Problem with automatic mapping of unknown domains to ourselves
Gerald (Jerry) Carter
jerry at samba.org
Tue Feb 3 18:47:45 GMT 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Volker.Lendecke at SerNet.DE wrote:
| Hi!
|
| Jerry, can you tell me how you produced the test case for
| auth/auth_util.c:227 ff? I've got the problem that I have a user that
| is locked out when connecting to Samba 3 in domain security mode.
| This user comes from a workstation with a local account named exactly
| like his domain account but without a password.
|
| Samba 3 maps this to our default domain as the domain does
| naturally not trust his workstation.
set
auth methods = guest sam_ignoredomain winbind:ntdomain
I think that our corrent code is structured incorrectly
but the problem is that we only maintain one domain after
we map the user. I think the case should actually be like
if user exists in domain then assume DOMAIN\user else try our
local passdb.
But the auth methods list above will get you close to what you
want I expect.
cheers, jerry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFAH+zRIR7qMdg1EfYRAuTSAJ9OxPl5Ipiag+4sgDtOkfZDiqx4EQCcCPME
HFhJP9I1grZ6eOBd5PwbXIw=
=ZO64
-----END PGP SIGNATURE-----
More information about the samba-technical
mailing list