[Samba] Linux offline logon
tlewick at tradebotsystems.com
Thu Oct 1 10:01:01 MDT 2009
The machines are SuSe, and to test I tried shutting down the network
connection at the switch and connected via the console. Winbind was
running during this test. I was unable to su - to a domain account, or
run getent passwd username for a domain account. It just hung...
From: Jeremy Allison [mailto:jra at samba.org]
Sent: Thursday, October 01, 2009 10:54 AM
To: Taylor Lewick
Cc: samba at lists.samba.org
Subject: Re: [Samba] Linux offline logon
On Thu, Oct 01, 2009 at 10:37:08AM -0500, Taylor Lewick wrote:
> So my question is, how can we set it up so that if winbind becomes
> unavailable, or the domain controller is offline, someone can still
> login to the machine using their domain account.
You can't do this if winbindd is unavailable, as it's winbindd
that caches the credentials that allow the offline login.
> I did enable winbind offline logon = yes in smb.conf as well as
> cached_login = yes in /etc/security/pam_winbind.conf and restarted
> and winbind but that didn't seem to help.
This should work (and does on Linux distros). Try
looking at a SuSE configuration (as I *know* it works
on that distro). Probably Guenther and Simo have also
made this work on Red Hat too (but I haven't checked
for a while).
More information about the samba