similar to: Auth on OpenLDAP with idmap without Windows

Displaying 20 results from an estimated 4000 matches similar to: "Auth on OpenLDAP with idmap without Windows"

2014 Oct 14
2
nslcd samba 4.1 and FreeBSD 10
Hello list- As a FreeBSD shop we've used Samba 3.x quite well for a couple years. With version 3.6 due to expire in due time, we've been experimenting with version 4.1 using winbindd with very limited success. We find that if we use the TDB backend instead of either RID or AD, we are able to enumerate our AD users via getent. I cannot enumerate AD users via either the AD or the RID
2014 Nov 15
1
Clarification on the appropriate idmap settings for a standalone server
I am trying to increase my understanding of samba. I am running a FreeBSD server with Samba 4.1.12 configured as a standalone server in a testing environment. The documentation here indicates that winbind / the idmap facility is of little or no use on a standalone server: https://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#id2604490 Is this still the case in Samba4? My
2006 Feb 03
2
Enabling 'idmap backend = ad' for user auth
I'm using Samba 3.0.21a on Fedora Core 3 to authenticate against an AD domain. The box running AD is Win2k3 R2, so AD has the RFC2207 schema extensions applied. I've successfully configured Fedora to do auth through winbind with the normal backend (using uid/gid mappings). Now I'd like to reconfig to use AD as the backend. I was able to do this against a pre-R2 Win2k3 server with
2020 Sep 03
4
SID mapping: Samba and SSSD
On Thu, Sep 3, 2020 at 4:45 PM Rowland penny via samba < samba at lists.samba.org> wrote: > On 03/09/2020 21:38, Robert Marcano wrote: > > On 9/3/20 4:35 PM, Rowland penny via samba wrote: > >> On 03/09/2020 21:15, Robert Marcano via samba wrote: > >>> > >>> There is an sssd provided idmapper (on RHEL/CentOS/Fedora) it is > >>> packaged
2012 Jan 16
6
Prevent smbd from consulting winbindd
Colleagues, I am running smbd in a setup described in http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#id2604553 under "Winbind is not used; users and groups are local". Samba is running in the security=domain mode, but all Windows users are being mapped to Unix users in /etc/passwd. Now I need to run winbindd for Squid authentication. The problem is, as soon as
2006 Jun 28
2
Domain member against Samba+LDAP server configuration problem
Hi people, I have a problem with my configuration. I'd like my debian box was client of a Domain (Samba+LDAP) my smb.conf is: [global] security = domain workgroup = DOMAIN_NAME netbios name = MYCOMPUTER log level = 3 auth:10 winbind:10 idmap backend = ldap:ldap://xxx.xxx.xx.xxx ldap suffix = dc=DOMAIN_NAME,dc=com ldap idmap suffix = ou=Idmap idmap uid = 10000-20000
2020 Sep 03
1
SID mapping: Samba and SSSD
On Thu, Sep 3, 2020 at 5:08 PM Jeremy Allison <jra at samba.org> wrote: > On Thu, Sep 03, 2020 at 05:05:46PM -0400, Andrew Walker via samba wrote: > > On Thu, Sep 3, 2020 at 4:45 PM Rowland penny via samba < > > samba at lists.samba.org> wrote: > > > > > On 03/09/2020 21:38, Robert Marcano wrote: > > > > On 9/3/20 4:35 PM, Rowland penny via
2006 Jan 18
0
winbind idmap using active directory as ldap backend
hello, I need to continue where this HOWTO ends: http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#idmaprfc2307 I worked with krb+ldap authentication/authorization against Windows 2003 Servers (SP1 with SFU3.5 and R2) before so I am familiar with the mappings needed but I don't really understand how winbind is of any use if /etc/nsswitch.conf points to "files
2007 May 16
1
Samba as a AD domain member server with idmap backend = ldap
Hi Folks, Hopefully an easy question. I've scoured FAQs, books and documentation and managed to get the above configuration working, but only by straying from the documentation in Chapter 14, example 14.4 of the Samba HOWTO: http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#id369912 Can someone confirm for me that when Samba is only an Active Directory domain
2005 Sep 30
0
IDMAP difficulties
hi, can somebody explain, how the idmap backend with ldap works exactly. sorry for that stupid questions, but the docu is not clear for me. http://us1.samba.org/samba/docs/man/Samba-HOWTO-Collection/ idmapper.html#id2588292 i understand the idmap topic/difficulty, why i need this, but how the ldap get filled with idmap entries? automatically/dynamically if winbind is running? or
