Manualshelf

HP CIFS Server 3.0f Administrator's Guide verison A.02.03

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
919293949596979899100
Installing your Samba Users in the Directory
This section describes how to install and verify your samba users in your LDAP directory.
Adding Credentials
When you use the HP CIFS Server with the LDAP feature support, the smbpasswd command manipulates
user accounts information on the LDAP directory rather than the /var/opt/samba/private/smbpasswd
file. You must add the directory manager credentials to the /var/opt/samba/private/secrets.tdb
file before installing Samba users to the LDAP directory.
Run the following command to save the LDAP credentials for the user who can modify the LDAP directory
for samba information:
$ smbpasswd -w <password of the LDAP Directory Manager>
For example, the following command saves the credentials of the LDAP directory manager:
$ smbpasswd -w dmpasswd
Where dmpasswd is the password of the LDAP directory manager.
NOTE: You must ensure that the password correctly matches with the password for the ldap admin directory
manager. This password is for user administration and is stored for later use. If the password is incorrect,
no error message is displayed, but the user administration will fail when attempted.
Verifying Samba Users
You can use the ldapsearch command-line utility to locate and retrieve LDAP directory entries. This utility
opens a connection to the specified server using the specified Distinguished Name (DN) and password, and
locates entries based on the specified search filter.
This section describes is a portion of the available options for the ldapsearch command. Refer to the
NDS
Configuration, Command and File Reference
manual for a more complete description of this command.
Syntax
ldapsearch [option]
Option
-b search/insert base
-s search scope
-D directory login
-w password of the directory manager
Example
The following example uses the ldapsearch utility to check that the user entry johnl contains the
sambaAccountobjectclass:
$ /opt/ldapux/bin/ldapsearch -b "dc=org,dc=hp, dc=com" -ssub \
-D "cn=Directory Manager" -w dmpasswd "uid=johnl"
The output is shown as the follows:
dn: uid=johnl,ou=People,dc=org,dc=hp,dc=comobjectclass: top
objectclass: account
objectclass: posixAccount
objectclass: sambaAccount
loginShell: /usr/bin/ksh
uidNumber: 8662
gidNumber: 8200
94 LDAP Integration Support