Is there any SIMPLE way to maintain consistent mappings between windows RIDs and UNIX/LINUX UIDs/GIDs among multiple samba servers servers running winbindd? Will that problem be addressed in future samba releases? I've read about the "idmap backend" possible solution but is that the only current one? Help!!!
>releases? I've read about the "idmap backend" possible solution but is >that the only current one? Help!!! > >Considering that the 'inconsistant sid' problem is what idmap was designed for, I'm gonna go ahead and say yes, that is the way to do it. Store your idmap db in something distributed like ldap, not sure what other backends are available but ldap is the best supported. -- Paul Gienger Office: 701-281-1884 Applied Engineering Inc. Information Systems Consultant Fax: 701-281-1322 URL: www.ae-solutions.com mailto: pgienger@ae-solutions.com ----------------------------------------- The information contained in this message is privileged and intended only for the recipient names. If the reader is not a representative of the intended recipient, any review, dissemination or copying of this message or the information it contains is prohibited. If you have received this message in error, please immediately notify the sender, and delete the original message and attachments.
Wong, G. MR EECS wrote:> Is there any SIMPLE way to maintain consistent mappings between windows > RIDs and UNIX/LINUX UIDs/GIDs among multiple samba servers servers > running winbindd? Will that problem be addressed in future samba > releases? I've read about the "idmap backend" possible solution but is > that the only current one? Help!!!I'm looking to accomplish the same thing across two samba servers. Both servers are members of a Windows 2000 AD Domain. One's a "hot standby" using heartbeat/drbd under Linux so I need the UIDs of files to match on both. I'm uncertain if "idmap backend" will work if winbind is getting the account from a Windows AD Domain Controller rather than a Samba PDC, and setting up LDAP seems like a lot of trouble. So I've come up with either: 1. Just copy winbindd_idmap.tdb from one server over the one on the other with samba/winbind running on both - I've tried this and it seemed to work ok... 2. Use "net idmap dump" and "net idmap restore" as a "safer"(???) way of doing #1 above, automated via cron and ssh. Anyone have any thoughts on either of these methods? Thanks, Josh