[Samba] Re: ADS/Kerberos/LDAP/Win2K
Gerald (Jerry) Carter
jerry at samba.org
Fri Jan 20 16:20:57 GMT 2006
-----BEGIN PGP SIGNED MESSAGE-----
Roman Sommer wrote:
> what was this thread called originally? It seems to be interesting.
This is the original thread.
> It looks like it covers pretty much what I am about to do.
> I never came across any information about
> 'idmap backend = ad' (uses the uid and gid information
> from active directory) or 'winbind nss info' (uses
> the home directory and shell information from AD).
> I want winbind to automatically assign both uid and gid to a user that
> logs onto a unix machine for the first time.
The ad backend for winbindd does not allocate ids. It simply reads them
from an AD extended with the SFU schema. To have winbindd allocate &
store, use either tdb or ldap. If you only have one domain, look at the
rid backend which performs a direct mapping from the user/group- RID to
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----
More information about the samba