%'
> delete user script =3D /usr/sbin/smbldap-userdel 'u%'
> add group script =3D /usr/sbin/smbldap-groupadd -p 'g%'
> delete group script =3D /usr/sbin/smbldap-groupdel 'g%'
> add user to group script =3D /usr/sbin/smbldap-groupmod -m '%u' =

'g%'
> delete user from group script =3D /usr/sbin/smbldap-groupmod -x =

'%u'
>'g%'
> set primary group script =3D /usr/sbin/smbldap-groupmod -g '%g' =

'%u'
> add machine script =3D /usr/sbin/smbldap-useradd -w '%u'
> idmap backend =3D ldap:ldap://localhost
> ldap machine suffix =3D ou=3DComputers
> idmap uid =3D 10000-20000
> idmap gid =3D 10000-20000
> log file =3D /var/log/samba/log.%m
> max log size =3D 1000
> syslog =3D 0
> panic action =3D /usr/share/samba/panic-action %d
> security =3D user
> encrypt passwords =3D true
> passdb backend =3D tdbsam guest
> obey pam restrictions =3D yes
> passwd program =3D /usr/bin/passwd %u
>
>
>What i am doing wrong?.-
>
>Can i connect Ldap to Samba without PAM?
>
>Thanks in advance!
>
>Michael.-
>
>
>
>
>
>
>
>
>
>--=20
>To unsubscribe from this list go to the following URL and read the
>instructions: https://lists.samba.org/mailman/listinfo/samba
>


--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba