Re: [Samba] Novell vs Linux.
Hi, yes, it´s for eDirectory 8.6 but even I´m almost sure it´s correct, I don´t know if it works. Feel free to do what you want with it. I´ll keep the list informated of my progress. I intend to make a howto when I finish this "quest". I´m glad I can help. - Original Message - From: "Gerald Carter" <[EMAIL PROTECTED]> To: "Bruno Gimenes Pereti" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Monday, October 07, 2002 11:54 AM Subject: Re: [Samba] Novell vs Linux. > On Fri, 4 Oct 2002, Bruno Gimenes Pereti wrote: > > > The schema file is at: > > http://www.pereti.hpg.com.br/samba.sch > > Is this for eDirectory 8.6 ? Mind if I include it in > our CVS tree ? > > > > > cheers, jerry > - > Hewlett-Packard http://www.hp.com > SAMBA Team http://www.samba.org > --http://www.plainjoe.org > "SAMS Teach Yourself Samba in 24 Hours" 2ed. ISBN 0-672-32269-2 > --"I never saved anything for the swim back." Ethan Hawk in Gattaca-- > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Novell vs Linux.
On Fri, 4 Oct 2002, Bruno Gimenes Pereti wrote: > The schema file is at: > http://www.pereti.hpg.com.br/samba.sch Is this for eDirectory 8.6 ? Mind if I include it in our CVS tree ? cheers, jerry - Hewlett-Packard http://www.hp.com SAMBA Team http://www.samba.org --http://www.plainjoe.org "SAMS Teach Yourself Samba in 24 Hours" 2ed. ISBN 0-672-32269-2 --"I never saved anything for the swim back." Ethan Hawk in Gattaca-- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Novell vs Linux.
> If you setup a correct ldif file from samba.schema, than announce this > to this list. I think this could be intressting for other novellix' es. > ;-) Hi, I did a schema file with sambaAccount definition that I could import to Linux NDS with the command ndssch. I couldn´t migrate users and groups with the tools provided from openldap-servers (RPM from RedHat) and when I solve this problem I´ll send it to the list. The schema file is at: http://www.pereti.hpg.com.br/samba.sch Bruno. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Novell vs Linux.
Mittwoch den 18.09.2002 um 14:46 CEST +0200, schrieb Bruno Gimenes Pereti: > > I forgot to mention, I can import the definition from the file > rfc2307-usergroup.sch but I can´t import from the samba.schema. Certanly you > saw that the sintaxe of this files are completly different. NDS provides two > applications to import schema, they are "ndssch" and "ldapmodify". ndssch > can´t import samba.schema and ldapmodify uses another kind of file (ldif). > > Do you know how can I do this? A search on novell's website point me to http://www.novell.com/products/edirectory/schema/ There i find some schemas. A look inside this files give me the idea to convert the samba.schema to ldif format. It seems, that the objectdefiniton should be in _one_ line prepend by "objectclass: " This should be similar to attributetype. If you setup a correct ldif file from samba.schema, than announce this to this list. I think this could be intressting for other novellix' es. ;-) -- Frank Matthieß [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Novell vs Linux.
Bruno, The way to do this is to use ConsoleOne -> Tools -> Schema Manager. Create all the attributes Name, ASN1 ID, Syntax *), Flags *) eDirectory does not implement the same types as openLDAP, but "Case Ignore String" should be good enough. The create a class, which inherit "User" and add the previusly created attributes. You might need to import RFC2307 (developer.novell.com) and nov_inet.sch to get all the attributes. Then it should work. If you need more assistance, you can ask in the Novell Support forums: support-forums.novell.com -> novell.support.ds.ldap. Either that, or create a small program which imports the schema file.. Regards/Casper Bruno Gimenes Pereti wrote: >>>This the attribute and object definition from samba.schema from >>>samba2.2.6pre CVS couple of weeks ago: >>>attributetype ( 1.3.6.1.4.1.7165.2.1.1 NAME 'lmPassword' >>> >>> >>[samba.schema] >> >> >>>[...] >>> >>>What does that mean? >>>I can connect, search LDAP from NDS with the tools provided by redhat >>> >>> >7.1 > > >>>distribution... >>> >>>Sorry if I´m being boring but I really need Samba to work with NDS >>>eDirectory. >>> >>> >>You have to 'import' this definiton to your ldap server/nds server. There >>must be a way to import this schema. >> >>After that, you must be able to fill in data in ldap/nds. >> >> > >I forgot to mention, I can import the definition from the file >rfc2307-usergroup.sch but I can´t import from the samba.schema. Certanly you >saw that the sintaxe of this files are completly different. NDS provides two >applications to import schema, they are "ndssch" and "ldapmodify". ndssch >can´t import samba.schema and ldapmodify uses another kind of file (ldif). > >Do you know how can I do this? > >Thank´s >Bruno Pereti. > > > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Novell vs Linux.
> > This the attribute and object definition from samba.schema from > > samba2.2.6pre CVS couple of weeks ago: > > attributetype ( 1.3.6.1.4.1.7165.2.1.1 NAME 'lmPassword' > [samba.schema] > > [...] > > > > What does that mean? > > I can connect, search LDAP from NDS with the tools provided by redhat 7.1 > > distribution... > > > > Sorry if I´m being boring but I really need Samba to work with NDS > > eDirectory. > > You have to 'import' this definiton to your ldap server/nds server. There > must be a way to import this schema. > > After that, you must be able to fill in data in ldap/nds. I forgot to mention, I can import the definition from the file rfc2307-usergroup.sch but I can´t import from the samba.schema. Certanly you saw that the sintaxe of this files are completly different. NDS provides two applications to import schema, they are "ndssch" and "ldapmodify". ndssch can´t import samba.schema and ldapmodify uses another kind of file (ldif). Do you know how can I do this? Thank´s Bruno Pereti. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Novell vs Linux.
