Dear Colleagues, we have a Samba4 DC in our environment. We are storing unix Information in samba's AD. Our Problem is: The default values are not fitting for our environment. We want to store a different Shell e.g /bin/tcsh. But the default Value is /bin/sh. Is it possible, to change those default values so that it fits direct at the creation of a user? Regards and thanks Daniel -- ____________________________________________ Fachinformatiker für Systemintegration RWTH Aachen Lehrstuhl für Integrierte Analogschaltungen Raum 238 ICT Cubes Kopernikusstrasse 16 52074 Aachen www.ias.rwth-aachen.de E-mail: Daniel.Thielking at ias.rwth-aachen.de Telefon: 0241-8020647 _____________________________________________
On 10/06/16 14:45, Daniel Thielking wrote:> Dear Colleagues, > > we have a Samba4 DC in our environment. We are storing unix > Information in samba's AD. > Our Problem is: > > The default values are not fitting for our environment. > We want to store a different Shell e.g /bin/tcsh. But the default > Value is /bin/sh. > > Is it possible, to change those default values so that it fits direct > at the creation of a user? > > Regards and thanks > Daniel >Yes, it may be possible to change the shell (and other things), but you are going to have to give us a bit more info. Do your users log into the DC ? or are they logging into a domain member, perhaps if you were to post your smb.conf. Rowland
In short, when Samba joined to AD: On DC: winbind[d] is designed to refuse AD users on DC, to do that all users from AD get shell=/bin/false for their connection tries are refused by DC On Members: You just have to set a shell in AD LDAP tree using RFC2307 attributes, for sheel it is "loginShell". Then winbind will give your users the shell you defined. No sheel defined and you fallbck on "template shell" which by default is set to /bin/false. 2016-06-10 16:16 GMT+02:00 Rowland penny <rpenny at samba.org>:> On 10/06/16 14:45, Daniel Thielking wrote: > >> Dear Colleagues, >> >> we have a Samba4 DC in our environment. We are storing unix Information >> in samba's AD. >> Our Problem is: >> >> The default values are not fitting for our environment. >> We want to store a different Shell e.g /bin/tcsh. But the default Value >> is /bin/sh. >> >> Is it possible, to change those default values so that it fits direct at >> the creation of a user? >> >> Regards and thanks >> Daniel >> >> > Yes, it may be possible to change the shell (and other things), but you > are going to have to give us a bit more info. Do your users log into the DC > ? or are they logging into a domain member, perhaps if you were to post > your smb.conf. > > Rowland > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >
Yes of course. We use Samba4 ADDC with winbind to get unix attributes from the DC to the clients. But every time we creating a new member in the AD we have to change the default shell what is /bin/sh to /bin/tcsh. So we want to change the default value of the field in the AD that we don't have to change it every time. The users logging in on a unix domain member. No login on DC themselves. Samba Version is 4.4.4 compiled from source no extra options chosen. ____________________________________________ Fachinformatiker für Systemintegration RWTH Aachen Lehrstuhl für Integrierte Analogschaltungen Raum 238 ICT Cubes Kopernikusstrasse 16 52074 Aachen www.ias.rwth-aachen.de E-mail: Daniel.Thielking at ias.rwth-aachen.de Telefon: 0241-8020647 _____________________________________________ In short, when Samba joined to AD: On DC: winbind[d] is designed to refuse AD users on DC, to do that all users from AD get shell=/bin/false for their connection tries are refused by DC On Members: You just have to set a shell in AD LDAP tree using RFC2307 attributes, for sheel it is "loginShell". Then winbind will give your users the shell you defined. No sheel defined and you fallbck on "template shell" which by default is set to /bin/false. On 10/06/16 15:45, Daniel Thielking wrote:> Dear Colleagues, > > we have a Samba4 DC in our environment. We are storing unix > Information in samba's AD. > Our Problem is: > > The default values are not fitting for our environment. > We want to store a different Shell e.g /bin/tcsh. But the default > Value is /bin/sh. > > Is it possible, to change those default values so that it fits direct > at the creation of a user? > > Regards and thanks > Daniel >
On 13/06/16 07:27, Daniel Thielking wrote:> Yes of course. We use Samba4 ADDC with winbind to get unix attributes > from the DC to the clients. But every time we creating a new member in > the AD we have to change the default shell what is /bin/sh to > /bin/tcsh. So we want to change the default value of the field in the > AD that we don't have to change it every time. > > The users logging in on a unix domain member. No login on DC themselves. > > Samba Version is 4.4.4 compiled from source no extra options chosen. > > >OK, if you are logging into a domain member, then you need to use RFC2307 attributes, see here: https://wiki.samba.org/index.php/Setup_Samba_as_an_AD_Domain_Member I take it you are creating the users with ADUC, if you use samba-tool on the DC, you can add the required attributes when you create a new user, type 'samba-tool user create --help' in a terminal on the DC for more info. Rowland