2010-09-09 02:43:59 +02:00
|
|
|
\documentclass{beamer}
|
2010-10-19 02:50:59 +02:00
|
|
|
|
|
|
|
%%% Pacchetti di uso comune per lingua, encoding di input e di font
|
2010-09-09 02:43:59 +02:00
|
|
|
\usepackage[italian]{babel}
|
2010-09-30 04:00:47 +02:00
|
|
|
\usepackage[utf8x]{inputenc}
|
|
|
|
\usepackage[T1]{fontenc}
|
|
|
|
\usepackage{textcomp}
|
2010-10-19 02:50:59 +02:00
|
|
|
|
|
|
|
%%% Uso MyriadPro - Incluso in Acrobat Reader > 8.0
|
2010-09-30 04:00:47 +02:00
|
|
|
\usepackage{Myriad}
|
|
|
|
\renewcommand{\sfdefault}{Myriad-OsF}
|
2010-10-19 02:50:59 +02:00
|
|
|
|
|
|
|
%%% Uso Bitstream Vera Mono per il codice
|
2010-09-30 04:00:47 +02:00
|
|
|
\usepackage[scaled]{beramono}
|
2010-10-19 02:50:59 +02:00
|
|
|
|
|
|
|
%%% Se volessi utilizzare Biolinum (da Libertine)
|
|
|
|
%\usepackage[scaled]{libertine}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
% Erano per XeLaTeX...
|
2010-10-19 02:50:59 +02:00
|
|
|
% Sfortunatamente XeLaTeX non è compatibile con pdfcube: manca il supporto
|
|
|
|
% poppler
|
2010-09-30 04:00:47 +02:00
|
|
|
%\usepackage{lmodern,textcomp,fontspec,xunicode,xltxtra}
|
|
|
|
%\setsansfont[Mapping=tex-text,Ligatures=Common]{Myriad Pro}
|
|
|
|
%\setmonofont[Mapping=tex-text,Scale=.9]{Consolas}
|
2010-09-09 02:43:59 +02:00
|
|
|
|
2010-10-19 02:50:59 +02:00
|
|
|
%%% Tema, stile di uncover, default overlay e colore di struttura
|
2010-09-16 00:56:17 +02:00
|
|
|
\usetheme{Warsaw}
|
|
|
|
\setbeamercovered{transparent}
|
2010-10-19 02:50:59 +02:00
|
|
|
\beamerdefaultoverlayspecification{<+->}
|
|
|
|
\setbeamercolor{alerted text}{fg=structure}
|
2010-09-16 00:56:17 +02:00
|
|
|
|
2010-10-19 02:50:59 +02:00
|
|
|
%%% Definisco un po' di modifiche sulla bibliografia
|
2010-09-13 20:32:51 +02:00
|
|
|
\setbeamertemplate{bibliography item}[triangle]
|
2010-09-13 23:55:14 +02:00
|
|
|
%\setbeamercolor*{bibliography entry author}{fg=black}
|
2010-09-13 20:32:51 +02:00
|
|
|
|
2010-10-19 02:50:59 +02:00
|
|
|
%%% Sovrascrive la definizione della footline per ottenerne una a due colonne
|
2010-09-13 20:32:51 +02:00
|
|
|
\setbeamertemplate{footline}{%
|
|
|
|
\leavevmode%
|
|
|
|
\hbox{%
|
|
|
|
\begin{beamercolorbox}[wd=.5\paperwidth,ht=2.25ex,dp=1ex,right]{author in head/foot}%
|
|
|
|
\usebeamerfont{author in head/foot}\insertshortauthor~~(\insertshortinstitute)\hspace*{2ex}
|
|
|
|
\end{beamercolorbox}%
|
|
|
|
\begin{beamercolorbox}[wd=.5\paperwidth,ht=2.25ex,dp=1ex]{title in head/foot}%
|
|
|
|
\hspace*{2ex}\usebeamerfont{title in head/foot}\insertshorttitle\hfill%
|
|
|
|
\insertframenumber{} / \inserttotalframenumber\hspace*{2ex}
|
|
|
|
\end{beamercolorbox}}
|
|
|
|
\vskip0pt%
|
|
|
|
}
|
2010-10-19 02:50:59 +02:00
|
|
|
|
|
|
|
%%% Definisco shell (mostra console utente) e shell* (console di root)
|
|
|
|
