[TriLUG] ldap authentication from Active directory or NTDS
Joseph Tate
jtate at dragonstrider.com
Thu Jan 8 10:18:39 EST 2004
Magnus wrote:
>
>> I would like samba to pull a useraccounts from Active Directory to
>> authenticate users for access to fileshares.. Does anyone have easy
>> instructions on using PAM to set this up?
>
>
> I'm in the middle of doing something like this now at $WORK. The gist
> of it is that Active Directory does not have the right schema to handle
> *NIX users, and must be extended. For <$100 MSRP you can get MS
> Services For UNIX (SFU). This will, among other things, extend you
> schema and give you MMC snap-ins to manage *NIX user attributes on the
> same objects as Windows users. That's step one.
>
Supposedly Windows 2003 server's AD supports the INetOrgPerson schema.
More information about the TriLUG
mailing list