From owner-freebsd-net@FreeBSD.ORG Fri Mar 21 06:53:53 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 25DA01065670 for ; Fri, 21 Mar 2008 06:53:53 +0000 (UTC) (envelope-from jontheil@gmail.com) Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.182]) by mx1.freebsd.org (Postfix) with ESMTP id EBF248FC24 for ; Fri, 21 Mar 2008 06:53:52 +0000 (UTC) (envelope-from jontheil@gmail.com) Received: by wa-out-1112.google.com with SMTP id k17so1422122waf.3 for ; Thu, 20 Mar 2008 23:53:52 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type; bh=Q6hqh27Y+7OIhDcAnL1335Jui+WJz4HlDT1d1qE5oNc=; b=XmPiQfnSQWj5rgt7BeYyrPGdQsAUkGI8yGdG04okt5cP6GludvWuhHRyStEmqLRrTE6Qrj+DZD2xaqgcT9KBUMXa/IWrl7L0goVlQiorbJE9Aa7PQ++5S21ONarr4/BvER9xFne1QSsaWxlZA0R7WVwy3bxqVkNYGdzUim/MfGo= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=message-id:date:from:to:subject:mime-version:content-type; b=ea81IPEiQ1m8BTWY9R2fyEWMHVii7EwfhhczJ/ushH4pyRw8OgSBO0wlR7hZKJ9QlaIF4SAreUeueWLXM0H3GkULTTOPpt4f8vd4zo244ML3JRt0Z80X0E+aPaoq8xKdTI6oNPrni65Ckm152t2826xJxwh9+jH0h9QgTb8dzqE= Received: by 10.114.136.1 with SMTP id j1mr5198658wad.85.1206080972931; Thu, 20 Mar 2008 23:29:32 -0700 (PDT) Received: by 10.114.168.6 with HTTP; Thu, 20 Mar 2008 23:29:32 -0700 (PDT) Message-ID: <8f82c35c0803202329k1aff674cgd7deee4c1a58e20b@mail.gmail.com> Date: Fri, 21 Mar 2008 07:29:32 +0100 From: "Jon Theil Nielsen" To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Samba PDC with VPN access X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Mar 2008 06:53:53 -0000 We have a Samba PDC on FreeBSD 7.0-release. The goal is to make users home drrives accessible throuth a VPN connection from Windows clients. Until now I have experimented with the Poptop server without much success and now have a working configuration based on Mpd4. This is not ideal, since I have to keep usernames/passwords manually updated in the mpd.secret file. And that can not be combined with users changing their own Samba and UNIX passwords via password sync. It seems that some kind of authentication via Winbind and ntml_auth would be a way to go. Maybe it can be done by installing a Radius server to communicate with Mpd, but that seems to be unnessesarily complicated. Does anyone know the "best" solution to achieve the goal? Regards, Jon Theil Nielsen