\setbeamercolor{shell snippet}{fg=lightgray,bg=black}
|
|
|
|
\newenvironment{shell}{\par\vspace*{.7em}\begin{beamercolorbox}[sep=.5em]{shell snippet}\ttfamily {\color{blue}\$}}{\end{beamercolorbox}}
|
|
|
|
\newenvironment{shell*}{\par\vspace*{.7em}\begin{beamercolorbox}[sep=.5em]{shell snippet}\ttfamily {\color{red}\#}}{\end{beamercolorbox}}
|
|
|
|
\newcommand{\urlify}[1]{{\color{blue}\url{#1}}}
|
|
|
|
|
|
|
|
%%% Definisco snippet
|
|
|
|
\newenvironment{snippet}[1]{\begin{block}{Estratto: \texttt{#1}}\ttfamily}{\end{block}}
|
|
|
|
|
|
|
|
%%%% Struttura principale della presentazione %%%%
|
|
|
|
|
2010-09-11 20:41:06 +02:00
|
|
|
%%% Global structure %%%
|
2010-09-09 04:13:20 +02:00
|
|
|
\title[Linux, Samba e AD]{Fileserver con SAMBA e Windows}
|
2010-09-09 02:43:59 +02:00
|
|
|
\subtitle{Integrazione con \textit{Microsoft Active Directory}}
|
|
|
|
|
2010-09-09 04:13:20 +02:00
|
|
|
\author[E.~Vavassori (BGlug) --- LD10]{Emiliano Vavassori}
|
2010-09-09 02:43:59 +02:00
|
|
|
\institute[BGlug]{BGlug --- Bergamo Linux User Group\\
|
2010-09-09 04:13:20 +02:00
|
|
|
Circoscrizione n° 2, Largo Röntgen n° 3\\
|
2010-09-09 02:43:59 +02:00
|
|
|
24128 Bergamo}
|
|
|
|
|
|
|
|
\date[LD10]{23 ottobre 2010 --- LinuxDay 2010}
|
2010-09-09 04:13:20 +02:00
|
|
|
\subject{Fileserver con SAMBA e Windows --- Integrazione con Active Directory}
|
2010-09-09 02:43:59 +02:00
|
|
|
|
2010-10-19 02:50:59 +02:00
|
|
|
%%% Dovrò specificare un logo...
|
2010-09-09 02:43:59 +02:00
|
|
|
% \pgfdeclareimage[height=0.5cm]{university-logo}{university-logo-filename}
|
|
|
|
% \logo{\pgfuseimage{university-logo}}
|
|
|
|
|
|
|
|
\begin{document}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}
|
2010-09-09 02:43:59 +02:00
|
|
|
\titlepage
|
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}
|
2010-10-19 02:50:59 +02:00
|
|
|
\frametitle{Premessa}\transboxin<1>\centering
|
2010-09-12 19:05:01 +02:00
|
|
|
Tutto il materiale qui riportato è disponibile a questo indirizzo:
|
|
|
|
|
|
|
|
\bigskip\Large
|
|
|
|
\alert{\url{http://tinyurl.com/ld10-samba}}
|
|
|
|
|
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}
|
|
|
|
\frametitle{\textit{Lightning Talk}?}\transboxin<1>
|
2010-09-11 20:41:06 +02:00
|
|
|
\begin{itemize}[<+->]
|
|
|
|
\item Richiesta «passiva» sul sito del BGlug
|
|
|
|
\item Limitazione nell'obiettivo
|
|
|
|
\item Livello tecnico abbastanza alto
|
|
|
|
\item Procedura di setup di meno di mezz'ora (compresi test)
|
|
|
|
\item Poco tempo per la preparazione del talk \texttt{O:-)}
|
|
|
|
\end{itemize}
|
|
|
|
|
|
|
|
\bigskip
|
2010-09-13 23:55:14 +02:00
|
|
|
\begin{block}{Un piccolo dubbio mi assale\ldots\ \textbf{Esaustivo}?}
|
|
|
|
Non si può fare un \textit{lightning talk} su \textit{Active Directory} in
|
|
|
|
senso stretto. Ci vorrebbe una giornata intera.
