• Masim “Vavai” Sugianto

    Founder PT. Excellent Infotama Kreasindo– perusahaan email services provider (ESP) dan menjadi konsultan pada berbagai instansi pemerintah, korporasi besar, lembaga perbankan dan institusi pendidikan di Indonesia.

    Lebih detail tentang Vavai.




  • Publishing

  • Recent Posts

    • TOEFL ITP Score (Kedua)
    • Bisnis Kelapa Muda
    • Model Usaha
    • Back-End Developer, Front-End Developer & Staff IT Support
    • Markas Excellent Danita
  • Recent Comments

    • swenqw.company.site on Instalasi Squid Proxy Server pada OpenSUSE
    • zeke on Mudah Belajar Java Bersama [SuSE] Linux – 2, Installasi Java
    • canadian pharmacy viagra brand on Instalasi Squid Proxy Server pada OpenSUSE
    • medicine-online.estranky.skclankyunderstand-covid-19-and-know-the-tricks-to-avoid-it-from-spreading-----medical-services.html on Instalasi Squid Proxy Server pada OpenSUSE
    • asebg.bigcartel.comcanadian-pharmacy on Instalasi Squid Proxy Server pada OpenSUSE
  • Archives

    • April 2022
    • January 2022
    • July 2021
    • June 2021
    • February 2021
    • January 2021
    • December 2020
    • August 2020
    • July 2020
    • April 2020
    • March 2020
    • August 2019
    • July 2019
    • June 2019
    • March 2019
    • February 2019
    • January 2019
    • November 2018
    • October 2018
    • August 2018
    • May 2018
    • April 2018
    • January 2018
    • December 2017
    • July 2017
    • December 2016
    • November 2016
    • April 2016
    • March 2016
    • November 2015
    • July 2015
    • April 2015
    • November 2014
    • October 2014
    • February 2014
    • January 2014
    • December 2013
    • November 2013
    • October 2013
    • September 2013
    • August 2013
    • June 2013
    • May 2013
    • March 2013
    • February 2013
    • January 2013
    • December 2012
    • November 2012
    • October 2012
    • September 2012
    • August 2012
    • July 2012
    • June 2012
    • May 2012
    • April 2012
    • March 2012
    • February 2012
    • January 2012
    • December 2011
    • November 2011
    • October 2011
    • September 2011
    • August 2011
    • July 2011
    • June 2011
    • May 2011
    • April 2011
    • March 2011
    • February 2011
    • January 2011
    • December 2010
    • November 2010
    • October 2010
    • September 2010
    • August 2010
    • July 2010
    • June 2010
    • May 2010
    • April 2010
    • March 2010
    • February 2010
    • January 2010
    • October 2008
    • September 2008
    • August 2008
    • July 2008
    • June 2008
    • May 2008
    • April 2008
    • March 2008
    • February 2008
    • January 2008
    • December 2007
    • November 2007
    • October 2007
    • September 2007
    • August 2007
    • July 2007
    • June 2007
    • May 2007
    • April 2007
    • March 2007
  • Home
  • Bisnis & Marketing
  • Computer & IT Related
  • Lifestyle
  • Publishing
  • Free Stuff
  • About
  • Kontak

Integrasi Account Samba PDC Zimbra Mail Server Pada CentOS Bagian 2

July 22, 2011

Artikel Sebelumnya  :  Integrasi Account Samba PDC Zimbra Mail Server Pada CentOS Bagian 1

Instalasi Samba

Instalasi Samba pada CentOS dapat dilakukan dengan yum ( terminal/konsole ) atau dengan gui.

Berikut adalah cara install samba dengan Terminal/konsole

yum groupinstall "Windows File Server"

yum groupinstall "Windows File Server"

Jika menggunakan gui, buka Menu Applications → Add/Remove Software → Browse → Servers dan checklist Windows File Server kemudian Apply

Modifikasi Konfigurasi samba

  • Buka file /etc/samba/smb.conf dengan teks editor ( vi,vim,nano,gedit dll)
  • Edit dan sesuaikan seperti berikut
Code:
[global]

workgroup = ZCSPDC

server string = Samba Server Version %v

netbios name = zcspdc

log file = /var/log/samba/%m.log

max log size = 1000

security = user

obey pam restrictions = no

passdb backend = ldapsam:ldap://192.168.56.2

ldap ssl = off

ldap admin dn = uid=zmposixroot,cn=appaccts,cn=zimbra

ldap suffix = dc=vavai,dc=co,dc=id

ldap group suffix = ou=groups

ldap user suffix = ou=people

ldap machine suffix = ou=machines

domain master = yes

domain logons = yes

logon script =

logon path =

add user script = /usr/sbin/useradd "%u" -n -g users

add machine script = /usr/sbin/useradd -M -s /sbin/nologin %u

add group script = /usr/sbin/groupadd "%g"

