[Samba] trusted domains - samba user authentification

Andrew Bartlett abartlet at pcug.org.au
Wed May 29 07:12:02 GMT 2002

Gavin Timmins wrote:
> I have a similar setup - Multiple domains with trusts, and Samba 2.2.4
> instances on Solaris and IRIX joined to a Windows2000 domain.
> There seems no way in the username.map file to distinguish between users on
> different domains (trusting each other) with the same username.
> For example, If I have an entry in the username.map file "fredf =
> flintstone_f", then the NT user flintstone_f in any domain trusted by the
> domain the samba server is a member of is mapped to the unix user fredf.
> The good news seems to be that samba does know about domains.
> Authentication errors reported in log.smbd mention a username, password
> server _and_ the domain they tried to authenticate against.
> Anyone else come across the same issue?

Use winbindd.  Or at least create accounts in the 'expected' form - that
is 'domain\username' where \ is the winbind seperator.

Andrew Bartlett

Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net

More information about the samba mailing list