Ubuntu 9.04 Samba Server Integrated With Active Directory
This howtos describes how an Ubuntu 9.04 Samba server is integrated
with Active Directory, and how to use Winbind; the Linux server sees
the domain users and groups transparently. I assume that your Ubuntu
server is installed and ready to be configured with Samba.
I am having some probs since moving my Samba PDC server to a new machine.
Previously CentOS 5.3 32bit Samba 3.4.13, now CentOS 6.4 64 bit Samba 3.6.9.
I replicated users and groups matching UID and GID
used rsync to copy /etc/samba and homes
set the local sid to match old server
set the domain sid to match old server
mapped Domain Users, Admins & Guests to the same unix groups as
we store our users in ldap, alongside some groups that have meaning across different systems (organizational roles including wheel). There are also groups local to workstations, e.g. audio or video that are not desirable to be put into ldap. Now if i login locally I get those local groups, but if I login via ssh into the same machine I lack them.
Anyone out there have ever done windbind with samba for authentication, Then use local groups for access restrictions? Have about 300+ groups for access rules, and about 3k+ users In AD for authentication. I know we can do ad groups, but it will only be used for this 1 box. So I really need it to be done locally.
I've no idea about LDAP or Active Directory, but somebody installed Samba 4 for centralized user accounts for some infrastructure tools and I'd like to administrate users and groups from a Linux machine using only free software.
There's samba-tool but it seems rather limited and isn't boss-friendly (no gui).
I am about to setup a replacement AD server using the newest Samba version (4.1.11 today).
We an old one already set (4.0.0beta2).
What I want is actually are recommendations of parameters for the smb.conf file. Here all users are limited, with few exceptions, all the access to the folders are definide by the groups the user is in.