S Murthy Kambhampaty
2007-Jun-22 13:43 UTC
[Samba] idmap_ad Integration with Windows 2003 pre-R2
Is then new idmap_ad module capable of getting uid/gid info from a Windows 2003
AD pre-R2 with RFC2307 Unix Identity Mapping Extensions applied?
Also, is the correct syntax for specifying the schema_mode as follows:
idmap config dom.example.com:schema_mode = rfc2307
(I am not confident that I am reading the idmap_ad manpage and the new idmap
document correctly.)
Thanks for the help,
Murthy
____________________________________________________________________________________
Pinpoint customers who are looking for what you sell.
http://searchmarketing.yahoo.com/
On Thu, 2007-06-21 at 10:55 -0700, S Murthy Kambhampaty wrote:> Is then new idmap_ad module capable of getting uid/gid info from a Windows 2003 AD pre-R2 with RFC2307 Unix Identity Mapping Extensions applied? > > Also, is the correct syntax for specifying the schema_mode as follows: > idmap config dom.example.com:schema_mode = rfc2307Right now we support only the short domain name, not the FQDN domain name, all the rest is like you said. Simo.> > > Simo Sorce > Samba Team GPL Compliance Officer > email: idra@samba.org > http://samba.org
S Murthy Kambhampaty
2007-Jun-22 15:43 UTC
[Samba] idmap_ad Integration with Windows 2003 pre-R2
Simo, thanks for the info on the configuration syntax. I'm still uncertain whether the rfc2307-related AD schema extensions in Windows 2003 are compatible with Samba, or the R2 schema update is needed. When I use idmap_ad in our Win2k3 environment, on `getent passwd` winbind logs an error of "ads_check_posix_schema_mapping: failed NT_STATUS_NONE_MAPPED" at libads/ldap_schema.c:ads_check_posix_schema_mapping(243), which suggests that the AD schema does not have the particular uid/gid attribs that winbind is looking for. Could this be due to differences in the schema between the pre-R2 and R2 versions of the AD schema in Win 2k3? Thanks, Murthy ----- Original Message ---- From: simo <idra@samba.org> To: S Murthy Kambhampaty <smk_va@yahoo.com> Cc: samba@lists.samba.org Sent: Friday, June 22, 2007 10:28:29 AM Subject: Re: [Samba] idmap_ad Integration with Windows 2003 pre-R2 On Thu, 2007-06-21 at 10:55 -0700, S Murthy Kambhampaty wrote:> Is then new idmap_ad module capable of getting uid/gid info from a Windows 2003 AD pre-R2 with RFC2307 Unix Identity Mapping Extensions applied? > > Also, is the correct syntax for specifying the schema_mode as follows: > idmap config dom.example.com:schema_mode = rfc2307Right now we support only the short domain name, not the FQDN domain name, all the rest is like you said. Simo.> > > Simo Sorce > Samba Team GPL Compliance Officer > email: idra@samba.org > http://samba.org____________________________________________________________________________________ Never miss an email again! Yahoo! Toolbar alerts you the instant new Mail arrives. http://tools.search.yahoo.com/toolbar/features/mail/
S Murthy Kambhampaty
2007-Jun-27 21:17 UTC
[Samba] idmap_ad Integration with Windows 2003 pre-R2
According to our network admins, we are using the rfc2307(pre-R2) schema. Thanks, Murthy ----- Original Message ---- From: simo <idra@samba.org> To: S Murthy Kambhampaty <smk_va@yahoo.com> Cc: samba@lists.samba.org Sent: Friday, June 22, 2007 12:22:10 PM Subject: Re: [Samba] idmap_ad Integration with Windows 2003 pre-R2 On Fri, 2007-06-22 at 08:42 -0700, S Murthy Kambhampaty wrote:> Simo, thanks for the info on the configuration syntax. > > I'm still uncertain whether the rfc2307-related AD schema extensions > in Windows 2003 are compatible with Samba, or the R2 schema update > is needed. When I use idmap_ad in our Win2k3 environment, on `getent > passwd` winbind logs an error of "ads_check_posix_schema_mapping: > failed NT_STATUS_NONE_MAPPED" at > libads/ldap_schema.c:ads_check_posix_schema_mapping(243), which > suggests that the AD schema does not have the particular uid/gid > attribs that winbind is looking for. Could this be due to differences > in the schema between the pre-R2 and R2 versions of the AD schema in > Win 2k3?It depends, what schema are you using? We support sfu or rfc2307(R2) Simo. -- Simo Sorce Samba Team GPL Compliance Officer email: idra@samba.org http://samba.org ____________________________________________________________________________________Ready for the edge of your seat? Check out tonight's top picks on Yahoo! TV. http://tv.yahoo.com/
Maybe Matching Threads
- Windows server 2003 SP2, SFU 3.5 and Samba 3.0.28
- Excel doesn't open read-only files on SAMBA share
- Re: [Solved] Re: idmap_ad: sid to uid conversion fails
- idmap_ad alloc to store uid/gid attributes in AD
- Samba 3.0.26a, windows 2k3 r2 SFU, problems with auth/nss