|
2010-09-11 20:41:06 +02:00
|
|
|
\end{block}
|
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-10 01:55:30 +02:00
|
|
|
\frametitle{Obiettivo}
|
|
|
|
|
|
|
|
\begin{block}{}
|
|
|
|
Creare un \emph{file server} integrato con una struttura \textit{Active
|
|
|
|
Directory} preesistente.
|
|
|
|
\end{block}
|
|
|
|
|
|
|
|
\bigskip
|
2010-09-13 23:55:14 +02:00
|
|
|
\visible<2>{%
|
|
|
|
\begin{block}{Integrato con \emph{Active Directory}}
|
2010-09-11 20:41:06 +02:00
|
|
|
Gli utenti saranno in grado di accedere ai documenti condivisi senza
|
|
|
|
ulteriori autenticazioni da macchine di dominio con utenze di dominio.
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{block}}
|
2010-09-10 01:55:30 +02:00
|
|
|
|
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-13 23:55:14 +02:00
|
|
|
\frametitle{0.0 --- Struttura della rete}
|
|
|
|
|
|
|
|
\begin{block}{Domain Controller --- \itshape Windows 2003 Server}\ttfamily
|
|
|
|
10.0.0.1\hspace*{4ex}testdc.domain.local
|
2010-09-09 02:43:59 +02:00
|
|
|
\end{block}
|
|
|
|
|
2010-09-13 23:55:14 +02:00
|
|
|
\bigskip
|
|
|
|
\begin{block}<1->{File Server --- \itshape Debian 5.0 «Lenny»}\ttfamily
|
|
|
|
10.0.0.100\hspace*{2ex}linuxfs.domain.local
|
|
|
|
\end{block}
|
2010-09-09 02:43:59 +02:00
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-13 23:55:14 +02:00
|
|
|
\frametitle{0.1 --- Indirizzi del fileserver}
|
|
|
|
|
|
|
|
Prima di partire, conviene verificare l'indirizzo di rete:
|
|
|
|
\begin{shell*}
|
|
|
|
ip address show eth0
|
|
|
|
\end{shell*}
|
|
|
|
|
|
|
|
\bigskip
|
|
|
|
\onslide<2->%
|
|
|
|
Verificare il \textit{Fully Qualified Domain Name} (FQDN):\\
|
|
|
|
\begin{snippet}{/etc/hosts}
|
|
|
|
10.0.0.100 linuxfs.domain.local linuxfs \textbackslash\\
|
|
|
|
\hspace*{2ex}localhost.localdomain localhost
|
|
|
|
\end{snippet}
|
|
|
|
|
2010-09-11 20:41:06 +02:00
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-13 23:55:14 +02:00
|
|
|
\frametitle{0.2 --- Indirizzi del domain controller}
|
2010-09-13 20:32:51 +02:00
|
|
|
|
2010-09-13 23:55:14 +02:00
|
|
|
Verificare DNS primario e dominio:
|
|
|
|
\begin{snippet}{/etc/resolv.conf}
|
2010-09-11 20:41:06 +02:00
|
|
|
nameserver 10.0.0.1\\
|
|
|
|
search domain.local\\
|
|
|
|
domain domain.local
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{snippet}
|
2010-09-13 20:32:51 +02:00
|
|
|
|
2010-09-13 23:55:14 +02:00
|
|
|
\bigskip
|
|
|
|
\onslide<2->%
|
|
|
|
Verificare comunicazione e risoluzione nomi:
|
2010-09-13 20:32:51 +02:00
|
|
|
\begin{shell}
|
|
|
|
ping 10.0.0.1
|
|
|
|
\end{shell}
|
|
|
|
\begin{shell}
|
|
|
|
ping testdc.domain.local
|
|
|
|
\end{shell}
|
|
|
|
\begin{shell}
|
|
|
|
ping testdc
|
|
|
|
\end{shell}
|
|
|
|
|
2010-09-11 20:41:06 +02:00
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-13 23:55:14 +02:00
|
|
|
\frametitle{1 --- Installazione pacchetti necessari}
|
2010-09-11 20:41:06 +02:00
|
|
|
|
2010-09-13 23:55:14 +02:00
|
