Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

two domains, Samba and LDAP AD lookup user authentication

Posted on 2011-02-18
2
Medium Priority
?
898 Views
Last Modified: 2012-05-11
In our company we are working with two Active Directory domains (DOMAIN1 and DOMAIN2) In DOMAIN1 we have a linux server running samba and are authenticating to the Domain controller for this domain. useres located in DOMAIN1 can access samba using \\SERVER\SHARE from logonscript.

in DOMAIN2 we have users have access to the Linux server in DOMAIN1, but have to authenticate with a DOMAIN1 user (yes they have 2 users). When authenticing they need to enter DOMAIN1\username and their password to get acces.

My question is, can we make the samba force user authentication to select user from DOMAIN1, sp that the users dont need to type DOMAIN1\username, but can just type username and password?

my other question is, Can samba use two domain controlles and two active directory to authenticate users from both domains?

Kind regards. A description of the elements in my "problem" This is the logon image i get from DOMAIN2, it works if i login using username DOMAIN1\Username
0
Comment
Question by:waaland
2 Comments
 
LVL 11

Accepted Solution

by:
willettmeister earned 2000 total points
ID: 34925339
I assuming  the users machines windows.  If so this is a function of windows not SAMBA.  Windows isn't designed to be able to authenticate to multiple domains simulataneously.  I don't think there is anything you can do to change that mechanism without messing up authentication to the systems primary domain.  
0
 

Author Comment

by:waaland
ID: 34977439
This is pretty much what we expected .)
0

Featured Post

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
High user turnover can cause old/redundant user data to consume valuable space. UserResourceCleanup was developed to address this by automatically deleting user folders when the user account is deleted.
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Suggested Courses

963 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question