[Samba] Restricting access to [homes]
steve at steve-ss.com
Thu May 24 04:25:09 MDT 2012
On 05/23/2012 11:46 PM, Jonathan Buzzard wrote:
> NdK wrote:
>> On 23/05/2012 15:30, steve wrote:
>>> If the gidNumber for the gid is stored in AD (as the 2008 and samba4
>>> schema allow) then there can be no clash. It is then no problem in
>>> extracting it and applying it using normal /etc/nsswitch.conf format.
>> The AD schema is still 2003. And who manages it thinks the world is
>> Win-only :( It's easier to talk a mountain into moving itself than
>> making 'em change a single bit in the schema...
> Surely it is at least 2003 R2, in which case the scheme has been
> extended (the update to R2 does it whether you want it or not) and all
> the fields are waiting to be populated :-)
It is 2008r2. We have the rfc2307 objectClasses and attributes built in.
Let's use them!
More information about the samba