[Samba] NT user name doesn't match unix username when winbindd is runnin g

Oliver Thinnes O.Thinnes at pulsaar.de
Tue Jun 11 07:33:02 GMT 2002 

Hello Karen.

without winbind you have to create a user under UNIX correspondig to the NT 
user. Mapping is configured with "username map = /etc/samba/users.map".
If there are no spaces or special character in the NT username both 
usernames can be the same. We have a file for mapping NT user to UNIX user 
as our NT username are <FIRSTNAME LASTNAME> mapped to <F.LASTNAME>.

When you use winbind there's no need anymore to create corresponding UNIX 
users / groups. Thats the big advantage.

-----Original Message-----
From:	Wieprecht, Karen M. [SMTP:Karen.Wieprecht at jhuapl.edu]
Sent:	Tuesday, June 11, 2002 3:49 PM
To:	'samba at samba.org'
Subject:	[Samba] NT user name doesn't match unix username when winbindd is 
runnin g

Samba team,

I posted the following message on May 30 to comp.protocols.smb,  but no one
has responded to the posting as of yet,  so I thought I'd try this email
list.


We are testing winbind and security=domain to authenticate NT users on
our UNIX box in samba (v2.2.3a).  Winbind is working correctly.  Wbinfo
shows
users as domainname+username (we are using "+" as the
separator),  however,  the NT usernames aren't automatically mapping
to their corresponding UNIX usernames as expected.  Perhaps I don't
understand how this is supposed to work?

>From what I understand,  security=domain WITHOUT winbind requires a
corresponding UNIX user (or dummy entry in the password file) for each
NT user who you want to authenticate. This works for us,  my NT karen
account gets matched to my Unix Karen account, new files I create from
the PC side get assigned the correct Unix UID,  my login directory is
shared via [HOMES] correctly, etc as long as I don't run winbindd.

However, when I turn on winbindd,  the NT karen account now gets
mapped to "domainname+karen" instead of "karen", so UID's don't match,
 and my home login directory isn't being shared to my NT Karen
account. Aren't the NT user names supposed to map to the UNIX user
name if one exists? We want the features of winbind so we don't have
to have a corresponding UNIX account for each NT user,  but we want
matching usernames to map automatically for those users who DO have
accounts on both sides.  It works when winbind is not running,  why
doesn't this work when I run winbind?  Is there some other parameter I
have to set to make this happen?

Thanks for your help ,
        Karen Wieprecht


---------------------------------
Karen Wieprecht
Senior Unix Systems Administrator
11100 Johns Hopkins Road
Laurel, MD, 20723
443-778-3075
karen.wieprecht at jhuapl.edu
---------------------------------

--
To unsubscribe from this list go to the following URL and read the
instructions:  http://lists.samba.org/mailman/listinfo/samba

More information about the samba mailing list