[Samba] ADS domain member: winbind fails [SOLVED]

Stefan G. Weichinger lists at xunil.at
Sun Jan 1 16:50:23 UTC 2017

Am 2017-01-01 um 17:32 schrieb Rowland Penny via samba:

> If you have a user called 'root', then it is easy, remove it, 'root'
> shouldn't exist in AD, it is a Unix only user and you need to map
> Administrator to 'root' in the user.map

removed from AD now.
the user.map was there already, as mentioned.

> The only thing is, do any of your users need to actually login into the
> domain member ?

not really

> If so, this is where using the 'ad' backend comes into its own, you
> just need to add 'loginshell' and 'unixHomeDirectory' attributes
> to the required users i.e.
> loginshell: /bin/bash
> unixHomeDirectory: /home/sgw

both attributes are there already, but in getent I get /bin/false

#  getent passwd sgw

that is optional, but nice to know, sure!

More information about the samba mailing list