通过 LDAP 使用 Samba 的 Nextcloud [英] Nextcloud with Samba via LDAP

问题描述

我想将我的 samba 活动目录服务器与我的 nextcloud 连接起来.如果 samba4 有 ldap，我找不到任何信息?或者我如何安装 openldap 以便我的活动目录帐户和密码与 nextcloud 中的相同.

I want to connect my samba active directory server with my nextcloud. I cant find ANY information if samba4 has ldap or not? or how i could install openldap with it so that my active directory accounts and passwords are the same as in the nextcloud.

如何在 Samba4 Active Directory 服务器上配置 LDAP?

How to configure LDAP on an Samba4 Active Directory Server?

推荐答案

• Samba4 确实支持 LDAP 服务器，但它必须与 Active Directory 或 OpenLDAP 集成以提供要与其他应用程序一起使用的架构和其他相关属性依赖它进行身份验证.

• Samba4 does have support for LDAP server but it has to be integrated with Active Directory or OpenLDAP to provide a schema and other related attributes to be used with other applications dependent on it for authentication.

• 从那时起，将 OpenLDAP 配置为 Samba4 服务器的后端被视为传统，因为它最好在 AD 模式下与其自己的 LDAP 服务器集成.但是，如果您想在后端配置 OpenLDAP，使用 Active Directory 向外部应用程序提供身份验证，目录架构仍将是 AD 架构.因此，您将不得不更新访问目录的外部应用程序，例如您在使用 Samba 内部 LDAP 服务器时必须这样做.此外，您必须从旧 LDAP 服务器手动导入 AD 架构中未包含的属性.尽管如此，如果您想将 OpenLDAP 配置为 Active Directory 的后端，请在下面的链接中找到详细步骤:-

• And since, configuring OpenLDAP as a backend for the Samba4 server is considered as legacy because it is best integrated with its own LDAP server in AD mode. But still if you want to configure OpenLDAP in the backend with Active Directory providing authentication to external applications, the directory schema will still be AD schema. So, you will have to update external applications accessing the directory using, such as you must do it when you use the Samba internal LDAP server. Additionally, you will have to import attributes manually from the old LDAP server that are not included in the AD schema. Even though, if you want to configure OpenLDAP as the backend with Active Directory, please find the detailed steps in link below: -

https://ubuntu.com/server/docs/samba-openldap-backend

• 另外，请注意，没有计划支持 OpenLDAP 作为 Samba AD 的后端，因为 AD DC 复杂性的一个重要部分是在 LDB 模块中，例如创建通用 OpenLDAP 后端需要重写许多这些模块作为 OpenLDAP 覆盖，在标准 Samba 编程环境之外，其中特定问题包括 DRS 复制和目录同步所需的元数据、模式操作、事务和访问控制列表.有关在 Samba4 服务器上配置 ADDC 并将其与内部 LDAP 服务器集成的详细步骤，请找到以下链接:-

• Also, please note that it is not planned to support OpenLDAP as backend for Samba AD as a significant part of the complexity of the AD DC is in the LDB modules such as creating a general-purpose OpenLDAP back end requires rewriting many of these modules as OpenLDAP overlays, outside the standard Samba programming environment wherein specific problems include the metadata required for both DRS replication and dirsync, schema manipulation, transactions, and access control lists. Please find the below link for detailed steps on configuration of ADDC on Samba4 server and integrating it with internal LDAP server: -

https://wiki.samba.org/index.php/Setting_up_Samba_as_an_Active_Directory_Domain_Controller

• 此外，在将您的 Samba4 AD 服务器与 nextcloud 连接时，您可以很容易地做到这一点，因为 Nextcloud 附带了一个 LDAP 应用程序，以允许 LDAP 用户(包括 Active Directory)出现在您的 Nextcloud 用户列表中，这些用户列表将对 Nextcloud 进行身份验证他们的 LDAP 凭据，因此您不必为他们创建单独的 Nextcloud 用户帐户.请在以下链接中找到其配置的详细信息:-

• Also, on connecting your Samba4 AD server with nextcloud, you can do it so readily as Nextcloud ships with an LDAP application to allow LDAP users (including Active Directory) to appear in your Nextcloud user listings which will authenticate to Nextcloud with their LDAP credentials, so you don’t have to create separate Nextcloud user accounts for them. Please find the below link on detailed information for its configuration: -

https://docs.nextcloud.com/server/latest/admin_manual/configuration_user/user_auth_ldap.html

这篇关于通过 LDAP 使用 Samba 的 Nextcloud的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！