[CentOS-docs] HowTo: Samba with ADS security in CentOS 5

Tue Oct 2 18:56:29 UTC 2007
Daniel Lindgren <bd.dali at gmail.com>

OK, now I've tried it and it works like a charm. This is a stub for a howto
in the wiki:

* Verified on a CentOS 5.0 Server install, updated and rebooted.
* Install and configure ntp to make sure time is in sync with AD domain
* chkconfig ntpd on
* patch /usr/share/authconfig/authconfig.py (unless CentOS 5.1)
* chkconfig smb on
* chkconfig winbind on
* set variables to appropriate values for your domain
* authconfig --enableshadow --enablemd5 --enablekrb5 --krb5realm=$KRB_REALM
--krb5kdc=$AD_SERVER --kickstart
* authconfig-tui --kickstart --enablewinbind --enablewinbindauth
--smbsecurity=ads --smbrealm=$KRB_REALM --smbservers=$AD_SERVER
--winbindjoin="$ADMIN" --winbindtemplatehomedir=/home/%U
--winbindtemplateshell=/bin/bash --enablewinbindusedefaultdomain
--smbworkgroup=$SMBWG --enablelocauthorize
* create samba share, testparm
* (re)start samba
* from windows client: net view \\centosserver
* try connecting to share
* troubleshooting: verify that ntpd/smb/winbind are all started, verify time
is in sync on all machines, try logging off/on Windows client

The full article would of course include more commands and info.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos-docs/attachments/20071002/fc6a5d2c/attachment-0002.html>