[Samba] question re multiple backends and the 'guest' backend

Sebastian Abate sebastianabate at gmail.com
Fri Apr 27 13:31:01 GMT 2007

First of all, sorry for my english...

About your issue, the use of two instances of Samba (with different
configurations) is not a choice? you can use a script to maintain the
two smb.conf and change only the parts referring to the backend. I
know that is not a solution (is a workaround) and don't apply to every
situation, but in your case could help.

PD: Again, sorry for my english...

On 4/27/07, Jerome Alet <alet at librelogiciel.com> wrote:
> On Thu, Apr 26, 2007 at 03:05:05PM +0100, J Xu wrote:
> >
> > I am exactly in the situation as Jerome described. I
> > keep most of samba users in an ldap database while
> > still maintain a few users locally. This gave me the
> > flexibility that those users do not depend on ldap.
> Exactly what I wanted to do.
> Actually I'm on Debian Sarge and have all my Samba
> users defined locally.
> Since three years, every night, a batch script is run which extracts
> users that were added today to the central LDAP server of the
> University, with an LDAP filter based on a few criterias, and
> "duplicate" them on the local system (with a different password
> though).
> To these users who come indirectly (not at the samba level) from
> LDAP, in fact student accounts, I locally add accounts for people
> who come maybe 2 or 3 days a year (some professors) and that nobody
> wants to add to the central LDAP server (which needless to say is
> not managed by me). So these users are only defined locally.
> Now since last September the central LDAP server was modified to
> include the Samba schema and could (theorically, not tested by me
> yet) be used from my local Samba PDC directly to grab its user
> accounts.
> I was really happy to learn that, and planned both to upgrade
> my Sarge system to Etch, and use that central LDAP server
> to not have to duplicate accounts every day, all before
> next September.
> But I can't do it, since I still need my "2/3 days a year" local user
> accounts, and newer releases of Samba don't allow me to do this
> (if I understand correctly).
> So my choice is :
>         - Keep Sarge forever.
> or :
>         - Continue this duplication shit.
> or :
>         - Install a local LDAP server which will be a partial
>           replicate of the central one, and to which I'll add
>           my needed local users.
> or :
>         - ? Drop Samba (just joking)
> This really sucks especially because at the system level user accounts
> CAN come from different places in a chained configuration with the
> help of /etc/nsswitch.conf
> Is there any good reason to have made this change ?
> Is there any plan to reintroduce the functionnality at a later date ?
> Jerome Alet
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/listinfo/samba

More information about the samba mailing list