Q

How can Win2k3 password authenticate our Unix users?

We have been using CIFS/PAM_SMB to password authenticate our Unix users. Our WinTel group is upgrading to Windows Server 2003 (native mode) and the SMB support breaks. I have tried using PAM_KRB5, but Win2003 AD is breaking that as well. Is there a way to make this work?

I wish I could say for sure, but I don't have the ability to duplicate this in my lab. However, I believe rather than using Native Mode, you could use Mixed Mode. This would make it possible to add NT4 PDCs into the domain; Samba works well with WindowsNT PDCs.

Also, if you don't want to compromise that much, you can make sure that you are not running in Server 2003 mode, which is a super-charged Network 2003.

Finally, you may want to do a search for MKS AD4Unix, which is reported to help negotiate authentications between Samba and Active Directory.

There's a pretty good article on this at Security Focus.


Find information about Unix user groups in the UK.

This was first published in December 2004

Dig deeper on Microsoft Group Policy Management

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchServerVirtualization

SearchCloudComputing

SearchExchange

SearchSQLServer

SearchWinIT

SearchEnterpriseDesktop

SearchVirtualDesktop

Close