This plugin connects OMV6 to an OPEN-LDAP Server for centralized user management and authentification. Originally this is / was a fork of the official plugin[1]
Note that this is the old school way of connecting Samba to LDAP. Recent documentation recommends to use the LDAP that is integrated into Samba since version 4.
You can use LDAP for system wide User- and Groupmanagement. Additionally you can activate PAM auth with libpam-ldapd module. The name switch service is done with libnss-ldapd. For caching actually the NSCD service is used, maybe we should change from NSLCD to SSSD in future. A good explanation of the pam auth and nss process will give you the reference [4]. This repo is under development. Checkout the tags in the master branch for stable and tested releases. If you encounter some problems make a new issue. Be aware: This code was tested in a clean environment with fresh installed OMV5 setup. I am not responsible for loss of your data! Please make always a full backup of your OMV machine before installing this plugin!
Create DEB package with dpkg-buildpackage -uc -us inside the
source directory. The *.deb file will be placed in the parent
directory. A script to build the files using docker is also provided
(build-package-using-docker.sh)
Upload the generated *.deb file to OMV6 using scp and install it via apt (e.g. apt install *.deb). Once it is installed, you have an additional menu item for LDAP Server settings within Users.
For testing a local LDAP can be setup. See install-tools.sh.
Environment:
- Openmediavault 6.x (Shaitan) with running SAMBA service
- OpenLDAP 2.4.47 server (setup with
smbldap-populate) - all smbldap-tools 0.9.9-1 installed on OMV5
If you get in trouble, try:
- update system with
apt-get updateandapt-upgrade - remove all uploaded packages via
omv-firstaidtool - remove plugin and reinstall
- change plugin settings
- get omv ldap config with
omv-confdbadm read "conf.service.ldap"
- [1] https://github.com/openmediavault
- [2] https://wiki.debian.org/LDAP/PAM
- [3] https://linux-club.de/wiki/opensuse/Samba_und_OpenLDAP
- [4] https://www.debuntu.org/how-to-set-up-a-ldap-server-and-its-clients-page-2/
- [5] https://deepdoc.at/dokuwiki/doku.php?id=server_und_serverdienste:openldap_mit_samba_als_pdc_neues_backend