[Samba] windbind or ldap ?

Martin Collins martin at escapestudios.com
Tue Aug 7 14:41:39 GMT 2007


Hi,

We run a very similar environment to you, where users can login from 
Windows/Linux with mainly Linux Servers with both NFS/CIFS shares.

Although we tried to use winbind we had huge problems with UID/GID 
inconsistencies between client machines in Linux which plagued us with 
the inherent permissions problems when they returned back into windows!

Eventually we did go ahead with a full LDAP setup, using LDAP as the 
backend for Samba along with LDAP directly for Linux auth. Overall - all 
permissions problems have gone and it works beautifully!

Unfortunately - and there is only 1 unfortunate thing - and that is the 
grained control on users. For us this wasn't too big a deal as all our 
users are the same. What we now do is apply gpedits on the windows boxes 
to limit roaming profiles as we use folder redirection. To apply this we 
created a template user with the all of the registry entries created to 
generate the NTUSER.DAT which we then apply as a "Default User" from the 
netlogon share and this just about does it for us!

Regards,
Martin

.....

Martin Collins
Systems Specialist
Escape Studios
+44 (0) 20 7348 1920
www.escapestudios.com

 


-----Original Message-----
From: Frederic Descamps [mailto:fred at x-tend.be] 
Sent: 07 August 2007 10:01
To: samba at lists.samba.org
Subject: [Samba] windbind or ldap ?

Hello,

I'd like to know if in a full samba environment is it better to use
winbind or ldap to resolve id's ?

users will connect from windows clients, linux clients with samba or
also with ssh and nfs maybe.





-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba




More information about the samba mailing list