[Samba] Winbind ignores idmap configuration (3.0.28a)
Naadir Jeewa
naadir at randomvariable.co.uk
Fri Apr 4 07:44:58 GMT 2008
Sorry, yeah, I have munged it.
I did some further checking and found it works fine for the 1 user which
is on the home domain. It's users from other trusted domains which are a
problem.
CLDAP messages are getting rejected by the DCs, but Samba instead says
"DC not found". I've asked the domain admins if they can change the
client signing requirements on the trusted domain I need access to.
Yours,
Naadir Jeewa
-----Original Message-----
From: Doug VanLeuven [mailto:roamdad at sonic.net]
Sent: 03 April 2008 23:11
To: Naadir Jeewa
Cc: samba at lists.samba.org
Subject: Re: [Samba] Winbind ignores idmap configuration (3.0.28a)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Naadir Jeewa wrote:
| Hullo,
|
| After having my Samba server joined to a domain, I'm now having
| difficulties configuring winbind. I want to use the idmap_rid backend,
| and have recompiled Samba from scratch with the requisite rid.so
module.
|
| However, no matter how "idmap domains / idmap config" is set up, it
| seems to get totally ignored. Here is my smb.conf:
|
| [global]
|
| workgroup = DEPARTMENTDOMAIN
|
| server string = NAS Samba Server Version %v
|
| log file = /var/log/samba/log.%m
| max log size = 50
|
| security = ads
| realm = DEPARTMENTDOMAIN
Unless you munged this for the list, it should be the REALM which is (at
least in windows) usually the DNS domain.
If you set it to the workgroup name, that would be a reason it can't
find the DC.
Regards, Doug
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4-svn0 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org
iD8DBQFH9VX7FqWysr/jOHMRAt0qAJ9JXPCuyhblrhzcgGnCP6L4NSlNCQCffbMm
+1gShQrurnUegKX7gZ25N9U=
=97G2
-----END PGP SIGNATURE-----
More information about the samba
mailing list