[Freeipa-devel] freeipa and samba
Thomas Sailer
t.sailer at alumni.ethz.ch
Sun Feb 10 19:46:29 UTC 2008
On Wed, 2008-02-06 at 15:25 -0500, Simo Sorce wrote:
> Yes, in IPA v1.0 the concept of machine accounts still do not exist.
> For samba anyway, machine accounts are just user accounts and must be
> available via nss calls, so at all effects what you need for now is just
> regular user accounts named after the machine name.
Well, machines normally live under ou=Computers, not ou=People. I think
I'll stay with smbldap-tools, until IPA has the machine account concept.
> No they are more advanced tools to tweak an installation, you shouldn't
> need to use them for day to day operations though.
True wrt. the configuration dialogs, but the user/group editing GUI does
not seem to be usable for IPA, as it isn't able to add sambaSam and krb
stuff.
I have some problems with accessing the IPA gui. It works with curl, but
I couldn't get neither firefox on F8, nor IE and firefox on XP to access
the gui. They seem to do SPNEGO, but the ticket does not seem to be
delegatable. What exact browser / krb5 library versions are you using on
the client?
Tom
More information about the Freeipa-devel
mailing list