Okay,
I have a functioning Samba/LDAP PDC working. I also have a samba domain
member server that uses the same ldap backend. Saying all this, everything
works, domain logins, etc. But as I read the samba docs, they suggest that you
use winbind also. So far, I haven't used winbind in my configuration and
was wondering if I'm missing out on something. Is it necessary to use
winbind, even thought I'm not part of a AD domain? With my ldap and samba
config as is, I can do a "getent passwd" and it lists all my users.
Here's a piece of my smb.conf:
[global]
workgroup = DOMAIN
server string = Main File Serv
log file = /var/log/samba/log.%m
logon path = \\%L\profiles\.msprofile
logon home = \\%L\%U\.9xprofile
logon drive = H:
logon script = %U.bat
security = user
encrypt passwords = yes
ldap admin dn = cn=admin,dc=domain,dc=org
ldap suffix = dc=domain,dc=org
add machine script = /sbin/yast /usr/share/YaST2/data/add_machine.ycp %m$
domain logons = yes
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=Computers
local master = yes
passdb backend = "ldapsam:ldap://ds1.domain.org \
ldapsam:ldap://ds2.domain.org"
wins server wins support = no
netbios name = domainpc
domain master = yes
preferred master = yes
os level = 65
ldap group suffix = ou=group
ldap user suffix = ou=people
idmap backend = ldap:ldap://ds1.domain.org
Is winbind necessary here?
- Delamatrix
