05-20-2005
Active Directory is Windows (as you know), and doesn't run on UNIX. Samba can provide 'similar' functionality from a UNIX server, but does not support the replication "feature" of Active Directory, AFAIK.
However, you could set up Kerberos, BIND, and Samba, and use the server as a Domain Controller for a Windows [NT] Domain. There are countless how-tos on the web, Google is your friend.
8 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hello - I have a very vague question, which will probably result in vague answers because I don't have a lot of detailed information and I don't know a whole lot about active directory.
Our Windows/NT admin has been rolling out Active Directory over the past several weeks and as time goes on,... (1 Reply)
Discussion started by: rm -r *
1 Replies
2. UNIX for Advanced & Expert Users
Hi all,
I experienced a problem when making a LDAP search from Unix Netscape or Unix Mozilla adressbooks into my Active Directory LDAP db for email addresses.
I add my Domain Controller hostname and the LDAP root dir to search in.
For example:
Name: AD
LDAP server: gullvi
Search Root:... (0 Replies)
Discussion started by: tonlu
0 Replies
3. UNIX for Dummies Questions & Answers
Hi all,
If Windows server have an active directory and active folder/mapping(maybe in unix NFS).
Is there any similiar fuctions in unix. Actually if we have a hundred client in unix/linux with unix server, I want to manage user client and access control easier as in windows.
Thank you in... (5 Replies)
Discussion started by: blesets
5 Replies
4. Shell Programming and Scripting
Automated Unix to Windows Active Directory FTP
I have done many automated FTP scripts using the following logic:
===============================
echo "Starting the FTP transfer..."
{ echo "
open 192.168.1.100
user username password
ascii
put... (1 Reply)
Discussion started by: Cbish68
1 Replies
5. UNIX for Advanced & Expert Users
Hey guys.
Maybe this should go in Security, I'm not sure...
At my work we make websites. Our development servers for these websites are run on a central Debian linux server which we can SSH into, which also contains all the files for these websites. These files are served to the entire... (1 Reply)
Discussion started by: nottrobin
1 Replies
6. Shell Programming and Scripting
Hi folks
I need to write UNIX script (with ldapsearch) to query Active Directory. Input is NT login name and output is Email address.
Attached a screenshot of Sysinternals "AD Explorer". I need to do the same in CLI.
http://i.imgur.com/4s6FB.png
I am absolute LDAP/ldapsearch noob. (0 Replies)
Discussion started by: slashdotweenie
0 Replies
7. Solaris
At the moment we are integrating LDAP in our environment.
Compared to Windows this process is much complicated and time consuming.
With Windows you had Active Directory and if you create a new server, you just add it to the domain and your finished.
Yes, I know Unix is not Windows.
Are there... (1 Reply)
Discussion started by: misterx12345
1 Replies
8. Solaris
Gentleman,
i am trying to setup Authentication for my Solaris 11 Server through Active Directory (Server 2012 R2).
At least some things are already working, for example a getent passwd mydomainuser and ldapsearch command comes back with a correct result. So not everything i did was wrong.
... (1 Reply)
Discussion started by: bahnhasser83
1 Replies
LEARN ABOUT SUSE
idmap_adex
IDMAP_ADEX(8) System Administration tools IDMAP_ADEX(8)
NAME
idmap_adex - Samba's idmap_adex Backend for Winbind
DESCRIPTION
The idmap_adex plugin provides a way for Winbind to read id mappings from an AD server that uses RFC2307 schema extensions. This module
implements both the idmap and nss_info APIs and supports domain trustes as well as two-way cross forest trusts. It is a read-only plugin
requiring that the administrator provide mappings in advance by adding the POSIX attribute information to the users and groups objects in
AD. The most common means of doing this is using "Identity Services for Unix" support on Windows 2003 R2 and later.
Note that you must add the uidNumber, gidNumber, and uid attributes to the partial attribute set of the forest global catalog servers. This
can be done using the Active Directory Schema Management MMC plugin (schmmgmt.dll).
NSS_INFO
The nss_info plugin supports reading the unixHomeDirectory, gidNumber, loginShell, and uidNumber attributes from the user object and the
gidNumber attribute from the group object to fill in information required by the libc getpwnam() and getgrnam() family of functions. Group
membership is filled in according to the Windows group membership and not the msSFU30PosixMember attribute.
Username aliases are implement by setting the uid attribute on the user object. While group name aliases are implemented by reading the
displayname attribute from the group object.
EXAMPLES
The following example shows how to retrieve idmappings and NSS data from our principal and trusted AD domains.
[global]
idmap backend = adex
idmap uid = 1000-4000000000
idmap gid = 1000-4000000000
winbind nss info = adex
winbind normalize names = yes
AUTHOR
The original Samba software and related utilities were created by Andrew Tridgell. Samba is now developed by the Samba Team as an Open
Source project similar to the way the Linux kernel is developed.
Samba 3.5 06/18/2010 IDMAP_ADEX(8)