[Samba] sssd + samba4 not working (yet)
steve
steve at steve-ss.com
Wed Feb 19 07:03:21 MST 2014
On Wed, 2014-02-19 at 12:31 +0100, Kenneth Westelinck wrote:
> this might work:
> http://linuxcostablanca.blogspot.be/2012/02/samba-4-posix-domain-user.html
>
Easier:
ldbedit --url=/path/to/your-samba/private/sam.ldb cn='Domain Users'
add a line:
gidNumber: 20513
save.
Now:
samba-tool user add kenneth --uid-number=3000100 --gid-number=20513
Kill the sssd cache and restart it. Now try:
getent passwd kenneth
That's it.
HTH
Steve
>
>
> On Wed, Feb 19, 2014 at 11:58 AM, steve <steve at steve-ss.com> wrote:
> On Wed, 2014-02-19 at 08:07 +0100, Kenneth Westelinck wrote:
> > All,
> >
> >
> > Keytab should be fine, as I used the instructions from the
> wiki to
> > export it:
> > root at bubba3-one:/etc# klist -k krb5.sssd.keytab
> > Keytab name: FILE:krb5.sssd.keytab
> > KVNO Principal
> > ----
> >
> --------------------------------------------------------------------------
> > 1 bubba3-one$@EARTH.LOCAL
> > 1 bubba3-one$@EARTH.LOCAL
> > 1 bubba3-one$@EARTH.LOCAL
> > root at bubba3-one:/etc#
> >
> >
> > getent passwd Administrator doesn't return anything
> >
> >
> > I guess I have the uid number stored:
> > root at bubba3-one:/etc# wbinfo --user-info Administrator
> > EARTH
> \Administrator:*:0:100::/home/EARTH/Administrator:/bin/false
> > root at bubba3-one:/etc#
>
>
> getent doesn't work because you do not have the uid:gid stored
> in AD.
> Add something like:
> uidNumber: 10000
> gidNumber: 20513
> to the DN of Administrator
> and:
> gidNumber: 20513
> to the DN of Domain Users
>
> HTH
> Steve
>
> Next question? How?
>
>
>
>
More information about the samba
mailing list