[Samba] sid_to_uid: Domain controller lookup missing
jra at dp.samba.org
jra at dp.samba.org
Mon Sep 16 17:18:01 GMT 2002
On Mon, Sep 16, 2002 at 12:03:26PM +0200, Christopher Odenbach wrote:
>
> >From what you say I hear that up to now it is NOT possible to use ACLs
> with samba WITHOUT using winbind. Sorry, but this is not acceptible for
> me (and for sure quite a few other people).
You are incorrect. ACLs in Samba work without winbindd.
The problem occurs when you want to use the Domain SIDs
from a different authority than the Samba server in an
ACL.
To boil it down. Imagine you have 2 unix systems using
/etc/passwd. You have a user "jill" in both systems with
a different uid - both of which are in use on the other
system. Explain how to set up a POSIX ACL on either machine
which contains both "jill" users. That is the problem you
are trying to describe - no Windows or Samba involved.
winbindd is one solution to this.
If you don't try and do this, you don't have problems with
ACLs.
Jeremy.
More information about the samba
mailing list