[Samba] Settings ACLS from Windows via member server

tms3 at tms3.com tms3 at tms3.com
Tue Feb 22 13:15:44 MST 2011

> John,
> It would help the list to understand WHY you believe that winbind is 
> needed by the PDC/BDC, and WHY it is needed on member servers.

Winbind, as the name suggests, does authentication for the unix 
server. Of course the manual has a very good write up of it:

"Winbind unifies UNIX and Windows NT account management by  allowing a 
UNIX box to become a full member of an NT domain. Once  this is done, 
the UNIX box will see NT users and groups as if  they were 
“native” UNIX users and groups, allowing the NT domain  to be used 
in much the same manner that NIS+ is used within  UNIX-only 
Additionally, Winbind provides an authentication service that hooks 
into the PAM system  to provide authentication via an NT domain to any 
PAM-enabled  applications. This capability solves the problem of 
synchronizing  passwords between systems, since all passwords are 
stored in a single  location (on the domain controller)."

> While subscribers keep explaining what they believe, and keep giving
> advice based on their belief system, rather than on well reasoned 
> fact,
> confusion will continue to exist and complaints regarding Samba
> documentation will continue also.
> Are you willing to take a brave step to explain your reasoning?
> Cheers,
> John T.
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba

More information about the samba mailing list