delete user script = /usr/sbin/userdel "%u"

delete user from group script = /usr/sbin/userdel "%u" "%g"

delete user script = /usr/sbin/groupdel "%g"

local master = yes

os level = 33

encrypt passwords = true

ldap passwd sync = yes

preferred master = yes

wins support = yes

dns proxy = no

load printers = yes

cups options = raw

[printers]

comment = All Printers

path = /var/spool/samba

browseable = no

guest ok = no

writable = no

printable = yes

# Un-comment the following and create the netlogon directory for Domain Logons

[netlogon]

guest ok = yes

browseable = no

comment = Network Logon Service

writable = no

path = /var/lib/samba/netlogon

; share modes = no

Setelah file smb.conf di edit dan save, jalankan perintah berikut

smbpasswd -w rahasia

smbpasswd -w rahasia

 

rahasia –> password root samba ( sebaiknya samakan password root samba dengan password zmposix dan zmposixroot agar tidak membingunkan )

Konfigurasi Ldap Client ( nss_ldap dan pam_ldap )

Di dalam CentOS,  nss_ldap dan pam_ldap sudah include ke dalam satu paket rpm nss_ldap, install nss_ldap

yum -y install nss_ldap

yum -y install nss_ldap

Setelah diinstall, jalankan perintah berikut

authconfig --enableldap --enableldapauth --disablenis --enablecache --ldapserver=192.168.56.2 --ldapbasedn=dc=vavai,dc=co,dc=id --updateall

authconfig --enableldap --enableldapauth --disablenis --enablecache --ldapserver=192.168.56.2 --ldapbasedn=dc=vavai,dc=co,dc=id --updateall

perintah diatas otomatis akan mengupdate/mengkonfigurasi file /etc/ldap.conf , /etc/nsswitch.conf dan /etc/pam.d/system-auth. Meskipun file /etc/ldap.conf harus di edit manual

buka file /etc/ldap.conf dan sesuaikan :

host 192.168.56.2
base dc=vavai,dc=co,dc=id
binddn uid=zmposix,cn=appaccts,cn=zimbra
bindpw rahasia
rootbinddn uid=zmposixroot,cn=appaccts,cn=zimbra
port 389
bind_policy soft
nss_reconnect_tries 2
uri ldap://192.168.56.2/
ssl start_tls
tls_cacertdir /opt/zimbra/conf/ca
tls_checkpeer no
pam_password md5
nss_base_passwd         ou=people,dc=vavai,dc=co,dc=id?one
nss_base_passwd         ou=machines,dc=vavai,dc=co,dc=id?one
nss_base_shadow         ou=people,dc=vavai,dc=co,dc=id?one
nss_base_group          ou=groups,dc=vavai,dc=co,dc=id?one
nss_base_hosts          ou=machines,dc=vavai,dc=co,dc=id?one

host 192.168.56.2 base dc=vavai,dc=co,dc=id binddn uid=zmposix,cn=appaccts,cn=zimbra bindpw rahasia rootbinddn uid=zmposixroot,cn=appaccts,cn=zimbra port 389 bind_policy soft nss_reconnect_tries 2 uri ldap://192.168.56.2/ ssl start_tls tls_cacertdir /opt/zimbra/conf/ca tls_checkpeer no pam_password md5 nss_base_passwd ou=people,dc=vavai,dc=co,dc=id?one nss_base_passwd ou=machines,dc=vavai,dc=co,dc=id?one nss_base_shadow ou=people,dc=vavai,dc=co,dc=id?one nss_base_group ou=groups,dc=vavai,dc=co,dc=id?one nss_base_hosts ou=machines,dc=vavai,dc=co,dc=id?one

Panduan berikutnya, kurang lebih sama dengan artikel berikut :Konfigurasi samba domain menggunakan zimbra admin & konfigurasi client

Sumber terkait : UNIX_and_Windows_Accounts_in_Zimbra_LDAP_and_Zimbra_Admin_UI

dan samba-integration-join-machine

Silakan dicoba dan Semoga bermanfaat 😀

Centospdcplanet-terasi-aggregatorRed HatSambaZimbra
Share

Migrasi Server  / Tips, Tricks & Tutorial

Ahmad Imanudin
Ahmad Imanudin, Guest Blogger di http://www.vavai.com.Tinggal di Bekasi. Bekerja sebagai salah satu support di PT. Excellent Infotama Kreasindo.

