I'm just curious how this works. I've set up an Active Directory Domain controller using Samba 4.0.0. I DO NOT have Winbind configured. When I run "ls -al /samba/share/directory" I notice that I have users named like 3000000 belonging to the group "users". Without windbind configured, how do I have users and groups inside of my Samba domain (for instance the administrator account) mapping to users inside of my Linux server (user 30000000)? I was always under the impersonation that with Samba 4.0.0 (without Winbind configured) that all files and folders that Samba users created would appear as one user with one group, and then Samba had its own groups (like domain admins for example) that it would separate all the files and folders into. Just trying to figure out how it all works.
On 19/01/13 17:28, Zane Zakraisek wrote:> I'm just curious how this works. I've set up an Active Directory Domain > controller using Samba 4.0.0. I DO NOT have Winbind configured.The only configuration for winbind on the server is: ln -s /usr/local/samba/lib/libnss_winbind.so.2 /lib/libnss_winbind.so ln -s /lib/libnss_winbind.so /lib/libnss_winbind.so.2 and editing /etc/nsswitch.conf and adding 'winbind' to the passwd & group lines, but you do not have to do this.> When I run > "ls -al /samba/share/directory" I notice that I have users named like > 3000000 belonging to the group "users". Without windbind configured, how do > I have users and groups inside of my Samba domain (for instance the > administrator account) mapping to users inside of my Linux server (user > 30000000)? I was always under the impersonation that with Samba 4.0.0 > (without Winbind configured) that all files and folders that Samba users > created would appear as one user with one group, and then Samba had its own > groups (like domain admins for example) that it would separate all the > files and folders into. Just trying to figure out how it all works.Samba 4.0.0 is nothing like any of the previous version, try doing some internet reading, but substitute windows AD for samba 4.0.0 in your searches, this should help you to understand how Samba 4.0.0 works. Rowland -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
From: Zane Zakraisek <doublezane at gmail.com> Date: Sat, 19 Jan 2013 10:28:31 -0700> I'm just curious how this works. I've set up an Active Directory Domain > controller using Samba 4.0.0. I DO NOT have Winbind configured. When I run > "ls -al /samba/share/directory" I notice that I have users named like > 3000000 belonging to the group "users". Without windbind configured, how do > I have users and groups inside of my Samba domain (for instance the > administrator account) mapping to users inside of my Linux server (user > 30000000)?In Samba 4.0.0, Winbind is integrated in it and is always enabled. If you do not use users created by Samba for programs other than Samba, you do not need to configure Winbind to show those uses from programs other than Samba. --- TAKAHASHI Motonobu <monyo at monyo.com>
From: Zane Zakraisek <doublezane at gmail.com> Date: Sat, 19 Jan 2013 22:39:38 -0700> So you're saying that Samba 4.0.0 uses Winbind, but it does not map Samba > users to Linux users?Winbind is integrated with Samba 4.0.0, so Samba 4.0.0 always uses Winbind and also always maps Samba users to Linux users. And if you see those Linux users from programs other than Samba, you have to configure Winbind correctly. --- TAKAHASHI Motonobu <monyo at monyo.com> / @damemonyo facebook.com/takahashi.motonobu