[Samba] Samba tuning - ldapsam:trusted

Adam Tauno Williams adamtaunowilliams at gmail.com
Fri Aug 24 13:50:28 GMT 2007


> I have a samba configured as PDC and LDAP installed in the same
> machine. Ok. Everything is working correctly, but I want to enhance
> the performance. So, I read that if I set the ldapsam:trusted option,
> samba will directly communicate to ldap to get informations (not using
> NSS anymore). So, I decided to put "ldapsam:trusted = yes" and "guest
> account = nobody" in my config file. Therefore, everytime that I
> start/restart samba server it complains about it (and remains
> stopped).
> So, I don't know what should I do... because I already tried these steps:
> # userdel nobody
> # groupdel nobody
> # smbldap-groupadd -g 65534 -o nobody
> # smbldap-useradd -a -u 65534 -g 65534  -n -s /bin/false -d /  nobody
> and I still can't start samba.

Sorry don't know anything about smbldap utilities;  but the user needs
to exist as a valid account in LDAP.  I assume that is what you are
doing in the above.

> The user account nobody is used for a several applications as dhcpd
> and others services in my box.  Can I use another account to set
> this?!

Sure, we create an account "pcnet" for Samba to use as the anonymous
account.  Not shared with anything else it is a bit simpler.

> I can post my config file if it's necessary... just ask me :)

-- 
Adam Tauno Williams, Network & Systems Administrator
Consultant - http://www.whitemiceconsulting.com
Developer - http://www.opengroupware.org



More information about the samba mailing list