On Wed, Mar 4, 2009 at 9:40 AM, John Aldrich <[email protected]> wrote: > Anyone here have any experience adding a linux box to a Win2k3 Active > Directory?
I've done it with CentOS 5.x and Win 2000 Active Directory. I don't think Win 2003 is any different. Make sure the "smb" and "winbind" services are configured to start at boot, and are currently running. One can, in theory, configure it all using the "system-config-authentication" GUI tool. You want to enable Winbind, with Security Model of "ads". The "Winbind Domain" should be the NetBIOS domain name (FOO); the "Winbind ADS Realm" should be the Active Directory domain name (foo.example.com). You don't need to specify a domain controller. Samba logs copious amounts of information under the /var/log/samba/ directory. Check there for errors. I already had an extensive set of tweaked config files, so I did it manually. I can post the series of steps and commands from my notes if the automatic stuff above doesn't get you anywhere. Doing it step-by-step manually has the advantage of making it easy to isolate the trouble. It's not hard if you're used to Unix command lines and config files. If you're not used to that, it might look a little intimidating, but it's still not really that hard -- akin to editing the registry in NT. FWIW, I followed the Samba documentation, which I thought was pretty good: http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/domain-member.html#ads-member -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
