Distributed Winbind

Michael St. Laurent mikes at hartwellcorp.com
Mon Jan 28 10:42:02 GMT 2002


> -----Original Message-----
> From: "Esh, Andrew" <AEsh at tricord.com>
> To: "'samba-technical at lists.samba.org'" 
> <samba-technical at lists.samba.org>
> Subject: Distributed Winbind
> Date: Fri, 25 Jan 2002 14:29:08 -0600
> 
> This message is in MIME format. Since your mail reader does 
> not understand
> this format, some or all of this message may not be legible.
> 
> ------_=_NextPart_001_01C1A5DF.3AE6C130
> Content-Type: text/plain;
> 	charset="iso-8859-1"
> 
> A while back there was a small amount of discussion about 
> winbind, and the
> problem of Unix-ID-to-Windows-SID mappings being done 
> independently on each
> Samba server. Files being moved between such servers via Unix 
> methods such
> as NFS and FTP servers would probably become owned by a 
> different Windows
> user.
> 
> Is there any interest in having a Master winbind daemon open a network
> socket for Client winbind daemons to make requests from? Is this not a
> problem for anyone else?

I'm not sure if this helps but I created an add_smb_user script that used
ssh to get the UID and GID's from another unix system.  It's below if anyone
is interested.

#!/bin/sh
# The script takes a single argument which is the username to create and is
# meant to be called by Samba via an smb.conf entry in the form of
# "add user script = <path>/add_smb_user %u"

# ---- Configuration Section ----
# Name of remote system from which to get info
REMSYS=hartwell
# ---- End of Configuration Section ----

USER="$1"

# Get entry from /etc/passwd on the remote system
PASSWDLN=`/usr/bin/ssh $REMSYS "/bin/grep $USER /etc/passwd"`
GROUPLST=`/usr/bin/ssh $REMSYS "/usr/bin/groups $USER | /bin/tr ' ' ,"`

# Parse out the User and Group ID numbers
NUID=`/bin/echo "$PASSWDLN"|/bin/cut -d: -f3`
NGID=`/bin/echo "$PASSWDLN"|/bin/cut -d: -f4`

# Create groups if necessary
IFS=,
for i in $GROUPLST
do
    if [ -z "`/bin/grep ^$i: /etc/group`" ]
    then
        MGID=`/usr/bin/ssh $REMSYS "/bin/grep ^$i: /etc/group | cut -d:
-f3"`
        /usr/sbin/groupadd -g $MGID $i
    fi
done

/bin/mkdir /home/$USER 2>/dev/null
/bin/chmod 777 /home/$USER
/usr/sbin/useradd -n -M -u $NUID -g $NGID -G "$GROUPLST" -s /bin/true $USER
/bin/chown $USER /home/$USER
/bin/chmod 700 /home/$USER

--------------------
Michael St. Laurent
Hartwell Corporation

[root at earth] root# rm -rf /bin/laden




More information about the samba-technical mailing list