|
|
\begin{shell*}
|
2010-09-11 20:41:06 +02:00
|
|
|
aptitude install openntpd ntpdate krb5-user samba winbind smbclient
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
2010-09-11 20:41:06 +02:00
|
|
|
|
2010-09-13 23:55:14 +02:00
|
|
|
\bigskip
|
|
|
|
\onslide<2->%
|
2010-09-11 20:41:06 +02:00
|
|
|
Opzionalmente:
|
2010-09-13 23:55:14 +02:00
|
|
|
\begin{shell*}
|
2010-09-11 20:41:06 +02:00
|
|
|
aptitude install smbfs
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
2010-09-11 20:41:06 +02:00
|
|
|
|
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-11 20:41:06 +02:00
|
|
|
\frametitle{2 --- Configurazione NTP}
|
2010-09-13 23:55:14 +02:00
|
|
|
Fermiamo il servizio:
|
|
|
|
\begin{shell*}
|
2010-09-11 20:41:06 +02:00
|
|
|
/etc/init.d/openntpd stop
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
|
|
|
|
|
|
|
\bigskip
|
|
|
|
\onslide<2->%
|
|
|
|
\begin{snippet}{/etc/openntpd/ntpd.conf}
|
2010-09-11 20:41:06 +02:00
|
|
|
server testdc.domain.local
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{snippet}
|
|
|
|
|
|
|
|
\bigskip
|
|
|
|
\onslide<3->%
|
|
|
|
Impostiamo l'ora\ldots
|
|
|
|
\begin{shell*}
|
2010-09-11 20:41:06 +02:00
|
|
|
ntpdate testdc.domain.local
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
|
|
|
|
|
|
|
\bigskip
|
|
|
|
\onslide<4>%
|
|
|
|
\ldots e riavviamo il servizio:
|
|
|
|
\begin{shell*}
|
2010-09-11 20:41:06 +02:00
|
|
|
/etc/init.d/openntpd start
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
2010-09-11 20:41:06 +02:00
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-12 19:05:01 +02:00
|
|
|
\frametitle{3 --- Configurazione Kerberos}
|
2010-09-13 23:55:14 +02:00
|
|
|
\begin{snippet}{/etc/krb5.conf}
|
2010-09-12 19:05:01 +02:00
|
|
|
[libdefaults]\\
|
|
|
|
default\_realm = DOMAIN.LOCAL\\
|
|
|
|
\ldots\newline
|
|
|
|
[realms]\\
|
|
|
|
DOMAIN.LOCAL = \{\\
|
|
|
|
\hspace{2ex}kdc = testdc.domain.local\\
|
|
|
|
\hspace{2ex}admin\_server = testdc.domain.local\\
|
|
|
|
\}\\
|
|
|
|
\ldots\newline
|
|
|
|
[domain\_realm]\\
|
|
|
|
.domain.local = DOMAIN.LOCAL\\
|
|
|
|
domain.local = DOMAIN.LOCAL
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{snippet}
|
2010-09-12 19:05:01 +02:00
|
|
|
\end{frame}
|
2010-09-09 04:35:31 +02:00
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-13 23:55:14 +02:00
|
|
|
\frametitle{4.0 --- Configurazione SAMBA: generale}
|
|
|
|
\begin{snippet}{/etc/samba/smb.conf}
|
2010-09-12 19:05:01 +02:00
|
|
|
[global]\\
|
|
|
|
workgroup = DOMAIN\\
|
2010-09-13 23:55:14 +02:00
|
|
|
\alert<2>{\textbf<2>{realm = DOMAIN.LOCAL}}\\
|
2010-09-12 19:05:01 +02:00
|
|
|
wins server = 10.0.0.1\\
|
2010-09-13 23:55:14 +02:00
|
|
|
\alert<2>{\textbf<2>{security = ads}}\\
|
|
|
|
\alert<2>{\textbf<2>{password server = testdc.domain.local}}\\
|
2010-09-12 19:05:01 +02:00
|
|
|
obey pam restrictions = yes\\
|
|
|
|
unix password sync = yes\\
|
2010-09-13 23:55:14 +02:00
|
|
|
\alert<2>{\textbf<2>{winbind separator = +}}\\
