Mandi! Rowland penny via samba In chel di` si favelave...> Don't think that will work, unless you never turn the computer off or > restart Samba. > The problem isn't how often the cache gets updated, it is 'does the cache > exist'Ahem, sorry, no... i was not speaking 'now', but 'when bug 14074 get fixed'. So, supposing the bug that delete the cache on reboot get fixed, i have to set very high the cache retention period to be effective, right? Or in absence of every DC reachable, cache by default does not expire? Thanks. -- dott. Marco Gaiarin GNUPG Key ID: 240A3D66 Associazione ``La Nostra Famiglia'' http://www.lanostrafamiglia.it/ Polo FVG - Via della Bont?, 7 - 33078 - San Vito al Tagliamento (PN) marco.gaiarin(at)lanostrafamiglia.it t +39-0434-842711 f +39-0434-842797 Dona il 5 PER MILLE a LA NOSTRA FAMIGLIA! http://www.lanostrafamiglia.it/index.php/it/sostienici/5x1000 (cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)
On 17/10/2019 15:00, Marco Gaiarin via samba wrote:> Mandi! Rowland penny via samba > In chel di` si favelave... > >> Don't think that will work, unless you never turn the computer off or >> restart Samba. >> The problem isn't how often the cache gets updated, it is 'does the cache >> exist' > Ahem, sorry, no... i was not speaking 'now', but 'when bug 14074 get > fixed'. > > > So, supposing the bug that delete the cache on reboot get fixed, i have > to set very high the cache retention period to be effective, right? > Or in absence of every DC reachable, cache by default does not expire? > > Thanks. >No, if you have 'winbind offline logon = yes' set that is it as far as Samba is concerned, you also have to set up PAM to use cached logins. Winbind caches the users passwd etc, but renews it if the cache time has been exceeded unless an AD DC cannot be contacted i.e. they are all offline. Rowland
Mandi! Rowland penny via samba In chel di` si favelave...> No, if you have 'winbind offline logon = yes' set that is it as far as Samba > is concerned, you also have to set up PAM to use cached logins. > Winbind caches the users passwd etc, but renews it if the cache time has > been exceeded unless an AD DC cannot be contacted i.e. they are all offline.Speaking simply (and, of couse, supposing bug fixed): a) NSS cache are permanent, and does not expire if there's NO DC reachable. b) PAM cache need 'winbind offline logon = yes', and cache times, eg: idmap cache time winbind cache time need to be tackled to suit the needs. Righ? My misundestanding born by the fact that, to have full ''roaming'' client to work, it need account and group existance (NSS) and password cache (PAM), ant i've no clear how the different winbind options play in the game. Thanks. -- dott. Marco Gaiarin GNUPG Key ID: 240A3D66 Associazione ``La Nostra Famiglia'' http://www.lanostrafamiglia.it/ Polo FVG - Via della Bont?, 7 - 33078 - San Vito al Tagliamento (PN) marco.gaiarin(at)lanostrafamiglia.it t +39-0434-842711 f +39-0434-842797 Dona il 5 PER MILLE a LA NOSTRA FAMIGLIA! http://www.lanostrafamiglia.it/index.php/it/sostienici/5x1000 (cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)