[Samba] Offline logon and NSS...
Rowland penny
rpenny at samba.org
Fri Oct 18 13:14:27 UTC 2019
On 18/10/2019 14:06, Marco Gaiarin via samba wrote:
>
> Ok, but still i don't fully understand. manpage says:
>
> winbind cache time (G)
>
> This parameter specifies the number of seconds the winbindd(8) daemon will cache user and group information before querying a Windows NT server again.
>
> This does not apply to authentication requests, these are always evaluated in real time unless the winbind offline logon option has been enabled.
>
> Default: winbind cache time = 300
>
> and:
>
> idmap cache time (G)
>
> This parameter specifies the number of seconds that Winbind's idmap interface will cache positive SID/uid/gid query results. By default, Samba will cache these results for one week.
>
> Default: idmap cache time = 604800
>
> and these, at least to me, apply more to 'NSS' part then on 'PAM'
> part...
All you are doing by altering the cache times is to change when Samba
updates the caches (but this would only happen if the domain is online).
Rowland
More information about the samba
mailing list