Displaying 20 results from an estimated 4000 matches similar to: "Auth on OpenLDAP with idmap without Windows"
2014 Oct 14
2
nslcd samba 4.1 and FreeBSD 10
Hello list-
As a FreeBSD shop we've used Samba 3.x quite well for a couple years. With version 3.6 due to expire in due time, we've been experimenting with version 4.1 using winbindd with very limited success. We find that if we use the TDB backend instead of either RID or AD, we are able to enumerate our AD users via getent. I cannot enumerate AD users via either the AD or the RID
2014 Nov 15
1
Clarification on the appropriate idmap settings for a standalone server
I am trying to increase my understanding of samba. I am running a FreeBSD
server with Samba 4.1.12 configured as a standalone server in a testing
environment.
The documentation here indicates that winbind / the idmap facility is of
little or no use on a standalone server:
https://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#id2604490
Is this still the case in Samba4?
My
2006 Feb 03
2
Enabling 'idmap backend = ad' for user auth
I'm using Samba 3.0.21a on Fedora Core 3 to authenticate against an AD
domain. The box running AD is Win2k3 R2, so AD has the RFC2207 schema
extensions applied.
I've successfully configured Fedora to do auth through winbind with the
normal backend (using uid/gid mappings). Now I'd like to reconfig to use
AD as the backend.
I was able to do this against a pre-R2 Win2k3 server with
2020 Sep 03
4
SID mapping: Samba and SSSD
On Thu, Sep 3, 2020 at 4:45 PM Rowland penny via samba <
samba at lists.samba.org> wrote:
> On 03/09/2020 21:38, Robert Marcano wrote:
> > On 9/3/20 4:35 PM, Rowland penny via samba wrote:
> >> On 03/09/2020 21:15, Robert Marcano via samba wrote:
> >>>
> >>> There is an sssd provided idmapper (on RHEL/CentOS/Fedora) it is
> >>> packaged
2012 Jan 16
6
Prevent smbd from consulting winbindd
Colleagues,
I am running smbd in a setup described in
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#id2604553
under "Winbind is not used; users and groups are local". Samba is
running in the security=domain mode, but all Windows users are being
mapped to Unix users in /etc/passwd.
Now I need to run winbindd for Squid authentication. The problem is,
as soon as
2006 Jun 28
2
Domain member against Samba+LDAP server configuration problem
Hi people,
I have a problem with my configuration. I'd like my debian box was client of
a Domain (Samba+LDAP)
my smb.conf is:
[global]
security = domain
workgroup = DOMAIN_NAME
netbios name = MYCOMPUTER
log level = 3 auth:10 winbind:10
idmap backend = ldap:ldap://xxx.xxx.xx.xxx
ldap suffix = dc=DOMAIN_NAME,dc=com
ldap idmap suffix = ou=Idmap
idmap uid = 10000-20000
2020 Sep 03
1
SID mapping: Samba and SSSD
On Thu, Sep 3, 2020 at 5:08 PM Jeremy Allison <jra at samba.org> wrote:
> On Thu, Sep 03, 2020 at 05:05:46PM -0400, Andrew Walker via samba wrote:
> > On Thu, Sep 3, 2020 at 4:45 PM Rowland penny via samba <
> > samba at lists.samba.org> wrote:
> >
> > > On 03/09/2020 21:38, Robert Marcano wrote:
> > > > On 9/3/20 4:35 PM, Rowland penny via
2006 Jan 18
0
winbind idmap using active directory as ldap backend
hello,
I need to continue where this HOWTO ends:
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#idmaprfc2307
I worked with krb+ldap authentication/authorization against Windows 2003
Servers (SP1 with SFU3.5 and R2) before so I am familiar with the mappings
needed but I don't really understand how winbind is of any use if
/etc/nsswitch.conf points to "files
2007 May 16
1
Samba as a AD domain member server with idmap backend = ldap
Hi Folks,
Hopefully an easy question. I've scoured FAQs, books and documentation
and managed to get the above configuration working, but only by straying
from the documentation in Chapter 14, example 14.4 of the Samba HOWTO:
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#id369912
Can someone confirm for me that when Samba is only an Active Directory
domain
2005 Sep 30
0
IDMAP difficulties
hi,
can somebody explain, how the idmap backend with ldap works exactly.
sorry for that stupid questions, but the docu is not clear for me.
http://us1.samba.org/samba/docs/man/Samba-HOWTO-Collection/
idmapper.html#id2588292
i understand the idmap topic/difficulty, why i need this, but how the
ldap get filled with idmap entries? automatically/dynamically if
winbind is running? or
2020 Jun 04
1
Unable to map AD Users to existing local Unix users since 4.8.x
Rowland said:
>> Is there a set of settings to restore the mapping of AD users to pre-existing Unix Users?
