[Samba] winbind samlogon issue
jas at eecs.yorku.ca
Thu Feb 18 00:37:56 UTC 2021
On 2/17/2021 7:32 PM, Andrew Bartlett via samba wrote:
> On Wed, 2021-02-17 at 19:19 -0500, Jason Keltz via samba wrote:
>> I wanted to ask for more information on "net cache samlogon" and its
>> relation to "winbind cache time".
> None. This information is sticky until the next login, forever.
> We would like to eventually refresh this information via a ticket
> obtained with S4U2Self, but we can't right now.
> At one point we were thinking to totally remove the ability to find out
> much about users who hadn't ever logged in, because the alternatives
> are unreliable, but this never proceeded.
> I hope this helps,
So if I need to refresh the users groups on each login, would I then
need to clear these samlogon entries on my own? Can I tell winbind not
to store them in the first place?
Why does it appear that without doing this, the users groups get updated
sometimes and not other times?
And then what is the "winbind cache time" ?
More information about the samba