Zimbra community members are often asking us how to integrate Zimbra with Samba in order to replace their current directory with Zimbra LDAP. User lfarkas, posted an article to Zimbra wiki where he wrote: “If we can manage posix and samba account in Zimbra’s LDAP server through Zimbra admin UI, than we’ve got everything (we only must configure Samba to use Zimbra’s LDAP server) and in this case that can be a real killer app!”.
Today we posted to Zimbra Gallery three extensions for Zimbra Admin UI that allow do exactly what lfarkas was talking about. In addition to these extensions. A detailed HOW TO that explains how to use the extensions and configure Linux and Samba to use Zimbra LDAP is now is Zimbra wiki: UNIX_and_Windows_Accounts_in_Zimbra_LDAP_and_Zimbra_Admin_UI
A short 3 min video demonstrates this feature in action.
on April 24th, 2007 at 5:47 pm
Forgot to mention that the setup was tested on two Ubuntu 6.10 Edgy servers (one for Zimbra/LDAP and one for Samba), Ubuntu 6.10 Edgy Desktop and WinXP Desktop. All running inside VMWare.
on April 25th, 2007 at 8:12 am
w00t! This is cool indeed. Might become a killer app indeed. Will test this asap.
on April 26th, 2007 at 2:16 am
thank you very nıce thank you veryy veryy much…
on April 30th, 2007 at 11:42 am
Ppl have asked about password synchronization between zimbra, linux and windows. The answer is real simple. Add
ldap passwd sync = yes
to smb.conf and Samba will update zimbra passwords (which happen to be the same as linux passwords) in LDAP.
on May 22nd, 2007 at 1:08 pm
Putting “ldap passwd sync = yes” on smb.conf makes Samba update zimbra/linux passwords and NT password.
But, if the user changes the password on the Zimbra UI the NT password will be changed?
EDITOR: We don’t have sync today.
on May 24th, 2007 at 7:26 pm
Yes, very nice work… When a zimbra-samba-5.x.x.deb package ?
I’ll use it, sure.
on June 15th, 2007 at 6:06 am
The Wiki is updated with specifics of nss_ldap/pam_ldap configuration on RHEL5/CentOS5
on August 24th, 2007 at 12:49 am
You can install ejabberd to use zimbra’s ldap. And here is the configuration:
% For LDAP authentication use these lines instead of above one:
{auth_method, ldap}.
{ldap_servers, [”gregzimbra1.zimbra.com”]}. % List of LDAP servers
{ldap_uidattr, “uid”}. % LDAP attribute that holds user ID
{ldap_base, “ou=people,dc=gregzimbra1,dc=zimbra,dc=com”}. % Search base of LDAP directory
{ldap_rootdn, “uid=zimbra,cn=admins,cn=zimbra”}. % LDAP manager
{ldap_password, “test123″}. % Password to LDAP manager
Hope this help when your client asking for instant messaging service with zimbra.
on August 31st, 2007 at 4:04 pm
RE:Putting “ldap passwd sync = yes” on smb.conf makes Samba update zimbra/linux passwords and NT password. But, if the user changes the password on the Zimbra UI the NT password will be changed?
—
According to posts elsewhere it doesn’t.
Does anybody have a solution? Otherwise if a user changes password using Windows dialog, Zimbra administrator will be unable to change it back through Admin UI. The only way now to change unknown login and zimbra passwords is with smbldap-passwd tool.
on September 5th, 2007 at 12:05 pm
In ZCS 5.0 Admin UI Extension Framework includes a hook for invoking third party calls when accounts password is changed. The new version of zimbra_samba extension makes use of this. If you change an accounts password via admin UI in the latest ZCS 5.0 with the latest zimbra_samba extension, sambaNtPasswordHash will also be changed. However, you still need to disable changing password in the mail UI.
on September 25th, 2007 at 6:25 pm
thanks
on November 9th, 2007 at 11:20 am
thankss
on November 21st, 2007 at 6:22 pm
So I have Samba and Zimbra hooked up and changing passwords in Samba does indeed update Zimbra. But…
If I set the zimbraPasswordMustChange flag, this is not registered by Samba and in fact, changing the password from Samba doesn’t reset the Must Change Password flag.
This leads to a situation where a new user logged in, changed his password via Windows/Samba then logged on to Zimbra which asked him to change his password again. He then had to change the password again on Windows to ensure everything was synced up.
Has anyone made Samba obey the zimbraPasswordMustChange flag?
Cheers,
David