Greg Fisher said: > Hi, > I want to run my Linux server (RedHat v8.0) as a > fileserver for Windows NT/2000/XP clients. These > clients are part of a Windows domain. I want the > authentication (users/groups) to go against the > Windows PDC . . . without creating corresponding >
perhaps you didn't explain the situation enough for me to understand, but from what I gather your looking to run SAMBA on your redhat system as a SMB server for a buncha win32 clients. And want authentication to be done by a Win32 PDC. If this is not correct then stop reading here :) If your PDC is NT4 based, or in Win2000 in compadiblity mode(a guess, I have never used win2000 server and hopefully never will). You can easily authenticate off a NT domain with just samba, no additional software. in your samba config(I don't use redhat much at the moment so I'm not certain where its at or what it's named) put: workgroup = NAME_OF_NT_DOMAIN security = SERVER password server = name_of_nt_pdc encrypt passwords = yes then restart samba, and you should be set. Samba will ask the NT PDC if the user's authentication is correct, if so it will allow them access, if not it will deny them. no local users/groups needed no special modules or 3rd party software. winbind and pam_smb(whatever its called) is mainly used for authenticating OTHER services such as ftp, telnet, ssh, email etc against a NT pdc, but you mention you want to run a file server for win32 clients, to me that implies a SMB file server (not HTTP/FTP/NFS etc), in which case you don't need the above for authenticating accross a NT domain. now if you have a win2000 server as your "PDC" in "activedirectory" mode I don't know what to do. the alternative, which I think is worth looking into is Samba-tng+LDAP, this will keep your authentication system open, flexible, and license free. I have an extensive LDAP howto which includes setting up samba-tng with LDAP and PDC support here: http://howto.linuxpowered.net/ldap/ldap.html it will be moving soon to it's new home on my ZWiki/Zope setup: http://howto.aphroland.de/HOWTO/ most of it is there now, its just not polished yet. Zwiki allows users to add content to the page by themselves as well as "subscribe" to pages to get notified when they are updated. good luck. nate -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
