LDAP and Samba on Debian

From MyWiki

Jump to: navigation, search

The following instructions describe how to configure LDAP client on Samba server to look-up user and group names. Thanks to Liam Smyth for help with this! 

apt-get install libnss-ldap

Here is the initial configuration details: 

LDAP Server Host: ccdc1.mydomain.com    (No harm adding this to hosts if it isn't there already)
DN of Search Base: dc=ccdc,dc=lan
LDAP Version: 3
Database requires login: no
Make config readable by owner only: yes

Edit /etc/libnss-ldap.conf: 

host ccdc1.mydomain.com
# The distinguished name of the search base.
base dc=ccdc,dc=lan
rootbinddn cn=admin,dc=ccdc,dc=lan

Add password (use a good password here!): 

echo -n "password_here" > /etc/libnss-ldap.secret

Edit /etc/nsswitch.conf 

passwd:         compat ldap
group:          compat ldap

And of course do getent group to confirm. If getent doesn't do it, try a restart of SSH.

Retrieved from "http://www.markelov.org/wiki/index.php?title=LDAP_and_Samba_on_Debian"
Personal tools