[Samba] Windows 2003 Active Directory and Group Access
vl950t at freenet.de
Mon Apr 26 16:43:29 GMT 2004
thanks for your help - now it works :-)))))))
But there is a new problem. We log on to the linux machine for email and ssh
and so on. So the new problem is that a user is now AMATEC+testuser instead
simple testuser (for the pam module). But I think we can make a hack to the
pam_winbind.so file to add "AMATEC+" to the entered username (so a user has
not to enter AMATEC+testuser but only testuser). Or is there a better way?
Von: Alex de Vaal [mailto:A.Vaal at nh-hotels.com]
Gesendet: Montag, 26. April 2004 10:40
An: vl950t at freenet.de
Betreff: [Samba] Windows 2003 Active Directory and Group Access
I had the same problem with Wk3 groups as valid users on my shares; remove
"winbind use default domain = yes" or set it to "winbind use default domain
Because "winbind separator = +" your valid group will be "valid users =
If you remove "winbind separator = +" your valid group will be "valid users
I prefer the last one, because my ADS users don't have to logon on the Linux
server. My Samba server just acts as a Windows domain member server in ADS.
Alex de Vaal.
More information about the samba