On Tue, 21 May 2002, at 4:37pm, [EMAIL PROTECTED] wrote: > What I'd *like* to do is set up the environment so that all the systems > authenticate against a central LDAP or NT PDC server.
LDAP would use the OpenLDAP PAM functionality. Supposedly, this works like NIS. That is about as much as I know about LDAP. :) Microsoft Windows NT/2000/.NET/whatever is also possible. If all you want to do is integrate your Samba server into an existing NT network, just use the "password server" option in your smb.conf file. You can also get fancy and make your Samba server a full member of the NT domain, but I regard that as a pain in the neck unless actually needed for some reason. You can also have all of Unix authenticate against an NT domain, similar to an NIS setup. Google for "pam smb" and/or "winbind". FWIW, I noticed that, when installing Red Hat 7.2 on my PC at home, that the installer prompted me if I wanted to use local, NIS, SMB, or LDAP authentication. Again, no idea if this actually works. > What about with Solaris? Solaris. That's like Linux, but not as fun, right? ;-) > Do I need any special access granted by the NT PDC to allow hosts to > authenticate, such as a domain account for each machine ? I do not believe so. NT domain machine accounts are mainly useful for Windows management tasks, which of course do not apply to Unix. > The short of it is that I don't want to have to manage user accounts > if I don't have to :) Oh, that's easy to solve. Just give everyone the root password. ;-) (I'm kidding! I'm kidding!) -- Ben Scott <[EMAIL PROTECTED]> | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | ***************************************************************** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *****************************************************************
