[Samba] Samba 4 AD [homes] Share
Márcio Merlone
marcio.merlone at a1.ind.br
Thu Jan 16 11:30:02 MST 2014
Em 16-01-2014 16:19, steve escreveu:
> (...)
>>> it should pull the unix home directory from the very aptly named
>>> 'unixhomedirectory' attribute, provided that you have set it of course.
>> Did not navigate the LDAP tree yet, but have set unix attributes for the
>> user at dsa.msc snap-in. Not sure if this gets into this attribute though.
> You can have any unixHomeDirectory you like, but if you are not sure if
> your users have it then it is impossible for us to guess whether. . .
I am sure I set a path as unix home dir, was not sure what LDAP
attribute was storing it. It is indeed 'unixHomeDirectory' as you can
see below.
>>> If you run 'getent passwd username' you should get something like this:
>>> username:*:10000:100:username:/home/username:/bin/bash
>> I get it. :)
> _Does_ getent passwd give you the unixHomeDirectory which you think you
> have set in dsa.msc?
Yeap:
root at dc01:~# getent passwd | grep test.account
test.account:*:11234:12345:test.account:/home/usuarios/test.account:/bin/bash
root at dc01:~#
> If not then sssd.conf would help us too.
> Can you post the DN of a typical user? Then we'd know for certain.
> e.g.
> ldbsearch --url=$SAMBAHOME/private/sam.ldb cn=marcio
root at dc01:~# ldbsearch --url=/var/lib/samba/private/sam.ldb cn=test.account
# record 1
dn: CN=test.account,CN=Users,DC=ad,DC=domain,DC=tld
cn: test.account
instanceType: 4
whenCreated: 20140115164059.0Z
whenChanged: 20140115164059.0Z
uSNCreated: 5858
name: test.account
objectGUID: 52bdb971-f877-4c85-afea-b9155299218a
badPwdCount: 0
codePage: 0
countryCode: 0
badPasswordTime: 0
lastLogoff: 0
lastLogon: 0
primaryGroupID: 513
objectSid: S-1-5-21-xxxx-61428
logonCount: 0
sAMAccountName: test.account
sAMAccountType: 805306368
objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=ad,DC=domain,DC=tld
pwdLastSet: 130169127380000000
displayName: Conta para testes
homeDirectory: \\dc01\test.account\documents
profilePath: \\dc01\test.account\profile
homeDrive: U:
scriptPath: logon.bat
accountExpires: 137919572470000000
logonHours:: ////////////////////////////
userAccountControl: 512
uidNumber: 30214
objectClass: top
objectClass: posixAccount
objectClass: person
objectClass: organizationalPerson
objectClass: user
unixHomeDirectory: /home/usuarios/test.account
loginShell: /bin/false
gidNumber: 2000
msSFU30NisDomain: a1
uSNChanged: 5862
memberOf: CN=enge,CN=Users,DC=ad,DC=domain,DC=tld
distinguishedName: CN=test.account,CN=Users,DC=ad,DC=domain,DC=tld
# Referral
ref: ldap://ad.a1.ind.br/CN=Configuration,DC=ad,DC=domain,DC=tld
# Referral
ref: ldap://ad.a1.ind.br/DC=DomainDnsZones,DC=ad,DC=domain,DC=tld
# Referral
ref: ldap://ad.a1.ind.br/DC=ForestDnsZones,DC=ad,DC=domain,DC=tld
# returned 4 records
# 1 entries
# 3 referrals
root at dc01:~#
--
*Marcio Merlone*
TI - Administrador de redes
*A1 Engenharia - Unidade Corporativa*
Fone: +55 41 3616-3797
Cel: +55 41 9689-0036
http://www.a1.ind.br/ <http://www.a1.ind.br>
More information about the samba
mailing list