HI. I have the following enviroment: SLES11 SP2 server + eDir 8.8 + COnsoleOne + iManager installed… I configure samba with local user and all work ok. But now I need configure F/S with samba and eDirectory users (well in the workstations I need that with novell client authenticates to eDirectory and can access to samba share).
Is possible with novell client authentication validate the user for samba share?? o I must write the user and password for every shared folder?? … What is the better, authentication SLES11 against eDIr or only Samba against eDirectory??
Is possible with novell client authentication validate the user for
samba share??
[/color]
No
the Novell Client is for the NCP shares, you use the Windows built in
client for connecting to the Samba share
Do you have OES installed on this server?
cat /etc/*release
If so, you have two different ways of serving up Samba shares, one is
easy to use eDir authentication, the other I’ve never even looked at.
No, I only have SLES11 SP2 + edir 8.8, I haven’t OES2[/color]
Just as an FYI, OES2 is only on SLES10, OES11 is only on SLES11.
[color=blue]
Then What is better or how I must do the authentication: SLES11 against
eDIr or only Samba against eDirectory??[/color]
I’m normally an OES guy having come at this via NetWare, so I haven’t
really worked at those levels directly, but I think I can help guide you
from what I understand of things until someone else happens to join in or
we get things sorted out for you.
We have two directions we can take this from and find where they meet.
From the Samba side, what do the docs say about the users that it
consumes? It looks like it can act like a Microsoft Domain Server (PDC
or BDC) and that it might be able to consume/participate in an existing
Microsoft authentication system, so do you have such that is part of the
equation? How does Samba interact with standard the standard Linux PAM
system?
EDir users & groups can be linked to the standard Linux PAM system with
LUM, but does LUM(Linux User Management) come with eDirectory? Check your
eDir docs for that and if so that may well be the way to go. The other
option is IDM to connect eDir to other systems, but that is likely more
than you are game for at this point.
No, I only have SLES11 SP2 + edir 8.8, I haven’t OES2
Then What is better or how I must do the authentication: SLES11 against
eDIr or only Samba against eDirectory??[/color]
[color=blue]
If have some document for some authentication for edirectory, please
provide me[/color]
As far as I understand your question you want to use samba.org (not
Novell CIFS) on SLES and use eDirectory for authentication rather than
local user and machine accounts. There is an old Cool Solutions article
about setting up OES as a NT-style domain controller: http://wiki.novell.com/index.php/OES_as_PDC
I did not test if this still works with SLES11/OES11, but it might be a
starting point. I successfully followed these instructions with SLES9/OES
to give Window systems access to local file systems on the server with
smb/cifs rather than ncp.
But I must add every edir user to samba password with smbpasswd -a userX.
Have you some ways to avoid this procedure?? … I’d like authenticate samba against edir without Novell Client, maybe “authenticating Windows users without the novell client”.
Well. I need to share some folder from SLES11 with windows workstations (users). I have installed edir in my SLES11 server then I’d like use edir like password repository … How Can I authenticate samba against edir for that windows user can manage shared folders from SUSE server … with
I have shared folders and samba authentication but: a. I must add every edir user to samba and b. later from windows I must write the user to authenticate and view folders …