AW: winbind and idmap ldap
Klein.Roman at yamanouchi.de
Klein.Roman at yamanouchi.de
Wed Jul 7 13:47:42 GMT 2004
Hi,
I have exactly this scenario with 2.something
What I had to set in the smb.conf is the following:
ldap suffix: <our ldap base-dn>
ldap idmap suffix: <relative to above ldap suffix>
ldap admin dn: <manager of the ldap>
idmap backend: ldap:ldap://<your ldap-server>
idmap uid: <whatever you have chosen>
idmap gui: <whatever you have chosen>
Best Regards
Roman
-----Ursprüngliche Nachricht-----
Von: Benoit Panizzon [mailto:bp at imp.ch]
Gesendet: Dienstag, 6. Juli 2004 17:18
An: samba-technical at lists.samba.org
Betreff: winbind and idmap ldap
Hi all
There's this situation:
W2k ADS (no changes are allowed to the schema, so no Posix Data to be saved
there) All users are managed via ADS and are only to be managed there (no
separate manualy managed Database for ID Mapping)
2 Un*x servers runing samba 3.x with winbind being used as Fileservers.
Using the filebased winbind idmap the same user could be assigned two
different Unix UID's on each server which is what we want to avoid.
I've read what I could find about LDAP idmap and unfortunately that was not
very much (if somebody know a good how-to or docs to that topic, please
point
me there)
So there is my question:
- Do you have to specify the idmap on the ldap server or is it generated on
the fly like the file based map?
Regards
--
Benoît Panizzon, <bp at imp.ch>
------------------------------------------------------------------------
ImproWare AG, UNIXSP & ISP Phone: +41 61 826 93 00
Zurlindenstrasse 29 Fax: +41 61 826 93 01
CH-4133 Pratteln Net: http://www.imp.ch/
------------------------------------------------------------------------
More information about the samba-technical
mailing list