[Likewise-open-discuss] Authentication issues
Rafal Szczesniak
mimir at samba.org
Wed Apr 23 10:06:00 PDT 2008
On Wed, Apr 23, 2008 at 07:57:58AM -0400, George Clark wrote:
> Perhaps someone can help me with an authentication issue.
>
> I have a CentOS machine that I had already joined to my AD domain
> manually following directions supplied in the samba how-to, but to
> access a samba share from a windows client users had to have an account
> on the Linux box and I had to include them, by name, in the samba.conf
> "valid users" section.
This means you have joined the domain but haven't provided means to
map AD user accounts to unix accounts. Have you run winbind daemon
and installed nsswitch module earlier ? Providing local accounts can
of course work but is not very convenient way of handling domain users.
> I installed the new likewise-open and did a join. I can see all the
> files it installed, but it didn't change samba.conf, krb5.conf and I
> can't find a pam.conf anywhere. I still have the authentication to a
> samba share problem.
Domain join will not change your smb.conf file. Likewise open has it's
own configuration file (based on smb.conf, naturally). It is typically
/etc/samba/lwiauth.conf.
Another issue - where did you look for changed krb5.conf file ? Commonly
it is /etc/krb5.conf, but if it's been altered by the domain join tool it
will have backup copies krb5.conf.lwidentity.bak and krb5.conf.lwidentity.orig.
> I'm sure it is the original configuration, before likewise open, that
> has me messed up.
Not essentially. It depends on where have you had your samba configuration
prior to when LWO has been installed. Typically LWO gets installed in
/usr/centeris directory.
cheers,
--
Rafal Szczesniak
Samba Team member http://www.samba.org
Likewise Software http://www.likewisesoftware.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.likewisesoftware.com/pipermail/likewise-open-discuss/attachments/20080423/1ab583ee/attachment.pgp
More information about the Likewise-open-discuss
mailing list