Please can someone point me to information as to how I can setup samba 3.0.5 as a simple share server authenticating against AD using LDAP only (i.e. no Kerberos, no Domain Control etc) According to our AD admins the machine doesn't need to be a member of the domain.
I want to take the name and password of whoever is trying to connect to a share, check the validity of the name/password pair and if the name/password pair is valid then lookup the name in the local passwd file (all systems use identical names) and grant share access to their home directory. In a command line world the validity of the name/password pair can, for example, be checked by using the name as the bind dn in a, for example, ldapsearch on that name to AD and if the bind is successful (i.e. no error returned) the name/password pair is valid. So Fred wants to connect to his samba share with password bert; _in effect_ do ldapsearch -h our.AD.server -b "dc=our,dc=domain,dc=uk" -D "cn=Fred,ou=admin,dc=our,dc=domain,dc=uk" cn=Fred this asks for a bind password Bind Password: bert if we don't get an error message then Fred/bert is a valid username/password pair so do a getpwent() to lookup Fred's home directory and grant access to //our.samba.server/Fred Put like this it sounds easy to do, but I've got my mind into terrible knots trying to sort it out. Surely I'm not the first person to want to do this? TIA for any help/guidance Have a good weekend all John John Landamore School of Mathematics & Computer Science University of Leicester University Road, LEICESTER, LE1 7RH [EMAIL PROTECTED] Phone: +44 (0)116 2523410 Fax: +44 (0)116 2523604 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
