*nix Thread, Authenticating Samba Shares against AD in Technical; Hi All,
I have been managing unix web servers for a long time now, however I'm deploying a Baccalaureate Portfolio ...
2nd February 2012, 10:27 PM #1
- Rep Power
Authenticating Samba Shares against AD
I have been managing unix web servers for a long time now, however I'm deploying a Baccalaureate Portfolio web app I've developed for us into the network. Im running it on a Ubuntu 11.10 server, and I'm having problems with the Samba shares (first time I've used samba)..
Ive set up a simple share in samba.conf
I need to somehow configure this on a AD OU basis, so the students have no access to this share, but the admin and SMT OUs do. I have absolutely no idea how to go about doing this, and all my googling turned up zilch. I tried binding Samba to AD in Webmin but that just spat its dummy out at me.
comment = Bacc Admin Access
path = /baccdata
browsable = yes
guest ok = yes
read only = no
create mask = 0755
If anyone has any pointers, or even links to an article that will give me some sort of idea what I'm doing that would be greatly appreciatedn- again linux isn't anything new to me, so if I have a small clue what to do I should be able to figure the rest out for myself!
IDG Tech News
2nd February 2012, 10:53 PM #2
I put together a howto with samba here:
Samba Homedirectory - Wiki
I think the bits you want to look at in more detail are the ACL support, and valid users.
ACL support on the filesystem allows you you use setfacl to set NTFS style permissions -ie how you to allow shares on a per user basis.
you'd probably need to do this on a group basis rather than OU, but it is fairly trivial to make OU members of groups.
also look at where you could use @"DOMAIN\domain^admins" for example.
2nd February 2012, 11:18 PM #3
- Rep Power
Ill have a look into it, cheers mate
2nd February 2012, 11:25 PM #4
Just Another pointer - if you are going to host production software I would personally only run it on LTS versions of Ubuntu (currently 10.04) soon to be 12.04. You then have support/update for the os longer then with the minor releases
2nd February 2012, 11:32 PM #5
There's this thread, where I stumble around doing the same sort of thing you're doing now:
Originally Posted by brad82
2nd February 2012, 11:40 PM #6
- Rep Power
I will still be around when 12.04 hits, so ill upgrade to that when it hits the release, then leave it at that until the next LTS.. I just happened to have an image of another ready to deploy LAMP stack laying around so I deployed that as I'm lazy!
Originally Posted by glennda
Also cheers David - I shall have a read tomorrow when I'm back in front of PuTTY!
Last edited by brad82; 2nd February 2012 at 11:43 PM.
2nd February 2012, 11:48 PM #7
wow, that was a blast from the past. Means I've been running the same system (notwithstanding new hardware and OS upgrades) for 3.5 yrs now.
Originally Posted by dhicks
About time I had another look at new samba features!
By FN-GM in forum Web Development
Last Post: 22nd September 2010, 10:53 PM
Last Post: 4th November 2009, 05:30 PM
Last Post: 15th April 2008, 09:54 AM
By Mintsoft in forum *nix
Last Post: 2nd October 2007, 12:05 PM
Last Post: 16th July 2007, 12:21 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)