Setting Up CIFS Server (Samba) In an LDAP Environment

Setting Up CIFS Server (Samba) in an LDAP Environment

Verify the schema update

# /opt/ldapux/bin/ldapsearch -h rkm-nt -p 389 -b "cn=schema" "(objectclass=*)" |

grep -i sambaAccount

(substituting YOUR ldap server name for ‘rkm-nt’)

You should get something like this back:

objectClasses: ( 1.3.1.5.1.4.1.7165.2.2.3 NAME 'sambaAccount' SUP top AUXILIA

Part four: Modifying smbldap tools and

configuration files.

Modifying the smb.conf file

Edit your smb.conf global section with the following parameters (this assumes you took the

defaults when you set up your Netscape DS server and LDAP-UX client):

security = user

encrypt passwords = yes

ldap enable = yes

ldap port = 389

ldap ssl = no

ldap server = <your Netscape DS Server>

ldap suffix = "dc=alf,dc=cpqcorp,dc=net" (or whatever you used when setting up your

Netscape directory)

ldap admin dn = uid=admin,ou=Administrators,ou=TopologyManagement,o=NetscapeRoot

(or whatever you are using for your ldap directory manager)

ldap filter = "(&(uid=%u)(objectclass=sambaAccount))"

Modifying the smbldap_conf.pm file

Edit the following variables in /opt/samba/LDAP/smbldap-tools/smbldap_conf.pm:

To customize for your Netscape DS installation (note the SLAVELDAP and MASTERLDAP

should point to the same server, unless you have gotten REALLY into this and set up

master/slave ldap servers):

$slaveLDAP = "_SLAVELDAP_"; (the FQDN to your Netscape DS Server)

$masterLDAP = "_MASTERLDAP_"; (the FQDN to your Netscape DS Server)

$suffix = "_SUFFIX_"; (YOUR ldap suffix from step 2 above)

$binddn = "_BINDDN_"; (Your directory manager dn, from step 2 above)

$bindpasswd = "_BINDPW_"; (Your directory manager password from step 2 above)