[Samba] How do you configure a NIS group?
Marc Muehlfeld
mmuehlfeld at samba.org
Sun Oct 12 02:38:01 MDT 2014
Hello Rowland,
Am 12.10.2014 um 10:10 schrieb Rowland Penny:
>>> That doesn't do anything for me because I don't have a Windows machine
>>> on my network. I need the name of the attribute so I can ldapmodify it.
>>
>> You shouldn't use ldapmodify for doing changes. Use samba-tool!
>
> Hi Marc, sorry but I cannot agree with you, samba-tool is ok as far as
> it goes, but it fails woefully when it comes to Unix attributes.
I fully agree for unix attributes on accounts. But John asked "How do
you configure a NIS group so it will be pulled out of the LDAP with nslcd?"
And for this, I think 'samba-tool'
a) is best way to ensure everything stays consistant (e. g. backlinks)
b) 'samba-tool group addmembers' is faster than everytime
writing/modifying an ldif and pushing it into the database.
c) does everything that was requested.
Done on a test DC, that uses nslcd:
# samba-tool group add demoGroup
Added group demoGroup
# ldbedit -H /usr/local/samba/private/sam.ldb 'CN=demoGroup'
Add:
msSFU30NisDomain: samdom
gidNumber: 12345
0 adds 2 modifies 0 deletes
# samba-tool group addmembers demoGroup demo01
Added members to group demoGroup
# getent group demoGroup
demoGroup:*:12345:demo01
Regards,
Marc
More information about the samba
mailing list