Trihimbulus
asked on
Integrating a Linux Webserver (Groupware Project) into a Win 2003/2000 Active Directory-integrated Domain
I just built an Apache Web Server on a Suse 9.1 workstation for use in my intranet at work. I used the XAMPP for the Apache, PHP, and MYSQL. We are in need of Groupware- to help us with organizing meeting times, in/out board, calendar, etc...(ie. a privatley accesible internal website)
We have chosen an open-source package named 'MoreGroupWare'. I have installed it and it is running on the Suse box. This particular package needs PHP and MySql to work. I have created my databases in MySql and I can hit the login webpage from all hosts on my internal network.
The way this works is, the employees hit the URL of the internal website. Then they are prompted for a username and password. During the initial setup I have 3 choices for my users to login:
1) MySql
2) LDAP
3) Active Directory
4) NTLM
I tried LDAP and plugged in my PDC info, domain name etc.. and finished the install. Then when I tried to login as a user from my domain- i could not login. So then I logged in under admin and created a user and put them in a test group. Did not work!
Then I went to the Primary Domain Controller and found this error:
Source: Netlogon
EventID: 5723
The session setup from computer 'SUSEBOX' failed because the security database does not contain a trust account 'BPCGROUPIE$' referenced by the specified computer.
USER ACTION
If this is the first occurrence of this event for the specified computer and account, this may be a transient issue that doesn't require any action at this time. Otherwise, the following steps may be taken to resolve this problem:
If 'SUSEBOX$' is a legitimate machine account for the computer 'SUSEBOX', then 'SUSEBOX' should be rejoined to the domain.
If 'SUSEBOX$' is a legitimate interdomain trust account, then the trust should be recreated.
Otherwise, assuming that 'SUSEBOX$' is not a legitimate account, the following action should be taken on 'SUSEBOX':
If 'SUSEBOX' is a Domain Controller, then the trust associated with 'SUSEBOX$' should be deleted.
If 'SUSEBOX' is not a Domain Controller, it should be disjoined from the domain.
So I basically need to start a trust relationship- how would I go about doing this On both sides (ie. on the Suse Box and the PDC?) Also is this the way I want to go- for having my users login to the Groupware website? I need to set permissions so some people CAN edit things on this dynamic web page, and so some people CAN NOT. I thought it would be easier to have the users login as their Active Directory usernames, instead of creating new usernames and passwords.
As I mentioned before, I tried creating usernames and it would not work. I know this is a beast of a question, but thats why I threw it up at 500 points. Good luck guys and all help is greatly appreciated!!!!
We have chosen an open-source package named 'MoreGroupWare'. I have installed it and it is running on the Suse box. This particular package needs PHP and MySql to work. I have created my databases in MySql and I can hit the login webpage from all hosts on my internal network.
The way this works is, the employees hit the URL of the internal website. Then they are prompted for a username and password. During the initial setup I have 3 choices for my users to login:
1) MySql
2) LDAP
3) Active Directory
4) NTLM
I tried LDAP and plugged in my PDC info, domain name etc.. and finished the install. Then when I tried to login as a user from my domain- i could not login. So then I logged in under admin and created a user and put them in a test group. Did not work!
Then I went to the Primary Domain Controller and found this error:
Source: Netlogon
EventID: 5723
The session setup from computer 'SUSEBOX' failed because the security database does not contain a trust account 'BPCGROUPIE$' referenced by the specified computer.
USER ACTION
If this is the first occurrence of this event for the specified computer and account, this may be a transient issue that doesn't require any action at this time. Otherwise, the following steps may be taken to resolve this problem:
If 'SUSEBOX$' is a legitimate machine account for the computer 'SUSEBOX', then 'SUSEBOX' should be rejoined to the domain.
If 'SUSEBOX$' is a legitimate interdomain trust account, then the trust should be recreated.
Otherwise, assuming that 'SUSEBOX$' is not a legitimate account, the following action should be taken on 'SUSEBOX':
If 'SUSEBOX' is a Domain Controller, then the trust associated with 'SUSEBOX$' should be deleted.
If 'SUSEBOX' is not a Domain Controller, it should be disjoined from the domain.
So I basically need to start a trust relationship- how would I go about doing this On both sides (ie. on the Suse Box and the PDC?) Also is this the way I want to go- for having my users login to the Groupware website? I need to set permissions so some people CAN edit things on this dynamic web page, and so some people CAN NOT. I thought it would be easier to have the users login as their Active Directory usernames, instead of creating new usernames and passwords.
As I mentioned before, I tried creating usernames and it would not work. I know this is a beast of a question, but thats why I threw it up at 500 points. Good luck guys and all help is greatly appreciated!!!!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.