Difference between revisions of "Integrating CIFS Server with LDAP-UX"

From jasonhoss.com
Jump to: navigation, search
(Preparing HP-UX)
(Configure CIFS Server (Samba))
Line 20: Line 20:
 
: * Assuming the LDAP server, respond N to using NDS LDAP
 
: * Assuming the LDAP server, respond N to using NDS LDAP
 
: * Select number 4 to make this server an ADS Member Server
 
: * Select number 4 to make this server an ADS Member Server
: * Follow the remaining prompts to configure this system within Active Directory.
+
: * Confirm Y to proceed with ADS Member Server configuration
 +
: * Enter the name of the computer you wish to add to Active Directory.  Typically this will be the current hostname of the HP-UX server that CIFS-Server is being configured on.
 +
: * Enter the Kerberos realm name used by the AD implementation
 +
: * Confirm the Realm by responding with Y.
 +
: * Enter the FQDN of the ADS Domain Controller for the realm.
 +
: * Confirm the ADS Domain Controller with Y.
 +
: * Respond with Y or N depending on whether or not multiple domain controllers should be added.
 +
: * Provide the Domain Controller's Administrative username.
 +
: * If everything entered looks good, respond Y to accept.
 +
: * The samba_setup utility will attempt use an existing krb5.conf file to authenticate against the Active Directory domain.
 +
: * Provide the password for the Domain Controller's Administrative username.
 +
: * Provide the password for the Domain Controller's Administrative username again to join the HP-UX host to the Active Directory domain.
 +
: * Verify smb.conf and start the CIFS server by typing:
 +
# startsmb
  
 
==Configure LDAP-UX==
 
==Configure LDAP-UX==

Revision as of 09:36, 4 April 2011

Preparing HP-UX

  • Install CIFS-Server A.03.01 or later
  • Install LdapUXClient B.05.01 or later
  • Ensure latest version of krb5client and PAM-Kerberos
  • If server is currently configured as an LDAP-UX client, you must remove the configuration before proceeding with the CIFS implementation. The reason is due to the computer account created by the LDAP-UX “autosetup” process is incompatible with the computer account that is created by the “samba_setup” process.
  • Backup the /etc/krb5.conf, /etc/pam.conf and /etc/nsswitch.conf files because the “netleave” command will remove or modify them.
  • To properly remove the LDAP-UX configuration execute:
# /opt/ldapux/config/netleave
  • Ensure that the computer account has been removed from the “Computers” container in Active directory.

Configure CIFS Server (Samba)

  • Run /opt/samba/bin/samba_setup to begin the server setup
* Respond Y to continue setup
* Respond Y if you wish to use this servers as a WINS server or N the environment already has WINS or does not
* Response Y if you wish to use another WINS server in the environment or N if you do not wish to use WINS.
* Assuming the LDAP server, respond N to using NDS LDAP
* Select number 4 to make this server an ADS Member Server
* Confirm Y to proceed with ADS Member Server configuration
* Enter the name of the computer you wish to add to Active Directory. Typically this will be the current hostname of the HP-UX server that CIFS-Server is being configured on.
* Enter the Kerberos realm name used by the AD implementation
* Confirm the Realm by responding with Y.
* Enter the FQDN of the ADS Domain Controller for the realm.
* Confirm the ADS Domain Controller with Y.
* Respond with Y or N depending on whether or not multiple domain controllers should be added.
* Provide the Domain Controller's Administrative username.
* If everything entered looks good, respond Y to accept.
* The samba_setup utility will attempt use an existing krb5.conf file to authenticate against the Active Directory domain.
* Provide the password for the Domain Controller's Administrative username.
* Provide the password for the Domain Controller's Administrative username again to join the HP-UX host to the Active Directory domain.
* Verify smb.conf and start the CIFS server by typing:
# startsmb

Configure LDAP-UX