Samba PDC with LDAP backend
Ruben de Groot
mail25 at bzerk.org
Mon Sep 7 07:38:09 UTC 2009
On Fri, Sep 04, 2009 at 02:43:00PM +0700, Olivier Nicole typed:
> Hi Ruel,
> > But, I have one question left..
> > How do you join the Windows xp client on the domain? Is there another tweak
> > must be done?
> The same way a PC would join any samba domain.
> The PC joining Samba does not know that Samba is using LDAP or
> anything else for authentication, so the PC talks to Samba the way it
> always does/did.
> (I managed, with some effort, to replace one Samba server
> authenticating to Unix /etc/passwd, by a Samba server authenticating
> with LDAP, without the XP clients noticing, that is nothing at all to
> be done on XP).
Yes, I have a script that does precisely this (read master.passwd, smbpasswd
and group and create an LDIF to import into LDAP. This is now being used for
the migration of 1200 samba servers from backend=smbpasswd to backend=ldapsam.
Most important things is preserving the SID's (net getlocalsid) and group mappings
(net groupmap list). Windows clients will not notice any difference.
More information about the freebsd-questions