Winbind's offline state and idmap_ldap

simo idra at
Mon Feb 19 02:32:05 GMT 2007

On Sun, 2007-02-18 at 19:51 -0600, Gerald (Jerry) Carter wrote:
> Hash: SHA1
> Simo,
> > I think we will need to implement offline code inside 
> > the single modules in some cases, and idmap made
> > aware of what offline means.
> IMO this unnecessarily complicates the code.  "offline" in
> winbindd means that cached logons and "ls -l" should work
> without a network connection and eb served out of its cache.
> A backend can do whatever it likes but winbindd should never
> ask a backend to connect to the network when it itself
> has been set to not communicate with the network.  Let's
> solve the single problem at hand without introducing added
> complexity if we can help it.
> That's the way I'll fix the off line design in winbindd.

In this case, the solution is simple, just make the idmap cache aware of
offlin/online modes, and never let idmap ask the backends when in
offline mode, nor expire the caches.


Simo Sorce
Samba Team GPL Compliance Officer
email: idra at

More information about the samba-technical mailing list