FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Ubuntu > Ubuntu User

 
 
LinkBack Thread Tools
 
Old 07-05-2010, 10:27 AM
Olivier Nicole
 
Default Migrate Windows 2000 AD to Ubuntu 10.4

> Samba controler+LDAP is, of course, in a test domain to test.

So what is working/not working so far? Can you join one test machine
to the test domain in samba+ldap?

Can you autheticate a user?

Do you have any ldap browser installed to check that the entries in
your ldap directory are the one you expect?

I did the simple migration from samba to samba+ldap, that only was a
major pain (part of it being I had ldap running and I had to integrate
the existing directiory rather than creating a new directory).

I'use a test SSID and change all what is needed to use the existing
domain SSID once I am ready for complete migration.

> getent passwd command return this information, I changed
> /etc/nsswitch.conf :
>
> passwd: compat ldap
> group: compat ldap
> shadow: compat ldap

In fact you don't need to modify nsswitch for group and shadow, unless
you want your users to authenticate to the Unix machine too. Samba
will access LDAP server directly to read the group and password
information (and password is saved in the LDAP attributes
sambaNTPassword (and sambaLMPassword?), not in the Unix password).

Bests,

olivier

--
ubuntu-users mailing list
ubuntu-users@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
 
Old 07-05-2010, 02:00 PM
Arnaud BLONDEL - Alter Way Solutions
 
Default Migrate Windows 2000 AD to Ubuntu 10.4

On 05/07/2010 12:27, Olivier Nicole wrote:

Samba controler+LDAP is, of course, in a test domain to test.


So what is working/not working so far? Can you join one test machine
to the test domain in samba+ldap?

Can you autheticate a user?

>

If I use computer which was on Windows domain, I can't open session with
this computer on Ubuntu server (new PDC).


I have this message "domain xxxx is not available"

I need to add this computer to the domain again (My Conmputer > Computer
Name tab > Change ... > Member of Domain : xxxx). I want to avoid it.




Do you have any ldap browser installed to check that the entries in
your ldap directory are the one you expect?



I can view record with 'smbldap-usershow test$' command

>

I did the simple migration from samba to samba+ldap, that only was a
major pain (part of it being I had ldap running and I had to integrate
the existing directiory rather than creating a new directory).

I'use a test SSID and change all what is needed to use the existing
domain SSID once I am ready for complete migration.


getent passwd command return this information, I changed
/etc/nsswitch.conf :

passwd: compat ldap
group: compat ldap
shadow: compat ldap


In fact you don't need to modify nsswitch for group and shadow, unless
you want your users to authenticate to the Unix machine too. Samba
will access LDAP server directly to read the group and password
information (and password is saved in the LDAP attributes
sambaNTPassword (and sambaLMPassword?), not in the Unix password).

Bests,

olivier

--
ubuntu-users mailing list
ubuntu-users@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
 
Old 07-05-2010, 03:39 PM
Chan Chung Hang Christopher
 
Default Migrate Windows 2000 AD to Ubuntu 10.4

Arnaud BLONDEL - Alter Way Solutions wrote:
> hi,
>
> I want to migrate from Active Directory (Windows 2000 server) to Samba /
> LDAP (Ubuntu 10.4 LTS)

Forget it. Not yet possible. Samba does not yet have full AD support. It
has partial support (enough to do replication but that is it) and so
you can just drop it for now.

--
ubuntu-users mailing list
ubuntu-users@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
 
Old 07-06-2010, 07:05 AM
Olivier Nicole
 
Default Migrate Windows 2000 AD to Ubuntu 10.4

B'jour,

> If I use computer which was on Windows domain, I can't open session with
> this computer on Ubuntu server (new PDC).
>
> I have this message "domain xxxx is not available"
>
> I need to add this computer to the domain again (My Conmputer > Computer
> Name tab > Change ... > Member of Domain : xxxx). I want to avoid it.

From Samba on machine A to Samba+LDAP on machine B, I could avoid to
add the clients to the new domain with some care in migrating from
server A to server B. Care consisted in keeping the same SSID on both
Samba (forcing B to use SSID of A) and keeping the same user name and
user ID and SSID for th emachine accounts.

Good luck,

Olivier

--
ubuntu-users mailing list
ubuntu-users@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
 

Thread Tools




All times are GMT. The time now is 08:34 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org