Dienstag den 17.09.2002 um 17:41 CEST +0200, schrieb Bruno Gimenes Pereti: > > Samba is capable to authenicate against a ldap v3 server. For this ldap > > version exist inside the samba source a "samba.schema" file. > > > > Last Saturday, Volker Lendecke ([EMAIL PROTECTED]) was ask this question, > > and he said: If there is no Problem with the ldap implementation of the > > nds, there is no reason for samba not to authenticate against nds via > > ldap, using the samba.schema. > > This the attribute and object definition from samba.schema from > samba2.2.6pre CVS couple of weeks ago: > attributetype ( 1.3.6.1.4.1.7165.2.1.1 NAME 'lmPassword' [samba.schema] > [...] > > What does that mean? > I can connect, search LDAP from NDS with the tools provided by redhat 7.1 > distribution... > > Sorry if I´m being boring but I really need Samba to work with NDS > eDirectory. You have to 'import' this definiton to your ldap server/nds server. There must be a way to import this schema. After that, you must be able to fill in data in ldap/nds. -- Frank Matthieß [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Novell vs Linux.
> Samba is capable to authenicate against a ldap v3 server. For this ldap
> version exist inside the samba source a "samba.schema" file.
>
> Last Saturday, Volker Lendecke ([EMAIL PROTECTED]) was ask this question,
> and he said: If there is no Problem with the ldap implementation of the
> nds, there is no reason for samba not to authenticate against nds via
> ldap, using the samba.schema.
This the attribute and object definition from samba.schema from
samba2.2.6pre CVS couple of weeks ago:
attributetype ( 1.3.6.1.4.1.7165.2.1.1 NAME 'lmPassword'
DESC 'LanManager Passwd'
EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32}
SINGLE-VALUE )
[...]
objectclass ( 1.3.6.1.4.1.7165.2.2.3 NAME 'sambaAccount' SUP top AUXILIARY
DESC 'Samba Auxilary Account'
MUST ( uid $ rid )
MAY ( cn $ lmPassword $ ntPassword $ pwdLastSet $
logonTime $
logoffTime $ kickoffTime $ pwdCanChange
$ pwdMustChange $ acctFlags $
displayName $ smbHome $ homeDrive $
scriptPath $ profilePath $
description $ userWorkstations $
primaryGroupID $ domain ))
[...]
And this is an exemple of the attribute and object definition from
rfc2307-usergroup.sch from NDS eDirectory for Linux instalation:
RFC2307UserGroupSchemaExtensions DEFINITIONS ::=
BEGIN
-- An integer uniquely identifying a user in an administrative domain
"uidNumber" ATTRIBUTE ::=
{
Operation ADD,
SyntaxIDSYN_INTEGER,
Flags { DS_SINGLE_VALUED_ATTR },
ASN1ObjID { 1 3 6 1 1 1 1 0 }
}
[...]
"posixAccount" OBJECT-CLASS ::=
{
OperationADD,
Flags {DS_AUXILIARY_CLASS},
SubClassOf {"TOP"},
MustContain{ "CN" },
MustContain{ "uniqueID" },
MustContain{ "uidNumber" },
MustContain{ "gidNumber" },
MustContain{ "homeDirectory" },
MayContain { "loginShell" },
MayContain { "gecos" },
MayContain { "description" },
ASN1ObjID { 1 3 6 1 1 1 2 0 }
}
[...]
What does that mean?
I can connect, search LDAP from NDS with the tools provided by redhat 7.1
distribution...
Sorry if I´m being boring but I really need Samba to work with NDS
eDirectory.
Thank´s.
Bruno Pereti.
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Novell vs Linux.
Montag den 16.09.2002 um 19:13 CEST +0200, schrieb Ed Kasky: > At 12:35 PM Monday, 9/16/2002, Trevor Fraser wrote -=> > >experience. I was approached with the question of why should a company > >consider changing from Novel to Linux, but due to the fact of knowing > >little > >about Novel, I could only mention the pros of Linux, and therefore an > >incomplete answer. I would appreciate brief advantages of Linux over > >Novel. > > > I have a somewhat heterogeneous environment here and utilize both. I have > no windows servers. > > I use my linux box as an email server, a list server, an ftp server. I got > my CNE before I started to learn linux and as a result, we use one Novel > machine as a firewall and web cache with BorderManager. One other serves > as the main file and print server. > > As I see it, the one major advantage for us with Novell is NDS. We use it > fairly extensively to handle rights to network resources. Samba is capable to authenicate against a ldap v3 server. For this ldap version exist inside the samba source a "samba.schema" file. Last Saturday, Volker Lendecke ([EMAIL PROTECTED]) was ask this question, and he said: If there is no Problem with the ldap implementation of the nds, there is no reason for samba not to authenticate against nds via ldap, using the samba.schema. But he very intrested for a succes story of that kind of installation. BTW: Also the linux boxes are able to authenticate against ldap via nss_ldap and pam_ldap. (http://www.padl.com/Contents/OpenSourceSoftware.html) So you are able to manage your network completely with ldap/nds. -- Frank Matthieß [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
