Fedora Linux Support Community & Resources Center
  #1  
Old 19th March 2004, 10:08 AM
fjleal Offline
Registered User
 
Join Date: Feb 2004
Location: Portugal, Europe
Age: 44
Posts: 519
Question User validation in Windows PDC

Greetings!

I need to configure some FC1 client workstations to allow the users of a Windows PDC to log in (and to be validated against that PDC, not locally on FC1). The Windows server and the FC1 client machines are on the same network. I've been reading about winbind and pam authentication modules, but winbind doesn't even start on my test workstation (maybe I need to fully install Samba?...).

Is there an easier way to do this? Does anyone have some experience regarding such subject?

Thanks a lot!
__________________
"I'd crawl over an acre of 'Visual This++' and 'Integrated Development That' to get to gcc, Emacs, and gdb. Thank you."
-- Vance Petree, Virginia Power

Last edited by fjleal; 19th March 2004 at 10:11 AM.
Reply With Quote
  #2  
Old 19th March 2004, 08:52 PM
kmg_usmc Offline
Registered User
 
Join Date: Mar 2004
Age: 35
Posts: 2
This is from memory, but have you tried authconfig? Click on the "Authentication" tab, and select to enable SMB Authentication. There should then be a button to configure SMB for your network.
Reply With Quote
  #3  
Old 19th March 2004, 09:43 PM
fjleal Offline
Registered User
 
Join Date: Feb 2004
Location: Portugal, Europe
Age: 44
Posts: 519
Yes, there is. Actually, that's the first thing I did. But after selecting SMB and filling the server name and workgroup name fields, I try to login with any Windows Domain user and I get an error message (user doesn't exist).
It seems to me that the logins are not validated against the PDC, even with the SMB login selected and the PDC info correctly filled...
__________________
"I'd crawl over an acre of 'Visual This++' and 'Integrated Development That' to get to gcc, Emacs, and gdb. Thank you."
-- Vance Petree, Virginia Power
Reply With Quote
  #4  
Old 26th April 2004, 07:21 PM
h4d Offline
Registered User
 
Join Date: Feb 2004
Location: Boston
Posts: 239
same problem

Hi, I'm having the same problem: Trying to get the FC1 machines to login to a WinNT Domain Controlers, in order for all the users to have the same profile accross the network. Please let me know if you found out a way of doing this!

cheers
Reply With Quote
  #5  
Old 2nd May 2004, 12:20 PM
hob Offline
Registered User
 
Join Date: May 2004
Location: Wales, UK
Posts: 7
authconfig didn't work on my FC1 test box either, although it may be because it didn't have a valid machine account on the domain.

There are step-by-step instructions in the docs for making Samba a member server:

/usr/share/doc/samba-3.0.2/docs/htmldocs/domain-member.html#ads-member

HTH
Reply With Quote
  #6  
Old 5th May 2004, 09:48 AM
jeru Offline
Registered User
 
Join Date: May 2004
Location: Arizona
Posts: 119
Not really an easier way to do it, you are going to have to use winbind.

the best source of information on this is;
man winbindd
and
lynx winbind.html
or whatever you want to read
/usr/share/doc/samba-x.x.x/docs/htmldocs/winbind.html
or
http://us1.samba.org/samba/ftp/docs/...s/winbind.html

simply joining ads doesn't fix the unix portion that needs to be in place for NT users to log on locally to the linux workstation.... You still need something to bridge those users and groups to the local system. (aka winbind)

If it doesn't start, you are still missing something. I don't know what that is without knowing what you've done so far.

Last edited by jeru; 5th May 2004 at 09:50 AM.
Reply With Quote
  #7  
Old 6th May 2004, 11:04 PM
blue_error Offline
Registered User
 
Join Date: May 2004
Posts: 6
I have this this setup working on a box of mine.

What I did was installed the latest version of samba from source. And copied over the new libnss_winbind.so from the <samba source/source directory to /lib and made a symlink from libnss_winbind.so to libnss_winbind.so.2

Code:
ln -s /lib/libnss_winbind.so libnss_winbind.so.2
then join to domain:

Code:
/usr/local/samba/bin/net rpc join -U <username>
then you need to add winbind to your nsswitch.conf

edit as necessary so it looks like this:

passwd: files winbind
shadow: files winbind
group: files winbind

Now type:

Code:
getent passwd
Your local accounts and domain accounts should now show up.
Reply With Quote
  #8  
Old 6th May 2004, 11:55 PM
fjleal Offline
Registered User
 
Join Date: Feb 2004
Location: Portugal, Europe
Age: 44
Posts: 519
Hummm... Can your Windows Domain users login in the Linux box? How about home directories, user IDs...?

From the Samba documentation, I got the idea that Samba may be used as a PDC, so that the Windows workstations would register with that "domain"... I need to read a lot more about Samba (and it surely has a lot to read...) , but having Windows workstations acting as clients to a Samba server would be an even better solution. Having a centralised users control if essential to me. Probably someone has already done this?...

Thanks a lot!
__________________
"I'd crawl over an acre of 'Visual This++' and 'Integrated Development That' to get to gcc, Emacs, and gdb. Thank you."
-- Vance Petree, Virginia Power
Reply With Quote
  #9  
Old 7th May 2004, 12:25 AM
jeru Offline
Registered User
 
Join Date: May 2004
Location: Arizona
Posts: 119
Quote:
Originally posted by fjleal
Hummm... Can your Windows Domain users login in the Linux box? How about home directories, user IDs...?
Yep.....

Look closer at the previous 2 posts. Home directories will be created when the user logs on just like NT profiles on a NT box.

Last edited by jeru; 7th May 2004 at 12:30 AM.
Reply With Quote
  #10  
Old 27th May 2004, 03:27 PM
htw Offline
Registered User
 
Join Date: May 2004
Posts: 1
followed the instructions but ...

Hi,

after millons of docs and the instruction of the former post I´m still facing two problems:

1. the home directors have to be in place - there is no auto function for creating home dirs for new Domain users
2. It is nice to login when my notebook is connected to the intranet but without connection no authentication - is there a simple way to get the domain users locally created

Info: Login name is: DOMAINNAME\username

Any ideas?

Harald
Reply With Quote
Reply

Tags
pdc, user, validation, windows

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
C++: Input Validation keatonvictor Programming & Packaging 3 3rd February 2009 01:30 AM
IPTABLE rules validation Ivang Security and Privacy 4 21st July 2008 04:03 PM
Postgres validation error ricardon Using Fedora 0 18th December 2005 12:32 PM
Page Validation jim Wibble 7 27th April 2005 03:42 AM


Current GMT-time: 17:44 (Monday, 22-12-2014)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.

Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

FedoraForum is Powered by RedHat
...Center Of The Universe Below The Clocktower Travel Photos - Riserva Naturale Foce Fiume Platani Photos - Bombon, Camarines Sur Photos on Instagram