2020 Jun 04
1
Unable to map AD Users to existing local Unix users since 4.8.x
Rowland said: >> Is there a set of settings to restore the mapping of AD users to pre-existing Unix Users? >No >> >> Does the official Samba distributed project source continue to support AD Users mapping to pre-existing Unix Users? >I do not think it ever did. I found this reference quickly from google describing the previous behavior. Winbind was always optional
2007 Jan 21
14
[ActsAsFerret] OpenSolaris (TextDrive) indexing issues
Gents, I successfully installed AAF on my TextDrive OpenSolaris Container, but I''m having some issues with indexing. I have a model called Blogs which has AAF enabled. The first time I tried to find_by_contents for a ''word'' I know was on the Database I got now results. Apparently the index was not ready yet. Then I waited a few hours and checked that the /index
2008 Nov 10
1
Configuring idmap for a Samba 3.2.4 AD member server
I'm hoping somebody can point me to the right documentation for setting up the following scenario. Earlier this year I had Samba 3.0.28a working as a member server of a (Windows Server 2003) AD domain, using Solaris 10 and Heimdal Kerberos. I was able to log into the server using AD accounts, getent passwd worked, etc. I was using "secruity=ads" with these settings (among other):
2016 Aug 26
1
Configuration of smb.conf for Active Directory authentication
Thanks for the feedback. With the modifications you specified I have this smb.conf, however it cannot be accessed?; " [global] netbios name = FILESERVER-001 security = ADS workgroup = CORP realm = CORP.INBAYTECH.COM log file = /var/log/samba/%m.log log level = 1 idmap config *: backend = tdb
2005 Aug 23
5
Winbind UID/GID mismatch!!
Hi the list (again) Got a pretty major issue now Did the samba link to AD on a couple of redhat es3 servers using samba 3.0.14a Everything seems ok Except when I do a getent passwd username Server 3 getent passwd ross ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false Server 2 getent passwd ross ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false Server 1 getent passwd ross
2016 May 20
4
How to configure samba to use LDAP/Kerberos authentication without using winbind?
We have a environment that the we cannot(don't want to) use winbind to join samba server to the win2003 AD(with LDAP RFC2307bis Schema and uid/gid setup for users). We managed to get the linux (CentOS) to accept windows domain user ssh to it(with nss/nslcd/kerberos settings). But couldn't make samba server to use the same way to serve windows domain users. Found this page:
2020 Sep 03
6
SID mapping: Samba and SSSD
On Thu, Sep 03, 2020 at 06:43:32PM +0100, Rowland penny via samba wrote: > On 03/09/2020 18:04, Johan Hattne via samba wrote: > > Dear all; > > > > Would anybody be able to tell me what the idmap configuration is to have > > Samba do the same SID-to-user/group mapping as the SSSD defaults?? I was > > convinced I saw it on this list or the wiki not too long ago,
2009 Apr 03
5
idmap uid range missing or invalid
Hi All, What causes this error in /var/log/messages when on XP-Pro client boots up? winbindd[4041]: idmap uid range missing or invalid winbindd[4041]: idmap will be unable to map foreign SIDs winbindd[4041]: [2009/04/02 19:38:22, 0] nsswitch/idmap.c:idmap_alloc_init(820) rn1 winbindd[4041]: ERROR: Initialization failed for alloc backend, deferred! Many thanks, -T
2007 Apr 13
5
[Ferret] Serious memory leak on Joyent / TextDrive / Solaris
There is serious memory leak bug in ferret. I''m having this error on TextDrive Container (aka. Joyent Accelerators) OpenSolaris with Ferret 0.11.4 It happens while searching for some terms with accented or special characters. This makes ferret to allocate lots of memory (usually reaching 3+ GB) and failing if another query like this is executed. Any ideas on that, could this be locale
2009 Oct 03
1
ad 2003 & nss_ldap produce: smbd/service.c:make_connection_snum(1003): Permission denied
Hello all, since some weeks I try to get the following configuration working Windows 2003 AD (no R2!!) with SFU 3.5 Red Hat Enterprise Linux Server release 5.4 (Tikanga) with Samba (samba-3.0.33-3.14.el5) nss_ldap (nss_ldap-253-21.el5) So I wanted to implement the following setup: http://us5.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html#id2607783 The main reason using this