Brady, Mike
2015-Jun-04 00:12 UTC
[Samba] What does idmap_ldb:use rfc2307 = yes do exactly?
I see that on the page https://wiki.samba.org/index.php/Using_RFC2307_on_a_Samba_DC#Check_if_RFC2307_is_used_by_your_Domain_Controllers that idmap_ldb:use rfc2307 = yes is required on all DC when wanting to use RFC2307, but I can not find any mention of this parameter in the man pages or any explanation of exactly what it does anywhere else. I am using RFC2307 in my set up and do have this in all my server configuratiosn (both DC and member) and I think that everything is working, so just wanting understand what this actually does rather than having a problem. Regards Mike
On 04/06/15 02:12, Brady, Mike wrote:> I see that on the page > https://wiki.samba.org/index.php/Using_RFC2307_on_a_Samba_DC#Check_if_RFC2307_is_used_by_your_Domain_Controllers > that > > idmap_ldb:use rfc2307 = yes > > is required on all DC when wanting to use RFC2307, but I can not find > any mention of this parameter in the man pages or any explanation of > exactly what it does anywhere else. > > I am using RFC2307 in my set up and do have this in all my server > configuratiosn (both DC and member) and I think that everything is > working, so just wanting understand what this actually does rather > than having a problem. > > Regards > > MikeHi It can be used to instruct winbind to look in the directory when uid and gid sid mappings are required. Otherwise an external database is consulted. rfc2307 support is not complete as only the two attributes mentioned can be read. HTH
Sébastien Le Ray
2015-Jun-04 16:35 UTC
[Samba] What does idmap_ldb:use rfc2307 = yes do exactly?
Hi, http://tools.ietf.org/html/rfc2307 It is used to pull down UNIX information from active directory (namely uid, gid, homedir, shell). Support is partial on domain controller since shell & homedir can only be set through * template parameters in smb.conf despite rfc2307 being used. Shell & homedir are correctly fetched on member servers. Regards, Le 04/06/2015 18:30, buhorojo a ?crit :> On 04/06/15 02:12, Brady, Mike wrote: >> I see that on the page >> https://wiki.samba.org/index.php/Using_RFC2307_on_a_Samba_DC#Check_if_RFC2307_is_used_by_your_Domain_Controllers >> that >> >> idmap_ldb:use rfc2307 = yes >> >> is required on all DC when wanting to use RFC2307, but I can not find >> any mention of this parameter in the man pages or any explanation of >> exactly what it does anywhere else. >> >> I am using RFC2307 in my set up and do have this in all my server >> configuratiosn (both DC and member) and I think that everything is >> working, so just wanting understand what this actually does rather >> than having a problem. >> >> Regards >> >> Mike > Hi > It can be used to instruct winbind to look in the directory when uid > and gid sid mappings are required. Otherwise an external database is > consulted. rfc2307 support is not complete as only the two attributes > mentioned can be read. > HTH > >