|
|
|
|
\alert<2>{\textbf<2>{winbind use default domain = yes}}
|
|
|
|
\end{snippet}
|
2010-09-12 19:05:01 +02:00
|
|
|
\end{frame}
|
2010-09-09 04:35:31 +02:00
|
|
|
|
2010-09-12 19:05:01 +02:00
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-13 23:55:14 +02:00
|
|
|
\frametitle{4.1 --- Configurazione SAMBA: condivisioni}
|
|
|
|
\begin{snippet}{/etc/samba/smb.conf}
|
2010-09-12 19:05:01 +02:00
|
|
|
[shared]\\
|
|
|
|
comment = \ldots\\
|
|
|
|
path = /var/local/shared\\
|
2010-09-13 23:55:14 +02:00
|
|
|
\alert<2>{\textbf<2>{valid users = \%U}}\\
|
2010-09-12 19:05:01 +02:00
|
|
|
browseable = yes\\
|
|
|
|
writable = yes\\
|
|
|
|
guest ok = no\\
|
|
|
|
read only = no\\
|
2010-09-13 23:55:14 +02:00
|
|
|
\alert<3>{\textbf<3>{create mask = 0664}}\\
|
|
|
|
\alert<3>{\textbf<3>{directory mask = 0775}}
|
|
|
|
\end{snippet}
|
2010-09-12 19:05:01 +02:00
|
|
|
|
2010-09-13 23:55:14 +02:00
|
|
|
\bigskip
|
|
|
|
\onslide<4->
|
|
|
|
Infine testiamo il file:
|
|
|
|
\begin{shell*}
|
2010-09-12 19:05:01 +02:00
|
|
|
testparm
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
2010-09-12 19:05:01 +02:00
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-12 19:05:01 +02:00
|
|
|
\frametitle{5 --- Messa in dominio}
|
2010-09-13 23:55:14 +02:00
|
|
|
Riavviamo i servizi:
|
|
|
|
\begin{shell*}
|
2010-09-12 19:05:01 +02:00
|
|
|
/etc/init.d/samba restart
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
|
|
|
\begin{shell*}
|
2010-09-12 19:05:01 +02:00
|
|
|
/etc/init.d/winbind restart
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
2010-09-12 19:05:01 +02:00
|
|
|
|
2010-09-13 23:55:14 +02:00
|
|
|
\medskip
|
2010-09-12 19:05:01 +02:00
|
|
|
\onslide<2->
|
2010-09-13 23:55:14 +02:00
|
|
|
Verifichiamo che Kerberos funzioni:
|
|
|
|
\begin{shell*}
|
2010-09-12 19:05:01 +02:00
|
|
|
kinit -a administrator
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
2010-09-12 19:05:01 +02:00
|
|
|
|
2010-09-13 23:55:14 +02:00
|
|
|
\medskip
|
2010-09-12 19:05:01 +02:00
|
|
|
\onslide<3->
|
2010-09-13 23:55:14 +02:00
|
|
|
Messa in dominio:
|
|
|
|
\begin{shell*}
|
2010-09-12 19:05:01 +02:00
|
|
|
net ads join -U Administrator
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
2010-09-12 19:05:01 +02:00
|
|
|
|
2010-09-13 23:55:14 +02:00
|
|
|
\medskip
|
2010-09-12 19:05:01 +02:00
|
|
|
\onslide<4->
|
2010-09-13 23:55:14 +02:00
|
|
|
Verifichiamo che si riesca ad accedere alle informazioni di dominio:
|
|
|
|
\begin{shell*}
|
2010-09-12 19:05:01 +02:00
|
|
|
wbinfo -u
|
2010-09-13 23:55:14 +02:00
|
|
|
\end{shell*}
|
|
|
|
|
|
|
|
\end{frame}
|
2010-09-09 04:35:31 +02:00
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-13 20:32:51 +02:00
|
|
|
\frametitle{Un \textit{cadeau}}
|
|
|
|
Possiamo «importare» magicamente gruppi e utenze all'interno della macchina
|
2010-09-13 23:55:14 +02:00
|
|
|
Linux aggiungendo:
|
|
|
|
\begin{snippet}{/etc/nsswitch.conf}
|
|
|
|
