[Samba] pam_winbind, ssh and cross-forest membership...
Rowland Penny
rpenny at samba.org
Wed Jan 12 18:51:33 UTC 2022
On Wed, 2022-01-12 at 19:23 +0100, Marco Gaiarin via samba wrote:
> Mandi! Rowland Penny via samba
> In chel di` si favelave...
>
> > > Forgot to say: 'winbind use default domain = Yes'.
> > Then remove it, you cannot use it with multiple domains.
>
> Rowland, Andrew some month ago here say that now 'winbind use default
> domain =
> Yes' works as expected, eg in a multidomain/forest environment,
> permit to
> not add the 'defauklt0 domain.
Can you provide a link to where Andrew said this ?
The smb.conf manpage still says this about 'windows use default
domain':
Users without a domain component are treated as is part of the winbindd
server's own domain.
And:
This option should be avoided if possible. It can cause confusion about
responsibilities for a user or group.
Rowland
More information about the samba
mailing list