User manual
213
T e chnica l re quire m e nts o f LDA P a uthe ntic a tio n with Mic roso ft Ne two r k ing:
Required items to authenticate the LDAP users on Microsoft Networking (Samba):
1. a third party software to synchronize the password between LDAP and Samba in the LDAP server.
2. importing the Samba schema to the LDAP directory.
1)
T hird - pa r ty so ftwa re :
Some software are available and allow management of the LDAP users, including Samba password. For
example:
LDAP Account Manager (LAM), with a Web-based interface, available at: http://www.ldap-account-
manager.org/
smbldap-tools (command line tool)
webmin-ldap-useradmin - LDAP user administration module for Webmin.
2)
Sa m ba s che m a :
To import the samba schema to the LDAP server, please refer to the documentation or FAQ of the LDAP
server.
The samba.schema file is required and can be found in the directory examples/LDAP in the Samba
source distribution.
Example for open-ldap in the Linux server where the LDAP server is running (it can be different
depending on the Linux distribution):
Copy the samba schema:
zcat /usr/share/doc/samba-doc/examples/LDAP/samba.schema.gz > /etc/ldap/schema/samba.
schema
Edit /etc/ldap/slapd.conf (openldap server configuration file) and make sure the following lines are
present in the file:
include /etc/ldap/schema/samba.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/inetorgperson.schema
include /etc/ldap/schema/nis.schema