Hello
Anyone knows if it is possible to authenticate users of a windows 7 client machine as we do with UNIX clients with pam_ldap + nss_ldap to our openldap server ?
Thank you.
F
On 25/06/2010, at 1:08 AM, Frank Bonnet wrote:
Hello
Anyone knows if it is possible to authenticate users of a windows 7 client machine as we do with UNIX clients with pam_ldap + nss_ldap to our openldap server ?
Thank you.
F
The way that i achieved this is by using OpenLDAP as a backend to a Samba 3.X Primary Domain Controller. I have heard of other arbitrary authentication modules for windows, but as far as reliability and support, samba is the way to go.
On 06/25/2010 02:56 AM, Indexer wrote:
On 25/06/2010, at 1:08 AM, Frank Bonnet wrote:
Hello
Anyone knows if it is possible to authenticate users of a windows 7 client machine as we do with UNIX clients with pam_ldap + nss_ldap to our openldap server ?
Thank you.
F
The way that i achieved this is by using OpenLDAP as a backend to a Samba 3.X Primary Domain Controller. I have heard of other arbitrary authentication modules for windows, but as far as reliability and support, samba is the way to go.
Yes of course we also use Samba but we are in trouble with "seven" clients that cannot join the domain so I'm searching for alternate solutions ...
Yes of course we also use Samba but we are in trouble with "seven" clients that cannot join the domain so I'm searching for alternate solutions ...
If your having a problem with samba, perhaps emailing samba@lists.samba.org will help. Also, on a quick "off chance" have you applied the registry entries needed to windows 7 to join a samba 3.x domain? this same issue stumped me for many hours some weeks back.
Take a look at this link
http://technet.microsoft.com/en-us/library/ee681622(WS.10).aspx
That fixed my issue, for Windows server 2k8/r2 also.
William
2010.06.24. 17:38 keltezéssel, Frank Bonnet írta:
Hello
Anyone knows if it is possible to authenticate users of a windows 7 client machine as we do with UNIX clients with pam_ldap + nss_ldap to our openldap server ?
Thank you.
F
I know of only one solution pGina, its however its development ceased a few years ago. It was written with Windows 2000/XP semantics, I don't know if it works at all with Windows 7. At the other end you could store the LM and NT hashes Windows uses to authenticate the users to a pre AD domain in your OpenLDAP tree and use Samba to emulate an NT4 domain controller.
Geza
Frank Bonnet wrote:
FB> Anyone knows if it is possible to authenticate users of a FB> windows 7 client machine as we do with UNIX clients with FB> pam_ldap + nss_ldap to our openldap server ?
Yes. You need a conventional Samba 3.3 or 3.4 LDAP-backed domain controller and a small registry change on the clients. See
http://wiki.samba.org/index.php/Windows7
Cheers
Duncan
openldap-technical@openldap.org
-
Duncan Gibb -
Frank Bonnet -
Gémes Géza -
Indexer