samba - Jul 2007 - can two samba servers share uid/rid map in win2k3 domain

Hi all,

I've been battling this for weeks.

I have one samba server joined to our windows 2k3 domain that is
happily using Active Directory for authenication via Winbind and
kerberos. Ok great, but now I want to have two Samba boxs on the
domain with consistant uid/rid mapping between.

My question essentialy is can two samba servers use share a common
uid/rid idmap when joined to a Windows 2k3 domain. If the answer is
"yes, with LDAP" Then my question is how does the Active Directory
user info get into that LDAP db?

No howto I've seen, goes beyond the one server configuration. If you
know of one, I'd really love to be pointed at it.

Thanks,

John

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

john wrote:
> Hi all,
> 
> I've been battling this for weeks.
> 
> I have one samba server joined to our windows 2k3 domain that is
> happily using Active Directory for authenication via Winbind and
> kerberos. Ok great, but now I want to have two Samba boxs on the
> domain with consistant uid/rid mapping between.
> 
> My question essentialy is can two samba servers use share a common
> uid/rid idmap when joined to a Windows 2k3 domain. If the answer is
> "yes, with LDAP" Then my question is how does the Active
Directory
> user info get into that LDAP db?
If you have a single domain, use idmap_rid.  If you use ldap,
winbindd adds the entries on an as needed basis just like it does
when using idmap_tdb.





cheers, jerry
====================================================================Samba       
------- http://www.samba.org
Centeris                         -----------  http://www.centeris.com
"What man is a man who does not make the world better?"      --Balian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFGkqaJIR7qMdg1EfYRAua2AKD0G80zJsTwzeRqUipvmu6zEpn+8wCeManu
XuvvdLMx8slFqJIfi82Bq/s=NZEl
-----END PGP SIGNATURE-----