Integration of ldap with samba

8/7/2019 Integration of ldap with samba

1/13


2/13

Samba and ldap together has been returned onthe subject of PDC(NT primary domaincontroller)

The functionality in samba in LDAP serveracting as acting as a centralized credential

repository


3/13

The Lightweight Directory Access Protocol(LDAP)is an application protocol for querying andmodifying data of directory services implemented

in internet protocol(IP)networks A directory is a set of objects with attributes

organized logically in a hierarchical manner

A simple example is the telephone directory which

consists of list of names(of either persons ororganizations) organized alphabetically with eachname having an address and phone numberassociated with it


4/13

A directory information tree often reflectsvarious political,geographical,and/or

organizational boundaries,depending on themodel chosen

Samba is the standard windows interoperabilitysuite of programs for linux and unix

In this project samba and LDAP together isintegrated to form a Primary DomainController(PDC).

The credentials are stored as a centralizedrepository in the LDAP server


5/13

And the samba server uses this repository to

authenticate the clients for mounting sharesdrives and accessing information fromwindows/linux machines

Authentication is achieved using the PAM-LDAP module

The pam_ldap provides the means for solaris/linux servers and workstations to authenticateagainst LDAP directories and to change theirpasswords in the directory


6/13

LDAP is an internet standard protocol used byapplications to access a directory

It runs directly over TCP and can be used toaccess a standalone LDAP directory service toaccess a directory sercvice that is backended byx.500

It was created as a way to minimize theimplementations requirements on directoryclients and to simplify and encourage the useof directories among applications


7/13

The LDAP directory service model is based onentities

An entry is a collection of attributes thatdescribing it

Each attribute has a name,type and morevalues

LDAP is a protocol defining a directory serviceand access to that service

LDAP is based on a client server model

LDAP servers provide the directory serviceand LDAP clients use the directory service toaccess entries and attributes


8/13

OPENLDAP software is a free open sourceimplentation of the lightweight direct accessprotocol(LDAP)developed by the openLDAP

project

It is released under its own BSD-style licensecalled the openLDAP public license


9/13

The Samba is a networking tool that enableslinux to participate in windows networks

There are two parts to samba,one being theserver which shares out files and printers forother PCs to use and the other being the clientutilities ,which allow linux to access files andprinters on other windows/samba pcs


10/13

A primary domain controller is a servercomputer in a pre-windows 2000 NT serverdomain

A domain is a concept used in NT serveroperating system whereby a user may be

granted access to a number of computerresources with the use of a single usernameand password combination


11/13

Configuring and implementing SAMBA server

configuring SAMBA PDC server

configuringOPENLDAP for authenticatingLDAP users

Integrating SAMBA,LDAP and PDC


12/13

Intel machines with 1 GB RAM/80GB HDD-3NOS

Each machine with one LAN CARD


13/13

Redhat enterprise Linux 5.0

Perl 5.8.0

Windows 2003 server

Integration of ldap with samba

Documents

Transcript of Integration of ldap with samba