Gionatan Danti
2017-Jun-05 19:40 UTC
[Samba] Cache auth credentials on Samba domain member
Il 01-06-2017 19:42 Jeremy Allison ha scritto:> On Thu, Jun 01, 2017 at 03:11:53PM +0200, Gionatan Danti wrote: >> However, *no* user authentication is possible on samba shares when >> the VPN tunnel is down? >> >> Do you have any suggestions? > > I think Uri and Volker did the work on this. Uri, can you > give an update on where we stand with offline auth and > winbindd ? > > Thanks, > > Jeremy.Hi, any feedback? Thanks. -- Danti Gionatan Supporto Tecnico Assyoma S.r.l. - www.assyoma.it email: g.danti at assyoma.it - info at assyoma.it GPG public key ID: FF5F32A8
Data Control Systems - Mike Elkevizth
2017-Jun-05 20:18 UTC
[Samba] Cache auth credentials on Samba domain member
Sorry, I don't think you're going to be able to accomplish what you want with any standard packages from CentOS. As far as I know, even the current CentOS 7 packages don't have AD DC functionality. If you don't want to change your current server over to an AD DC, you could try creating a virtual machine to act as your AD DC instead. I've only tried this method for testing purposes, but it seemed to operate well (with a small number of test users). Mike E. On Mon, Jun 5, 2017 at 3:40 PM, Gionatan Danti <g.danti at assyoma.it> wrote:> Il 01-06-2017 19:42 Jeremy Allison ha scritto: > >> On Thu, Jun 01, 2017 at 03:11:53PM +0200, Gionatan Danti wrote: >> >>> However, *no* user authentication is possible on samba shares when >>> the VPN tunnel is down? >>> >>> Do you have any suggestions? >>> >> >> I think Uri and Volker did the work on this. Uri, can you >> give an update on where we stand with offline auth and >> winbindd ? >> >> Thanks, >> >> Jeremy. >> > > Hi, any feedback? > Thanks. > > -- > Danti Gionatan > Supporto Tecnico > Assyoma S.r.l. - www.assyoma.it > email: g.danti at assyoma.it - info at assyoma.it > GPG public key ID: FF5F32A8 >
Gionatan Danti
2017-Jun-07 05:42 UTC
[Samba] Cache auth credentials on Samba domain member
Il 05-06-2017 22:18 Data Control Systems - Mike Elkevizth ha scritto:> Sorry, I don't think you're going to be able to accomplish what you > want with any standard packages from CentOS. As far as I know, even > the current CentOS 7 packages don't have AD DC functionality. If you > don't want to change your current server over to an AD DC, you could > try creating a virtual machine to act as your AD DC instead. I've > only tried this method for testing purposes, but it seemed to operate > well (with a small number of test users). > > Mike E.Yeah, I think it will be the way to go... Thanks. -- Danti Gionatan Supporto Tecnico Assyoma S.r.l. - www.assyoma.it email: g.danti at assyoma.it - info at assyoma.it GPG public key ID: FF5F32A8