On 01/02/2007, at 12:23 AM, Torsten Becker wrote:
Hello!
I tried to run a samba3 server as pdc for windowsXP clients with
ldap backend and kerberos authentication.
I stuck with these two possibilities:
1. Samba is pdc, winxp is domain-member, users are autheticated
against smbpasswords within ldapsam.
If the kerberos password of the korresponding principal has the
same password, the users get a ticket from the kdc after windows
logon.
But I have two password databases: ldapsam and kerberos
I currently have this setup at my place of work. The only catch is I
have to use that I have to install the Mit Kerberos for Windows
release in order to get the kerberos tickets from the KDC at login -
and not all kerberised windows apps know about the Mit kerberos
libraries for windows :( (fortunately the postgres ODBC drivers,
mozilla firefox and thunderbird, and putty are so aware). Is this
what you had in mind, or do you actually have a way to convince
Windows XP itself to get a ticket from the KDC after login to the
Samba domain? I would be very interested if you did.
--
Matt Skerritt
[EMAIL PROTECTED]
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba