[Samba] ADS domain member: winbind fails [SOLVED]
Stefan G. Weichinger
lists at xunil.at
Sun Jan 1 16:50:23 UTC 2017
Am 2017-01-01 um 17:32 schrieb Rowland Penny via samba:
> If you have a user called 'root', then it is easy, remove it, 'root'
> shouldn't exist in AD, it is a Unix only user and you need to map
> Administrator to 'root' in the user.map
removed from AD now.
the user.map was there already, as mentioned.
> The only thing is, do any of your users need to actually login into the
> domain member ?
not really
> If so, this is where using the 'ad' backend comes into its own, you
> just need to add 'loginshell' and 'unixHomeDirectory' attributes
> to the required users i.e.
>
> loginshell: /bin/bash
> unixHomeDirectory: /home/sgw
both attributes are there already, but in getent I get /bin/false
# getent passwd sgw
sgw:*:10000:10513::/home/ARBEITSGRUPPE/sgw:/bin/false
that is optional, but nice to know, sure!
More information about the samba
mailing list