Autentizace samby přes LDAP
Krištof Petr
Petr na Kristof.CZ
Úterý Listopad 16 11:15:00 CET 2004
Jaroslav Ille wrote:
>
> Takže pro začátek zde je smb.conf sekce global:
>
> # Global parameters
> [global]
> dos charset = CP852
> unix charset = ISO8859-2
> workgroup = MDK
> realm = SERVER.VETRNI.NET
Tohle neni potreba.
> netbios aliases = SERVER
> server string = Samba Server PDC %v
> interfaces = eth0
Radeji pridejte i lo.
> bind interfaces only = Yes
> auth methods = sam
> update encrypted = Yes
> map to guest = Bad User
> passdb backend = ldapsam:ldap://ldap.vetrni.net
Na konec patri lomitko, jinak nebude fungovat configure.pl
> passwd program = /usr/bin/passwd %u
> passwd chat = *new*password* %n\n *new*password* %n\n *successfuly*
Neni treba.
> username map = /etc/samba/smbusers
> unix password sync = Yes
> log file = /var/log/samba/log.%m
> max log size = 50
> time server = Yes
> socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192
> hostname lookups = Yes
> logon script = logon.bat
> logon path =
> logon drive = h:
> domain logons = Yes
> os level = 90
> preferred master = Yes
> domain master = Yes
> dns proxy = No
> wins support = Yes
> admin users = root, @root, jarda, @admin
> printer admin = @root
> create mask = 0666
> force create mode = 0666
> directory mask = 0777
> force directory mode = 0777
> hosts allow = 192.168.1.0/255.255.255.0
> hide special files = Yes
> hide unreadable = Yes
> ldap suffix = dc=vetrni,dc=net
> ldap machine suffix = ou=Computers
> ldap user suffix = ou=Users
> ldap group suffix = ou=Groups
> ldap admin dn = cn=admin
Sem bych vypsal cely DN (vcetne suffixu).
> ldap ssl = no
> ldap passwd sync = yes
> -----------------------------------------------------------
>
Další informace o konferenci Linux