[Samba] sssd + samba4 not working (yet)
Kenneth Westelinck
kenneth.westelinck at gmail.com
Wed Feb 19 04:58:03 MST 2014
- Updated (using s4domaingroup-change-gid) gidNumber to 513 (to match what
it was in my old LDAP + SAMBA setup)
- Created a new user (1002:513) with samba-tool and made sure uidNumber and
gidNumber are filled in
- checked with apache directory studio (
http://www.clearcenter.com/support/documentation/clearos_guides/using_apache_directory_studio_with_samba_directory_-_samba_4)
if attributes are available in LDAP, they are
What's next?
(in the meantime I'll try to backport sid's sssd package)
On Wed, Feb 19, 2014 at 12:31 PM, Kenneth Westelinck <
kenneth.westelinck at gmail.com> wrote:
> this might work:
> http://linuxcostablanca.blogspot.be/2012/02/samba-4-posix-domain-user.html
>
>
> On Wed, Feb 19, 2014 at 11:58 AM, steve <steve at steve-ss.com> wrote:
>
>> On Wed, 2014-02-19 at 08:07 +0100, Kenneth Westelinck wrote:
>> > All,
>> >
>> >
>> > Keytab should be fine, as I used the instructions from the wiki to
>> > export it:
>> > root at bubba3-one:/etc# klist -k krb5.sssd.keytab
>> > Keytab name: FILE:krb5.sssd.keytab
>> > KVNO Principal
>> > ----
>> >
>> --------------------------------------------------------------------------
>> > 1 bubba3-one$@EARTH.LOCAL
>> > 1 bubba3-one$@EARTH.LOCAL
>> > 1 bubba3-one$@EARTH.LOCAL
>> > root at bubba3-one:/etc#
>> >
>> >
>> > getent passwd Administrator doesn't return anything
>> >
>> >
>> > I guess I have the uid number stored:
>> > root at bubba3-one:/etc# wbinfo --user-info Administrator
>> > EARTH\Administrator:*:0:100::/home/EARTH/Administrator:/bin/false
>> > root at bubba3-one:/etc#
>>
>> getent doesn't work because you do not have the uid:gid stored in AD.
>> Add something like:
>> uidNumber: 10000
>> gidNumber: 20513
>> to the DN of Administrator
>> and:
>> gidNumber: 20513
>> to the DN of Domain Users
>>
>> HTH
>> Steve
>>
>> Next question? How?
>>
>>
>>
>
More information about the samba
mailing list