I asked the very same question a few weeks ago, but no answer yet.
The only method I see is to install samba extensions in FreeIPA's LDAP
directory, and bind samba with LDAP. There may be a lot of difficulties
with password management doing this, that's why I'd like to get a better
2015-07-31 16:03 GMT+02:00 Matt . <yamakasi....@gmail.com>:
> Hi Guys,
> I'm really struggeling getting a NON AD Samba server authing against a
> FreeIPA server:
> Ubuntu 14.04 -> Samba (no AD) / SSD 1.12.5
> CentOS 7.1 -> FreeIPA 4.1
> Now this seems to be the way:
> But as this, which I also found on the mailinglists:
> NOTE: Only Kerberos authentication will work when accessing Samba
> shares using this method. This means that Windows clients not joined
> to Active Directory forest trusted by IPA would not be able to access
> the shares. This is related to SSSD not yet being able to handle
> NTLMSSP authentication.
> It might not be that easy to have a Samba Shares only server.
> Any idea here how to accomplish ?
> Manage your subscription for the Freeipa-users mailing list:
> Go to http://freeipa.org for more info on the project
Manage your subscription for the Freeipa-users mailing list:
Go to http://freeipa.org for more info on the project