passwd: compat \alert{\bfseries winbind}\\
|
|
|
|
\alert{\bfseries passwd\_compat: winbind}\\
|
|
|
|
group: compat \alert{\bfseries winbind}\\
|
|
|
|
\alert{\bfseries group\_compat: winbind}\\
|
|
|
|
shadow: compat \alert{\bfseries winbind}
|
|
|
|
\end{snippet}
|
|
|
|
|
|
|
|
\bigskip
|
|
|
|
\visible<2->{%
|
|
|
|
Sarà ora possibile attribuire i permessi a intere cartelle come:
|
|
|
|
\begin{shell*}
|
|
|
|
chown -R root:'domain users' /var/local/shared
|
|
|
|
\end{shell*}}
|
2010-09-13 20:32:51 +02:00
|
|
|
\end{frame}
|
|
|
|
|
2010-10-19 02:50:59 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
|
|
|
\frametitle{Difetti d'implementazione}
|
|
|
|
\begin{itemize}
|
|
|
|
\item Non utilizza Heimdal Kerberos (se necessario LDAP, da preferire)
|
|
|
|
\item Incompatibilità con sistemi \textit{Microsoft} più moderni: Windows
|
|
|
|
7, Windows 2008 Server.\\
|
|
|
|
\visible<3->{\alert{Soluzione} --- Samba 3.4 da \textit{Lenny Backports}}
|
|
|
|
\item<4-> L'implementazione attuale non permette il login sul file server di
|
|
|
|
utenze di dominio (necessario configurare PAM)
|
|
|
|
\end{itemize}
|
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-13 20:32:51 +02:00
|
|
|
\frametitle{Cosa possiamo fare ora?}
|
|
|
|
A partire da quanto messo a punto ora possiamo implementare:
|
|
|
|
|
|
|
|
\begin{itemize}[<+->]
|
|
|
|
\item un proxy autenticato (Squid + \texttt{auth\_ntlm})
|
|
|
|
\item un \textit{domain controller} Linux-based (LDAP)
|
|
|
|
\end{itemize}
|
|
|
|
\end{frame}
|
|
|
|
|
2010-09-30 04:00:47 +02:00
|
|
|
\begin{frame}\transboxin<1>
|
2010-09-13 20:32:51 +02:00
|
|
|
\frametitle{Sitografia}
|
|
|
|
|
|
|
|
\begin{thebibliography}{The Samba HOWTO and Reference Guide}
|
|
|
|
|
|
|
|
\bibitem<1>[SAMBA]{SAMBA}
|
2010-09-13 23:55:14 +02:00
|
|
|
The SAMBA Team
|
|
|
|
\newblock\textit{The Official Samba 3.5.x HOWTO and Reference Guide}
|
|
|
|
\newblock\urlify{http://tinyurl.com/samba-howto}
|
|
|
|
|
|
|
|
\bibitem<1>[SurlyJake]{Surlyjake}
|
|
|
|
Blog di Jake Surly
|
|
|
|
\newblock Post: \textit{Join Debian Lenny to Active Directory using
|
|
|
|
Samba}
|
|
|
|
\newblock\urlify{http://tinyurl.com/samba-adjoin}
|
2010-09-13 20:32:51 +02:00
|
|
|
|
|
|
|
\bibitem<1>[Deb-DC]{Deb-DC}
|
2010-09-13 23:55:14 +02:00
|
|
|
Guide Debianizzati
|
|
|
|
\newblock\textit{Samba e OpenLDAP: creare un controller di dominio con
|
|
|
|
Debian Lenny}
|
|
|
|
\newblock\urlify{http://tinyurl.com/deb-dc}
|
2010-09-13 20:32:51 +02:00
|
|
|
|
|
|
|
\bibitem<1>[Deb-SDC]{Deb-SDC}
|
2010-09-13 23:55:14 +02:00
|
|
|
Guide Debianizzati
|
|
|
|
\newblock\textit{Samba, OpenLDAP, Kerberos: creare un controller di
|
|
|
|
dominio sicuro con Debian Lenny}
|
|
|
|
\newblock\urlify{http://tinyurl.com/deb-secure-dc}
|
2010-09-13 20:32:51 +02:00
|
|
|
|
|
|
|
\end{thebibliography}
|
|
|
|
\end{frame}
|
|
|
|
|
2010-09-12 19:05:01 +02:00
|
|
|
% End slide
|
2010-09-09 02:43:59 +02:00
|
|
|
\end{document}
|