[Samba] By Example Chapter 9 question
John H Terpstra
jht at samba.org
Mon Mar 14 05:18:20 GMT 2005
On Sunday 13 March 2005 17:25, John Schmerold wrote:
> p 242 says smb.conf should contain:
> ldap machine suffix = ou=People
>
> p. 252 says /etc/smbldap-tools/smbldap.conf should contain
> computersdn="ou=Computers,${suffix}"
>
> Is this correct or should they both read the same way - perhaps
> ou=Computers ?
The problem is not LDAP or Samba. What you must accomodate is how through NSS
you will resolve computer accounts to a UID. Since the only mechanism for
looking up accounts is through the "passwd" facility this means that LDAP
lookups must be made from a point in the LDAP directory tree that lies above
both the ou=People and the ou=Computers. The alternative is to put the
computer accounts in the ou=People container - this avoids the complexity as
well as the huge performance hit of having to search two directory trees.
- John T.l
--
John H Terpstra
Samba-Team Member
Phone: +1 (650) 580-8668
Author:
The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556
Samba-3 by Example, ISBN: 0131472216
Hardening Linux, ISBN: 0072254971
Other books in production.
More information about the samba
mailing list