[Samba] How can I have new users/groups to include posixAccount/posixGroup schema automatically?

Rowland Penny rowlandpenny at googlemail.com
Thu Apr 9 12:48:52 MDT 2015

On 09/04/15 19:28, Luca Olivetti wrote:
> El 09/04/15 a les 18:39, Rowland Penny ha escrit:
>> If you want your Unix users to have the same IDs everywhere, you need to
>> use the RFC2307 attributes, at the moment, how the attributes get into
>> AD is up to you, use ADUC, samba-tool or write your own scripts.
> The problem that both Andrey and me are facing (and I'm sure we're not
> the only ones) is that to manage users with samba3+openldap there were
> several tools available, both command line and web based (e.g. I'm
> currently using an old version of ldap account manager so that
> non-technical staff can manage users).
> Now that I'm planning a migration to samba 4 I see that there are no
> ready made tools to do the same. Yes, you can do everything with ADUC
> but you have to install it first and then the sequence of steps to get
> everything (AD+unix attributes) right is cumbersome, and even then I
> have to write some tools that do the "unixy" things I'm currently doing
> automatically once a user is created, like creating a mailbox and a home
> directory.
> Not that I'm complaining, it's just something I have to keep in mind and
> allocate time for.
> Bye

I understand where you are coming from, but most of the tools that you 
refer to, were written in response to similar problems that are 
occurring now, LAM is still in development and it may help if you 
upgrade your version to the latest available, I cannot help with the 
mailbox, but have you considered pam_mkhomedir for creating the users 
homedirs ?


More information about the samba mailing list