How To Set Up Samba & LDAP with Amahi - March 2011

Suggestions or corrections to joe_tseng at hotmail

(note: this was written for Amahi 12, should be applicable to Amahi 6/Fedora 14)

  1. Set up Fedora with Amahi:
  1. Set up Amahi server as a PDC:
  1. logon home = \\%L\%U

vfs objects = recycle

            # recycle:config-file = /etc/samba/recycle.conf

            # recycle:repository = /var/hda/files/recycle/%u

            recycle:directory_mode = 770

            recycle:keeptree = Yes

            recycle:versions = Yes

            recycle:touch_mtime = yes

  1. Set up OpenLDAP in Amahi server:
  1. /usr/bin/smbpasswd -w password

access to dn.regex=".*,dc=your,dc=domain" attrs=userPassword,sambaNTPassword,sambaLMPassword

 by dn="cn=root,dc=your,dc=domain" write

 by self write

 by * auth

  1. Used any lines I already didn’t have in /etc/samba/smb.conf and added them:
  1. ldap ssl = off
  2. commented out valid users under [homes] (I believe users’ filesystem permissions should protect contents.)
  3. commented out valid users and force user under [profiles]
  1. Run testparm to confirm configuration file
  2. Restarted samba to enable updates: service smb restart
  3. Installed and set up smbldap-tools: yum -y install smbldap-tools
  4. Update /etc/smbldap-tools/smbldap.conf
  1. Update /etc/smbldap-tools/smbldap_bind.conf
  2. Provide root password into /etc/ldap.secret:
  1. Insert new entries into LDAP using smbldap-populate:
  1. Insert new user
  1. smbldap-passwd username
  1. Update in /etc/ldap.conf: bind_policy soft
  2. Insert new Windows XP workstation (not for Windows 7)
  1. For Windows XP Pro:
  1. When Windows prompts for a username and password, use “root” and password created in step 10
  1. For Windows XP Home:
  1. “Admin User” is the same as the one used in Step 13.
  2. Use the pGina Plugin Simulation app to verify your settings.
  1. For Windows 7 Pro: