[Samba] Validate Ids Multiple DC
Rowland penny
rpenny at samba.org
Fri Jan 29 15:05:55 UTC 2016
On 29/01/16 12:07, L.P.H. van Belle wrote:
> Hai Rowland.
>
> What you tried is ok, or im misunderstanding you.
>
> For me :
> All members give me.
> getent passwd myuser
> myuser:*:10002:10000::/home/users/myuser:/bin/bash
>
> id myuser
> uid=10002(myuser) gid=10000(domain users)
>
> the memberservers are or sernet samba 4.2.7 or debian samba 4.1.17
>
> and on the DCs. ( only sernet samba 4.2.7 )
>
> getent passwd myuser
> myuser:*:10002:10000:L.P.H. van Belle:/home/users/ myuser:/bin/bash
>
> id myuser
> uid=10002(myuser) gid=10000(domain users)
>
> forgot to mention 1 restriction.
>
> In the DC's i also have
> template shell = /bin/bash
> template homedir = /home/users/%U
>
> The restriction is that you must use above shell and homedirs for all you users and must be the same in the AD unix tab.
>
> The GECOS is different, but who uses that..
>
>
> Greetz,
>
> Louis
>
>
>
OK, I get virtually the same replies as you, except for 'getent passwd
rowland' I get:
HOME\rowland:*:10000:10000:Rowland Penny:/home/HOME/rowland:/bin/false
I do not have the template lines in smb.conf
As you can see I get 'DOMAIN\username' instead of just username, the
only rfc2307 attributes I get from AD are the users uidNumber and the
users primary group gidNumber.
Are you sure that winbind on a DC uses the default domain ?
Rowland
More information about the samba
mailing list