Comments on OpenLDAP + Samba Domain Controller On Ubuntu 7.10
OpenLDAP + Samba Domain Controller On Ubuntu 7.10 This document is a step by step guide for configuring Ubuntu 7.10 as a Samba Domain Controller with an LDAP backend (OpenLDAP). The point is to configure a server that can be comparable, from a central authentication point of view, to a Windows Server 2003 Domain Controller. The end result will be a server with an LDAP directory for storing user, group, and computer accounts. A Windows XP Professional SP2 workstation will be able to join the domain once properly configured.
16 Comment(s)
Comments
This is the "how to" i´ve waiting for months/years... Congratulations rickyjones to make our life more easy!!!
Brilliant tutorial! Thanks heaps :)
Either there's a step missing though, or I'm doing something wrong (most likely), but I can't seem to get it work quite right. I cannot seem to add Windows workstations to the domain, and using phpLDAPAdmin, I can only seem to access it in readonly mode. Trying to use the LDAP Browser in Webmin also gives the following error: "The LDAP browser cannot be used : No user to login as was found in the LDAP server configuration". I'm guessing it's all related to the same issue...
Can anyone give me some tips? Or suggest where I can get more info to provide?
Cheers,
Japh
First, I want to thank rickyjones for making this guide that's just work. I think you should have included roaming profile and home share settings in your guide though. Well, I managed to figure out that part anyway, so it's all good.
As for the one above me, you should have used the forum as asked to but oh well: you have to add your admin DN and password into LDAP server configuration in LDAP server module of webmin for it to work.
How did you 'figure out' the roaming profiles? I really need to know this and dont have much experience with ubuntu server and openldap or samba!
Hi Thuan,
How did you manage to get the roaming profile right?
I have an auto installer for Ubuntu 8.1. You can download it from my website www.setschoolsfree.com. The installer may work with other debain versions of linux but I have not had the change to test it. The installer is intended for use by schools but anyone can use it including companies.
Hi Jack
thank you to public your wizard. I will test it on a lenny VM
The tutorial is great. At least about a great topic. I am surprised there are no easy alternatives to W2003 server.
Anyway I had problems at step 4. The mentioned file (/etc/ldap/slapd.conf) is not on my Ubuntu system. I need to say that I am using the desktop edition, not the server, and I am using 8.10 and not 7.10. I followed all the prerequisites and steps before, I believe.
Because the file is not there, I tried skipping the step (I know this is not good). If skipping step 4, I get serious errors at step 7, as follows:
entry dc=codina,dc=local already exist.
adding new entry: ou=Users,dc=codina,dc=local
adding new entry: ou=Groups,dc=codina,dc=local
adding new entry: ou=Computers,dc=codina,dc=local
adding new entry: ou=Idmap,dc=codina,dc=local
adding new entry: uid=root,ou=Users,dc=codina,dc=local
failed to add entry: objectClass: value #4 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 55.
adding new entry: uid=nobody,ou=Users,dc=codina,dc=local
failed to add entry: objectClass: value #4 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 83.
adding new entry: cn=Domain Admins,ou=Groups,dc=codina,dc=local
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 95.
adding new entry: cn=Domain Users,ou=Groups,dc=codina,dc=local
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 106.
... (a few more like this)
Anyone experienced this?
First of all, great how-to. Very straightforward and well-commented/explained.
However, I keep getting the same error message. I have tried running through the procedure thrice now, to make sure I haven't missed some 'critical' step or anything, but the same error:
"Use of uninitialized value in substitution (s///) at /usr/share/perl5/smbldap_tools.pm line 135, <CONFIGFILE> line 115"
I get this error msg at step 8 ("smbldap-useradd -a -m -M ricky -c "Richard M" ricky. I am running this after a fresh install of Ubuntu Server v.8.04.1. Any tips?
Thanks, -darryl
If you are using Ubuntu Server 8.10 and you are missing slapd.conf at Step 4, it is because Ubuntu 8.10 version of Open LDAP utilizes a new configuration scheme. There is no slapd.conf any more. You have to create one from scratch and edit /etc/default/slapd to tell OpenLDAP where to find it.
Information about that is here: http://ubuntuforums.org/showthread.php?t=980713
For this to work "out of the box", you'd better use Ubuntu 7.10.
Step 4-Cannot find slapd.conf in /etc/ldap. I have installed Ubuntu Server 8.10 and also installed the desktop version so I have the GUI mode. I cannot find the file slapd.conf in my whole Ubuntu box after installing the mentioned package OpenLDAP and following all your steps. Please help.
Now that I have setup domain control with SAMBA and ldap, what is the right way to backup the system in case the server fail? How can I setup a BDC?
Also, in daily backup of config files and ldap user login information, what is the right way to do?
At Preface /etc/hosts should look like this:
127.0.0.1 localhost
192.168.0.60 dc01-ubuntu.example.local dc01-ubuntu
or
127.0.1.1 dc01-ubuntu.example.local dc01-ubuntu
Otherwise good tutorial!
Recently I installed samba PDC using following article. It really helps me, thanks a lot "universal"
Hi, ho to join from Ubuntu client computer to that domain server. Thanks
hello !
Im trying to setup samba+ldap on ubuntu 16.04 , and im suspecious if the procedure is diffrent in or no ?
could you letme know the procedure in ubuntu16.04 ?