You might also like

Webinar Zimbra : Mindset untuk Team IT
July 29, 2020
Eskalasi Masalah Email : mailbox unavailable invalid DNS MX or A/AAAA resource record
July 14, 2020
Two Factor Authentication (2FA/TFA) untuk Meningkatkan Keamanan Akses Email
April 24, 2020

5 Comments


Integrasi Account Samba PDC Zimbra Mail Server Pada CentOS Bagian 1 | Migrasi Windows Linux
July 22, 2011 at 9:04 pm

[…] akan berlanjut pada artikel : Integrasi Account Samba PDC Zimbra Mail Server Pada CentOS Bagian 2 Ahmad Imanudin, Tinggal di Bekasi , Linux Addict Ahmad Imanudin View all posts by Ahmad […]



care_end
July 28, 2011 at 1:27 am

authconfig –enableldap –enableldapauth –disablenis –enablecache –ldapserver=192.168.56.2 –ldapbasedn=dc=vavai,dc=co,dc=id –updateall

command diatas kl di ubuntu gimana ya mas? configure pam ma nss nya di ubuntu gimana ya??

wah berguna banget nih modul.. ditunggu configure make ubuntu nya mas vavai.



Masim Vavai Sugianto
July 28, 2011 at 8:02 am

@care_end,

Kalau di openSUSE bisa langsung pakai YAST, kalau di Ubuntu seingat saya begitu diinstall nss dan pamnya akan otomatis menampilkan tools konfigurasi, kita cukup mengisi ldap server yang akan diakses.



care_end
July 29, 2011 at 11:48 am

Tapi kenapa ya pas configure gak da masalah tapi permasalahannya Domain Admin gak bisa nambah user baru maupun ganti passwd user yg telah ada. Apa karena saya telah buat semua user dulu baru configure ldapnya ya?

Mohon Pencerahan, trims



care_end
July 29, 2011 at 11:50 am

Invalid request Message: invalid request: createAccount invalid schema change: [LDAP: error code 65 – object class ‘posixAccount’ requires attribute ‘uidNumber’] Error code: service.INVALID_REQUEST Method: CreateAccountRequest Details:soap:Sender

begitu kira2 pesan erronya..



Leave a Reply

Your email address will not be published. Required fields are marked *

CAPTCHA
Refresh

*

  • Artikel



  • Blogroll

    • DNS Propagation Checker
    • Instagram Photo/Video Downloader
    • PT. Excellent Infotama Kreasindo
  • Publishing

  • Recent Posts

    • TOEFL ITP Score (Kedua)
    • Bisnis Kelapa Muda
    • Model Usaha
    • Back-End Developer, Front-End Developer & Staff IT Support
    • Markas Excellent Danita
    • Pekerjaan Excellent
    • iMac 2021
    • Problem Solving
    • Kolam Mina Padi/Mina Genjer
    • Team Excellent


  • Links Ads

  • Recent Post

    • TOEFL ITP Score (Kedua)
    • Bisnis Kelapa Muda
    • Model Usaha
    • Back-End Developer, Front-End Developer & Staff IT Support
    • Markas Excellent Danita
    • Pekerjaan Excellent
    • iMac 2021
    • Problem Solving
    • Kolam Mina Padi/Mina Genjer
    • Team Excellent
    • Telur Bebek Mentah
    • Kursi Kayu dan Gerobak Angkringan
    • Kebun Pisang Barangan dan Ambon Kuning
    • Ternak Bebek
    • Data Statistik Covid dan Edukasi Media
  • Recent Comments

    • swenqw.company.site on Instalasi Squid Proxy Server pada OpenSUSE
    • zeke on Mudah Belajar Java Bersama [SuSE] Linux – 2, Installasi Java
    • canadian pharmacy viagra brand on Instalasi Squid Proxy Server pada OpenSUSE
    • medicine-online.estranky.skclankyunderstand-covid-19-and-know-the-tricks-to-avoid-it-from-spreading-----medical-services.html on Instalasi Squid Proxy Server pada OpenSUSE
    • asebg.bigcartel.comcanadian-pharmacy on Instalasi Squid Proxy Server pada OpenSUSE
    • dkyubn.bizwebs.com on Instalasi Squid Proxy Server pada OpenSUSE
    • http://aonubs.website2.me/ on Instalasi Squid Proxy Server pada OpenSUSE
    • canadian pharmacy online on Instalasi Squid Proxy Server pada OpenSUSE
    • site592154748.fo.team on Instalasi Squid Proxy Server pada OpenSUSE
    • kqwsh.wordpress.com20220516what-everybody-else-does-when-it-comes-to-online-pharmacies on Instalasi Squid Proxy Server pada OpenSUSE