Active Directory Integration with Samba for RHEL.pdf

Active Directory Integration with Samba for RHEL/CentOS 5 This article will show you how to join your Linux server into the Active Directory domain, how to integrate the Active Directory user accounts into the Linux user accounts and how to authenticate users in Active Directory using Winbind, a component of Samba. A better way to integrate Active Directory into your Linux mail server is by using Postfix’s Virtual User Accounts. Samba is installed by default when you select the Server installation type during the installation process. In case you need to install or reinstall it, just add the Windows File Server package located in the Servers category using the Package Manager tool. Setup and Configure Winbind 1. Click System, select Administration and click Authentication. This will launch the Authentication Configuration window. 2. Check the Enable Winbind Support and click Configure Winbind. This will launch the Winbind Settings window. 3. In the Winbind Settings window, set the Security Model to ads and fill in the Winbind Domain, Winbind ADS Realm and Winbind Domain Controllers. See sample settings below. Winbind Domain acme Winbind ADS Realm acme.local Domain Controllers server1.acme.local,server2.acme.local If you would like to allow your Active Directory users to login to your Linux system, change Template Shell to /bin/bash. To ensure the success of the Active Directory integration, make sure that your Active Directory DNS is working, you are using the Active Directory DNS, you can ping the domain controllers and that the difference between the domain controllers’ clock and the mail server’s clock is not more than five minutes. 4. Click Join Winbind Domain. You will be asked to save your changes, click Save. In the Joining Winbind Domain window, fill in the Domain Administrator and Password. Click Ok when you are done. Click Ok again to close the Winbind Settings window. 5. Click the Authentication tab and check