Zach Chambers
2007-May-16 17:33 UTC
[Samba] Samba as a AD domain member server with idmap backend = ldap
Hi Folks, Hopefully an easy question. I've scoured FAQs, books and documentation and managed to get the above configuration working, but only by straying from the documentation in Chapter 14, example 14.4 of the Samba HOWTO: http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#id369912 Can someone confirm for me that when Samba is only an Active Directory domain MEMBER server with an LDAP idmap backend, the "nsswitch.conf" must still be set with: passwd: files winbind shadow: files winbind group: files winbind as opposed to: passwd: files ldap shadow: files ldap group: files ldap since the People and Groups, structures will not actually exist in LDAP unless you are setting up for a full PDC? Thanks! -Zach.
Gerald (Jerry) Carter
2007-May-18 15:32 UTC
[Samba] Samba as a AD domain member server with idmap backend = ldap
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Zach Chambers wrote:> Can someone confirm for me that when Samba is only an Active Directory > domain MEMBER server with an LDAP idmap backend, the "nsswitch.conf" > must still be set with: > > passwd: files winbind > shadow: files winbind > group: files winbindCorrect. jerry -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGTccNIR7qMdg1EfYRArLbAKDtGP9Pzq3b2mQh0ikUzJcBOwc71wCdFCoo p4utM5UnajVp3VW4CGORIJU=I9IY -----END PGP SIGNATURE-----