[Samba] Suppressing DOMAIN on AD-DC Machine
Alex MacCuish
alex at maccuish.org.uk
Tue May 26 18:42:58 UTC 2020
Are you using postfix and the ldap extension or pam? I'm running samba
as a DC for my postfix/dovecot server and it's working fine. Double
check you're using the right query filter with postfix and dovecot. Some
extract the username and append the domain, some require the full domain
etc.
On 26/05/2020 18:41, Rowland penny via samba wrote:
> On 26/05/2020 18:32, Nick Piggott via samba wrote:
>> Hello,
>>
>> Here's my setup:
>> * Ubuntu 18.04 LTS
>> * Samba 4.7.6
>> * Active Directory (provided by Samba)
>> * Postfix 3.3.0
>> * Mailutils 3.4
>>
>> On this machine, my AD usernames are showing in the format
>> DOMAIN\username
>>
>> All the machines in the AD have a directive in their /etc/samba/smb.conf
>> file
>> winbind use default domain = yes
>> however this doesn't work on this machine acting as the AD-DC, and
>> looking
>> through the mailing list, this is by design, and unlikely to change. (It
>> does work on the workstations where users are just shown as their
>> username).
>>
>> Having the format DOMAIN\username is making using Postfix / Mailutils
>> very
>> difficult. Originating emails ("From: DOMAIN\username at domain.com") are
>> being rejected by mail relays, and case folding on Postfix means I
>> end up
>> with two mail files for each user in /var/mail (DOMAIN\username and
>> domain\username).
>>
>> Is there any way to suppress the DOMAIN section of a username on the
>> AD-DC
>> machine? Or an alternative approach to fixing this issue. (I've
>> looked at
>> re-writing in Postfix, and it's ugly).
>
> No, you cannot suppress the domain name, this is one of the reasons we
> do not recommend using the DC for anything other than authentication.
> Have you considered running postfix on a Unix domain member (where you
> can remove the domain name), this could be in a VM on the DC.
>
> Rowland
>
>
>
More information about the samba
mailing list