Ok I have done this finally. The samba site search is still down but I found a reference from another website.
So this does not end up being one of the hundred incomplete topics I have read on this topic I shall complete shall tell you what I have done and it can be wikified later.
OS: Ubuntu 8.10
This assumes you have Samba and winbind already setup so you get use the following commands to get users and groups:
Use a "+" as your winbind seperator in your smb.conf as I could not get it to work with "\"
I wanted NTLM authentication on Apache but I wanted to restrict the website to a certain group eg teachers. mod_ntlm will not do anything with groups. mod_ntlm_winbind will do as I want.
Get it here:
Index of /ftp/unpacked/lorikeet/mod_auth_ntlm_winbind
You will need some complier tools and some apache dev tools so
apt-get install build-essentials apache2-mpm-prefork-dev
You may also need the package autoconf
In the directory with mod_ntlm_winbind.c
Once this is done it actually gives the module the name of
apxs2 -DAPACHE2 -c -i mod_ntlm_winbind.c
You then need to create a configuration file to load the mod in the apache mod dir.
Then add the entry
The directive for the web directory is:
LoadModule auth_ntlm_winbind_module /usr/lib/apache2/modules/mod_auth_ntlm_winbind.so
Restart samba, winbind and apache2 or reboot if you are lazy.
Originally Posted by Geoff
If you are getting 500 internal server errors then you need to change permission of the following file.
Add apache user (www-data) to the group winbindd_priv
chmod 750 /var/run/samba/winbindd_privileged
and restart winbind.
usermod -G winbindd_priv www-data
That should get you going