The SAMBA-LDAP-PDC Howto

Revision : 1.24

• samba-common.conffiles: get rid of the /etc/pam.d/samba entry (yes the file is then
empty)
• winbind.files: get rid of the lib/security/pam winbind.so
Afterwards make a dpkg-buildpackage from the main directory level. when finished you have
the .deb files ready to be installed:
# dpkg -i samba-common_2.2.4-1_i386.deb libsmbclient_2.2.4-1_i386.deb
samba_2.2.4-1_i386.deb smbclient_2.2.4-1_i386.deb smbfs_2.2.4-1_i386.deb
swat_2.2.4-1_i386.deb winbind_2.2.4-1_i386.deb

the global part of a sample smb.conf looks like this:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21

[global]
workgroup = Test
netbios name = MARY
domain admin group = @domadmin
server string = %h server (Samba %v)
;
wins support = yes <== important with wins support, it didn’t work for me
interfaces = 10.1.1.180
invalid users = root
log file = /var/log/samba/log.%m
log level = 1
max log size = 1000
syslog = 0
encrypt passwords = true
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
local master = yes
preferred master = yes
dns proxy = yes
unix password sync = true
passwd program = /usr/local/bin/smbldap-passwd.pl -o %u
passwd chat = *new*password* %n\n *new*password:* %n\n *successfully*
unix password sync = Yes

22
23
24
25
26
27
28
29

# SAMBA-LDAP Declarations
ldap suffix = dc=domain,dc=com
ldap admin dn = cn=admin,dc=domain,dc=com
ldap port = 389
ldap server = 10.1.1.15
ldap ssl = No
add user script = /usr/local/bin/smbldap-useradd.pl -m -d /dev/null -g 1000 -s /bin/false

30

page 50/56