>No
>>
>> Does the official Samba distributed project source continue to support AD Users mapping to pre-existing Unix Users?
>I do not think it ever did.
I found this reference quickly from google describing the previous behavior.
Winbind was always optional
2007 Jan 21
14
[ActsAsFerret] OpenSolaris (TextDrive) indexing issues
Gents,
I successfully installed AAF on my TextDrive OpenSolaris Container, but
I''m having some issues with indexing.
I have a model called Blogs which has AAF enabled.
The first time I tried to find_by_contents for a ''word'' I know was on
the Database I got now results. Apparently the index was not ready yet.
Then I waited a few hours and checked that the /index
2008 Nov 10
1
Configuring idmap for a Samba 3.2.4 AD member server
I'm hoping somebody can point me to the right documentation for
setting up the following scenario.
Earlier this year I had Samba 3.0.28a working as a member server of a
(Windows Server 2003) AD domain, using Solaris 10 and Heimdal
Kerberos. I was able to log into the server using AD accounts, getent
passwd worked, etc. I was using "secruity=ads" with these settings
(among other):
2016 Aug 26
1
Configuration of smb.conf for Active Directory authentication
Thanks for the feedback.
With the modifications you specified I have this smb.conf, however it cannot be accessed?;
"
[global]
netbios name = FILESERVER-001
security = ADS
workgroup = CORP
realm = CORP.INBAYTECH.COM
log file = /var/log/samba/%m.log
log level = 1
idmap config *: backend = tdb
2005 Aug 23
5
Winbind UID/GID mismatch!!
Hi the list (again)
Got a pretty major issue now
Did the samba link to AD on a couple of redhat es3 servers using samba
3.0.14a
Everything seems ok
Except when I do a getent passwd username
Server 3
getent passwd ross
ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false
Server 2
getent passwd ross
ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false
Server 1
getent passwd ross
2016 May 20
4
How to configure samba to use LDAP/Kerberos authentication without using winbind?
We have a environment that the we cannot(don't want to) use winbind to join
samba server to the win2003 AD(with LDAP RFC2307bis Schema and uid/gid
setup for users).
We managed to get the linux (CentOS) to accept windows domain user ssh to
it(with nss/nslcd/kerberos settings).
But couldn't make samba server to use the same way to serve windows domain
users.
Found this page:
2020 Sep 03
6
SID mapping: Samba and SSSD
On Thu, Sep 03, 2020 at 06:43:32PM +0100, Rowland penny via samba wrote:
> On 03/09/2020 18:04, Johan Hattne via samba wrote:
> > Dear all;
> >
> > Would anybody be able to tell me what the idmap configuration is to have
> > Samba do the same SID-to-user/group mapping as the SSSD defaults?? I was
> > convinced I saw it on this list or the wiki not too long ago,
2009 Apr 03
5
idmap uid range missing or invalid
Hi All,
What causes this error in /var/log/messages when
on XP-Pro client boots up?
winbindd[4041]: idmap uid range missing or invalid
winbindd[4041]: idmap will be unable to map foreign SIDs
winbindd[4041]: [2009/04/02 19:38:22, 0]
nsswitch/idmap.c:idmap_alloc_init(820)
rn1 winbindd[4041]: ERROR: Initialization failed for
alloc backend, deferred!
Many thanks,
-T
2007 Apr 13
5
[Ferret] Serious memory leak on Joyent / TextDrive / Solaris
There is serious memory leak bug in ferret. I''m having this error on
TextDrive Container (aka. Joyent Accelerators) OpenSolaris with Ferret
0.11.4
It happens while searching for some terms with accented or special
characters.
This makes ferret to allocate lots of memory (usually reaching 3+ GB)
and failing if another query like this is executed.
Any ideas on that, could this be locale
2009 Oct 03
1
ad 2003 & nss_ldap produce: smbd/service.c:make_connection_snum(1003): Permission denied
Hello all,
since some weeks I try to get the following configuration working
Windows 2003 AD (no R2!!) with SFU 3.5
Red Hat Enterprise Linux Server release 5.4 (Tikanga) with
Samba (samba-3.0.33-3.14.el5)
nss_ldap (nss_ldap-253-21.el5)
So I wanted to implement the following setup:
http://us5.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#id2607783
The main reason using this