On Tue, 2003-10-21 at 04:11, Dmitry P. Schegolev wrote: > Hello! > > As I read in samba-docs, samba-3.0.0 cannot be ADC. > > But I have unix kerberos domain and I want for simplicity, that samba PDC > perform user's authentication in kerberos. There is not to propagate any > kerberos principals to windows, but simply PDC perform user's authentication > in kerberos and store all needed account information in openldap. Is it > possible with samba 3.0.0?
You can't make it pass things on to kerberos in any meaningful way, but you could make Samba and your KDC share the LDAP database. The trivial option is simply to run a 'unix password sync', but it's also technicaly possibly (but not implemented) to read the 'type 23' encrypted token for NTLM authentication. Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net
signature.asc
Description: This is a digitally signed message part
-- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
