scalix and openldap same box

[doug767]

i know there's a lot of info on this all over this forum and most things say it's possible BUT you have to change a port number for one of the ldap services. i understand that fully.

my question is sort of two fold but let me explain what i'm trying to accomplish first.

i have a testbox setup that's running ubuntu 6 server. i updated and upgraded it, than installed java. i than installed scalix using the script available here so it's ver. 11.1. what i'd like is to replace a windows sbs and i'm looking to use one box to be the ldap, samba, web and email server and a few other services.

the first part of my question is what are ALL of the files that have to have the ldap port changed in scalix?

and the second part is i'm wondering if the scalix ldap can be modded to also authenticate samba instead of having to have two ldap services running and syncing on the same box.???

[sutton.ryan]

doug767,

I have not used Scalix as a central LDAP, but you might be interested regardless.

I have a test box for my side company that I treat as a true production server. I have Fedora Directory Server installed on Centos5. FDS is running on port 390 and 636. I have tweaked it so samba uses FDS for authentication. I also use "posix" type group management within FDS that allows me to assign linux permissions using the FDS users and groups for the file server. My file shares are simply shared with user access allowed in samba. This is similar to share level permissions for Microsoft. The samba share is the root folder with all users having access. I control all file server permissions and access from bash. (Centos5 is configured to authenticate against LDAP so it can use the FDS users & groups with chown). This is similar to setting NTFS permissions for groups and folders. Samba simply authenticates file access logins. If a user does not have the correct group membership, the linux file permissions will deny access, I don't use the true microsoft domain or group security. XP clients can login using pGina with the LDAP plugin.

Scalix 11.3 is installed on the same Centos5 box. Scalix also authenticates against FDS. This makes the local scalix password irrelevant, but scalix will allow login using either password (FDS or scalix if you configure it this way). Note user accounts in scalix and FDS are identical.

Using Bind DDNS & DHCP on the Centos box, MS SBS can be completely removed. This is not a simple task and administration of user accounts and permissions is not as simple as with MS SBS. For example, samba stores passwords in FDS, but they are not the same LDAP password. To change a user password, both the FDS web front and samba via usermin (or ssh bash) is necessary. I have not yet figured out how to syncronize the LDAP and samba passwords stored in FDS. I have been running this server for several years, paying no license fees.

I am a RHCT and MCSE. If you put enough research and time into your task, it is possible. If you don't have time, then SBS might make more sense for you given you can afford the licensing. I enjoy this stuff, so I invest a lot of personal time in it.

ryan