winbind optimizations

Andrew Bartlett abartlet at samba.org
Fri Apr 9 15:50:27 GMT 2004


On Fri, Apr 09, 2004 at 05:22:15PM +0200, Volker.Lendecke at SerNet.DE wrote:
> Hi!
> 
> The attached patch is an attempt to optimize winbind a bit. It does two things:
> 
> * Don't ask all DC's upon startup. Therefore I have added the flag
>   domain->initialized.
> 
> * Lookupnames and lookupsids don't contact the foreign dc but our own.
>   With my test I could not lookup a SID or name in ADS mode for a foreign
>   domain using LDAP, hence the change to the msrpc routines. Not nice, but 
>   I don't know how to ask that via LDAP.

RPC is the correct answer here.

> Next should be winbindd_pam_auth & friends. We should be able to ask our own
> DC. But before going there I would like some comment from those with withbind
> knowlege. Is what I'm doing the right path?

The PAM code already talks only to our DC (we can only talk to
netlogon on our DC).  Your patch looks good - and Kinkie will
certainly be impressed ;-)

Andrew Barltett


More information about the samba-technical mailing list