I used the following article to integrate my Centos Linux box into our W2K3
AD:
http://susewiki.org/index.php?title=Authenticating_Windows_Active_Directory_
2003.
The problem I was having with the guest user turned out to be that it was
getting hung up on the guest account flag in the smb.conf. See conf files
below:
Krb.conf
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
ticket_lifetime = 24000
default_realm = NSHC.LOCAL
default_tkt_enctypes = des3-hmac-sha1 des-cbc-crc des-cdc-md5 aes256-cts
arcfour-hmac-md5
default_tgs_enctype = des3-hmac-sha1 des-cdc-crc des-cdc-md5 aes256-cts
arcfour-hmac-md5
[realms]
NSHC.LOCAL = {
kdc = nshcdc1.nshc.local:88
admin_server = nshcdc1.nshc.local
default_domain = NSHC.LOCAL
}
[domain_realm]
.nshc.local = NSHC.LOCAL
nshc.local = NSHC.LOCAL
[kdc]
profile = /var/kerberos/krb5kdc/kdc.conf
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
Smb.conf
[global]
unix extensions = off
security = ads
netbios name = ntinstall
realm = NSHC.LOCAL
password server = nshcdc1.nshc.local
workgroup = NSHC
#Winbind
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind separator = +
winbind enum users = yes
winbind enum group = yes
winbind use default domain = yes
template homedir = /home/%D/%U
template shell = /bin/bash
client use spnego = yes
domain master = no
server string =
[install]
comment = Unattended
writable = no
locking = no
path = /unattended/unattended-4.6/install
nsswitch.conf
passwd: compat winbind
group: compat winbind
shadow: compat
hosts: files dns wins
networks: files
protocols: db files
services: db files
ethers: db files
rpc: db files
netgroup: nis
system-auth (/etc/pam.d/system-auth)
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth sufficient /lib/security/$ISA/pam_winbind.so
auth required /lib/security/$ISA/pam_unix.so nullok_secure
use_first_pass
account sufficient /lib/security/$ISA/pam_winbind.so
account required /lib/security/$ISA/pam_unix.so
password required /lib/security/$ISA/pam_unix.so nullok obscure
min=4 max=50 md5
session required /lib/security/$ISA/pam_mkhomedir.so umask=0022
skel=/etc/skel
After all of this I was able to boot the Linux boot disk and successfully
build a station. I had to bastardize a few instructions on the Linux/AD
article as well as the Unattended step-by-step but it is working. Hope this
helps anyone else who may be having issues with Samba and Unattended.
Chad Harvey
NorthShore Health Centers
6450 US Hwy 6
Portage, IN 46368
Ph: 219-764-5381
Cell: 219-331-4660
Fx:219-764-6348
[EMAIL PROTECTED]
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
unattended-info mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/unattended-info
