[Samba] Samba 4 AD [homes] Share
steve
steve at steve-ss.com
Thu Jan 16 11:42:13 MST 2014
On Thu, 2014-01-16 at 16:30 -0200, Márcio Merlone wrote:
> Em 16-01-2014 16:19, steve escreveu:
> > (...)
> >>> it should pull the unix home directory from the very aptly named
> >>> 'unixhomedirectory' attribute, provided that you have set it of course.
> >> Did not navigate the LDAP tree yet, but have set unix attributes for the
> >> user at dsa.msc snap-in. Not sure if this gets into this attribute though.
> > You can have any unixHomeDirectory you like, but if you are not sure if
> > your users have it then it is impossible for us to guess whether. . .
> I am sure I set a path as unix home dir, was not sure what LDAP
> attribute was storing it. It is indeed 'unixHomeDirectory' as you can
> see below.
>
> >>> If you run 'getent passwd username' you should get something like this:
> >>> username:*:10000:100:username:/home/username:/bin/bash
> >> I get it. :)
> > _Does_ getent passwd give you the unixHomeDirectory which you think you
> > have set in dsa.msc?
> Yeap:
>
> root at dc01:~# getent passwd | grep test.account
> test.account:*:11234:12345:test.account:/home/usuarios/test.account:/bin/bash
> root at dc01:~#
>
Nope, but we're getting closer.
That is not the correct uid:gid pair. It should be: 30214:2000
So. . .
Can you post sssd.conf?
Steve
>
> > If not then sssd.conf would help us too.
> > Can you post the DN of a typical user? Then we'd know for certain.
> > e.g.
> > ldbsearch --url=$SAMBAHOME/private/sam.ldb cn=marcio
> root at dc01:~# ldbsearch --url=/var/lib/samba/private/sam.ldb cn=test.account
> # record 1
> dn: CN=test.account,CN=Users,DC=ad,DC=domain,DC=tld
> cn: test.account
> instanceType: 4
> whenCreated: 20140115164059.0Z
> whenChanged: 20140115164059.0Z
> uSNCreated: 5858
> name: test.account
> objectGUID: 52bdb971-f877-4c85-afea-b9155299218a
> badPwdCount: 0
> codePage: 0
> countryCode: 0
> badPasswordTime: 0
> lastLogoff: 0
> lastLogon: 0
> primaryGroupID: 513
> objectSid: S-1-5-21-xxxx-61428
> logonCount: 0
> sAMAccountName: test.account
> sAMAccountType: 805306368
> objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=ad,DC=domain,DC=tld
> pwdLastSet: 130169127380000000
> displayName: Conta para testes
> homeDirectory: \\dc01\test.account\documents
> profilePath: \\dc01\test.account\profile
> homeDrive: U:
> scriptPath: logon.bat
> accountExpires: 137919572470000000
> logonHours:: ////////////////////////////
> userAccountControl: 512
> uidNumber: 30214
> objectClass: top
> objectClass: posixAccount
> objectClass: person
> objectClass: organizationalPerson
> objectClass: user
> unixHomeDirectory: /home/usuarios/test.account
> loginShell: /bin/false
> gidNumber: 2000
> msSFU30NisDomain: a1
> uSNChanged: 5862
> memberOf: CN=enge,CN=Users,DC=ad,DC=domain,DC=tld
> distinguishedName: CN=test.account,CN=Users,DC=ad,DC=domain,DC=tld
>
> # Referral
> ref: ldap://ad.a1.ind.br/CN=Configuration,DC=ad,DC=domain,DC=tld
>
> # Referral
> ref: ldap://ad.a1.ind.br/DC=DomainDnsZones,DC=ad,DC=domain,DC=tld
>
> # Referral
> ref: ldap://ad.a1.ind.br/DC=ForestDnsZones,DC=ad,DC=domain,DC=tld
>
> # returned 4 records
> # 1 entries
> # 3 referrals
> root at dc01:~#
>
>
> --
> *Marcio Merlone*
> TI - Administrador de redes
>
> *A1 Engenharia - Unidade Corporativa*
> Fone: +55 41 3616-3797
> Cel: +55 41 9689-0036
>
> http://www.a1.ind.br/ <http://www.a1.ind.br>
More information about the samba
mailing list