search for: joneslab

...and physics are sharing a compute lab, we can easily apply both security groups to the same set of hosts. We're making use of AD security groups with dual factor authentication as well. Moreover, I can assign file/directory group mode bit group ownership to AD security groups. If cns-bio-joneslab is a security group defined in AD, I can chgrp cns-bio-joneslab some_data-dir chmod 770 some_data_dir chmod g+s some-data-dir on a domain-joined host, and only members of the Jones Lab will be able to access this shared data. It all works as expected. Haven't tested POSIX ACL...

...pute lab, we can easily apply > both security groups to the same set of hosts. > > We're making use of AD security groups with dual factor authentication > as well. > > Moreover, I can assign file/directory group mode bit group ownership to > AD security groups. If cns-bio-joneslab is a security group defined in > AD, I can > > chgrp cns-bio-joneslab some_data-dir > chmod 770 some_data_dir > chmod g+s some-data-dir > > on a domain-joined host, and only members of the Jones Lab will be able > to access this shared data. It all works as e...

On 6/17/19 12:37 PM, Edouard Guign? via samba wrote: > On my linux box (centos 7), I set Samba + Winbind against AD. > But I also set SSSD against AD for an other purpose (sftp access). > > I am wondering if there is no risk to disable sftpd/sssd if I add > winbind in /etc/nsswitch.conf > > Can Winbind and SSSD be installed on the same system if they are not > used for