Results 1 to 5 of 5

Thread: OpenLdap + Samba + Ubuntu Server 8.10

  1. #1
    Join Date
    Nov 2008
    Beans
    14

    OpenLdap + Samba + Ubuntu Server 8.10

    Hi there,

    I have Ubuntu Server installed in a desktop computer and I'm trying to use it for controlling a domain which will be used for windows machines authentication and file sharing.

    I followed this tutorials:
    http://www.howtoforge.com/openldap-s...ler-ubuntu7.10
    https://help.ubuntu.com/8.10/serverg...p-installation

    My domain is welka.local and I can see it in ldapsearch but when I try to connect from my windows machine to the welka domain using root user and pass I get "access is denied" error.

    Any ideas why?

    I've attached:
    smb.conf
    smbldap.conf
    ldap.conf

    Thanks in advance.
    Attached Files Attached Files

  2. #2
    Join Date
    Oct 2005
    Location
    Al Ain
    Beans
    7,909

    Re: OpenLdap + Samba + Ubuntu Server 8.10

    There are many reasons why it won't work, but the most common issue is that the time on the client and server is different, so then Kerberos won't work.

    See this link for some debug help:
    http://aeronetworks.ca/LinuxActiveDirectory.html

    Cheers,

    Herman

  3. #3
    Join Date
    Nov 2007
    Beans
    395
    Distro
    Ubuntu 11.04 Natty Narwhal

    Re: OpenLdap + Samba + Ubuntu Server 8.10

    Some sanity-check questions.

    Did you get all the way through all 3 pages of the tutorial? You didn't mention bind or your bind.conf.

    Are you using XP Pro? Home will not work as they cannot join a Domain. Are the computers Domain members? Or is that where you are getting the denied error? Sometimes it is possible to enter credentials differently to authenticate. Instead of just user it could be DOMAIN\user or user@domain.

    The how-to does not mention kerberos, but I know to connect the other way Ubuntu client to Windows domain you need kerberos to authenticate.

    Have you looked up any other how-tos on this subject?
    https://help.ubuntu.com/community/LD...ux_and_Windows)

    I see that most of the Google links simply point to copies of the how-to that you used.
    -- Coreigh

    "Only those who attempt the absurd will achieve the impossible"
    ... Einstein or Escher, you pick ...

  4. #4
    Join Date
    Nov 2008
    Beans
    14

    Re: OpenLdap + Samba + Ubuntu Server 8.10

    Hi there Coreigh,

    First of all I'm running Windows XP Pro SP3 on the client. I had used this two tutorials once and was able to successfuly join my domain with the same windows xp client until I eventually messed up the configs because samba was not storing windows profile configs. Then restarted from scratch.

    I went all the three pages and you can see the named.conf in attachement.


    The error I got was "Access Denied". I tried the following for my domain welka:

    root
    pass

    welka\root

    root@welka

    root@welka.local

    All gave the same answers.

    I'll try to work my way around that tutorials and see where I stand. Anyway, I never used kerberos. Do I really need it? Where to start?

    Thanks once again
    Attached Files Attached Files

  5. #5
    Join Date
    Nov 2008
    Beans
    14

    Re: OpenLdap + Samba + Ubuntu Server 8.10

    Problem solved.

    I had an error in smb.conf had to change:

    ldap admin dn= cn= admin, dc=example, dc=local
    ldap suffix =dc=example, dc=local

    for the correct domain in my case:
    changing example to welka did the trick

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •