Setup LDAP with Openfiler
How to configure LDAP so that Windows shares will work with Openfiler.
Configure LDAP for SambaThe assumption is that LDAP is already up and running with user accounts with the posixAccount object classes.
Add samba.schema to LDAPCopy samba.schema from /usr/share/doc/samba-3.0.10/LDAP to /etc/openldap
Add the samba.schema to slapd.confinclude /etc/openldap/schema/samba.schema
Install smbldap-toolsCopy all the *.pl and *.pm scripts from /usr/share/doc/samba-3.0.10/LDAP/smbldap-tools to /usr/local/sbin
Configure smbldap_config.pm for your LDAP server.
Run make in the mkntpwd directory and copy mkntpwd to /usr/local/sbin
Add sambaSamAccount to all existing usersFor each user in LDAP run:
/usr/local/sbin/smbldap-usermod.pl -a <username>
This will add the sambaSamAccount class to the user.
Change each users passwordEach user will need to have their password reset so that the Samba password values match the ldap password values.
For each user in LDAP run:
/usr/local/sbin/smbldap-passwd.pl <username>
(make sure ldappasswd is in your path)
Configure OpenFilerOn the Accounts -> Authentication screen:
Check Use Ldap and fill in the following fields:
- Server
- Base DN
- Authenticated Base DN
- Authenticated bind password
- Root Bind DN
- Root bind passwordCheck Login SMB server to root DN
LDAP users and groups will now show up under the Users and Group tabs