[Samba] Solaris nss_ldap vs PADL nss_ldap
Duncan B. Brannen
dbb at st-andrews.ac.uk
Wed Aug 27 22:50:39 GMT 2008
Quoting "Douglas E. Engert" <deengert at anl.gov>:
>
>
> Duncan Brannen wrote:
> >
> >
> > Hi All,
> > Any thoughts on why, while everything seems ok at the OS level
> > (getent , id -a ) Samba
> > doesn't pickup any supplementary groups when Solaris is configured with
> > 'group: files ldap' in
> > nsswitch.conf and using it's own native nss_ldap.so.1 but does when
> > using PADL's nss_ldap?
> > Everything else is equal.
>
> Have you tried using Solaris version withthis in the nsswitch.conf:
>
> group: compat
> group_compat ldap
>
> and adding the + in the /etc/group file.
>
> This appears to work as expected, getting groups info from both
> local and ldap.
>
> Or (I have not tried this):
>
> group: files [SUCCESS=continue] ldap
I haven't no, I'm not going to be in a position to test this
till next week now probably, but I'll give it a go and post back
what I find. All the users and groups are in LDAP only so it
never occurred I might need to (esp with OS level stuff seemingly working)
Thanks for the info.
Cheers,
Duncan
>
>
> >
> > Do they use/accept different calls or could it be an openldap vs native
> > ldap incompatibility,
> > Samba being compiled against the openldap libraries.
> >
> > Samba seems not to compile against the native libraries due to a lack of
> > ldap_start_tls_s
> >
> > Solaris 10 and Samba 3.2.2
> >
> > Cheers,
> > Duncan
> >
>
> --
>
> Douglas E. Engert <DEEngert at anl.gov>
> Argonne National Laboratory
> 9700 South Cass Avenue
> Argonne, Illinois 60439
> (630) 252-5444
>
------------------------------------------------------------------
University of St Andrews Webmail: https://webmail.st-andrews.ac.uk
More information about the samba
mailing list