Red Hat ENTERPRISE LINUX 4 System Administration Manual page 233

Figure 22.3. Configuring Security Server Settings
The Security tab contains the following options:
• Authentication Mode — This corresponds to the security option. Select one of the following
types of authentication.
• ADS — The Samba server acts as a domain member in an Active Directory Domain (ADS)
realm. For this option, Kerberos must be installed and configured on the server, and Samba must
become a member of the ADS realm using the net utility, which is part of the samba-client
package. Refer to the net man page for details. This option does not configure Samba to be an
ADS Controller. Specify the realm of the Kerberos server in the Kerberos Realm field.
Note
The Kerberos Realm field must be supplied in all uppercase letters, such as
EXAMPLE.COM.
Use of your Samba server as a domain member in an ADS realm assumes proper
configuration of Kerberos, including the /etc/krb5.conf file.
• Domain — The Samba server relies on a Windows NT Primary or Backup Domain Controller
to verify the user. The server passes the username and password to the Controller and waits
for it to return. Specify the NetBIOS name of the Primary or Backup Domain Controller in the
Authentication Server field.
The Encrypted Passwords option must be set to Yes if this is selected.
• Server — The Samba server tries to verify the username and password combination by passing
them to another Samba server. If it can not, the server tries to verify using the user authentication
mode. Specify the NetBIOS name of the other Samba server in the Authentication Server field.
Graphical Configuration
215