Having issues with trusted domain scan if the primary domain is a tree-root but not the forest root.
Volker.Lendecke at SerNet.DE
Wed Jan 30 19:33:27 UTC 2019
On Wed, Jan 30, 2019 at 05:36:53PM +0000, Hemanth Thummala wrote:
> Thanks Volker and Metz, for your responses.
> > Yes, avoiding the scan at all is the future!
> Good to know. Will be very interested to see how the trusted domain
> authentication flow will be with this change. However, we need to
> fix this issue as we got into it from the field. I am also trying to
> reproduce it locally and wanted to try with forest_root_scan(). Hope
> it will not be going into endless loop.
Does your version support "winbind:ignore domains"? If the scan as
such is your problem and you don't have users behind those trusts,
that might help.
SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
phone: 0551-370000-0, mailto:kontakt at sernet.de
Gesch.F.: Dr. Johannes Loxen und Reinhild Jung
AG Göttingen: HR-B 2816 - http://www.sernet.de
More information about the samba-technical