[Samba] idmap ldap backend population
Pim Zandbergen
P.Zandbergen at macroscoop.nl
Wed Feb 1 13:50:11 GMT 2006
I wrote:
> All the LDAP stuff seems to work, except the LDAP database is not
> being populated. The only thing happening is Samba modifying the
> ou=Idmap,dc=mydomain,dc=com dn.
>
It appears Samba _is_ able to auto-populate the ldap backend with
sid-to-uid mappings. The HOWTO in 3.0.14a says to put this
into /etc/nsswitch.conf:
passwd: files ldap
shadow: files ldap
group: files ldap
But it only works for me if I replace "ldap" with "winbind".
I assumed that once the ldap backend was populated, other
Samba servers would be able to read the mappings using ldap
directly, but this is not the case. Every Samba server in
the domain needs this setting in order to use the idmap backend.
Pim
More information about the samba
mailing list