timothy_jordan at labor.state.ak.us
Wed Dec 17 19:46:09 GMT 2003
On Wed, 2003-12-17 at 08:56, trogl at shaw.ca wrote:
> > * a Samba server that is a member of a Windows domain should
> > run winbindd to allocate IDs for users/groups in its own
> > domain and trusted domains.
> In my specific situation, the UNIX id's are set up first so they don't conflict with legacy systems/GIDs/UIDs, NT user names match the UNIX user names and users maintain their own UNIX and NT passwords separately ie. it's up to them to make them the same. Is this specific situation, winbindd is going to do more harm than good, if I understand correctly. Right?
> If it's only a member server then it would have to be getting its information from the resource domain BDC and by the definition above this information is all wrong (other than the username and password) so it would be pointless. Or am I missing something?
> Where does PAM fit into this?
The PAM configuration files direct how authentication should be handled
. Should it (application, login, etc...) authenticate of the local
system or winbind.... etc....
More information about the samba