[Samba] LDAP visibility for service account

Kees van Vloten keesvanvloten at gmail.com
Wed Nov 23 20:46:51 UTC 2022

Previous message (by thread): [Samba] Testing replication between 4 DCs
Next message (by thread): [Samba] smbclient -L localhost -N fails NT_STATUS_INVALID_NETWORK_RESPONSE
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Team,


Is there a way I can limit what a service-account can get returned when 
it queries LDAP.
I would like to limit visibility to a set of OUs, so that the 
service-account cannot see all of LDAP?

In other words is there an AD equivalent of openldap acls, perhaps 
through dsacls?

- Kees.

Previous message (by thread): [Samba] Testing replication between 4 DCs
Next message (by thread): [Samba] smbclient -L localhost -N fails NT_STATUS_INVALID_NETWORK_RESPONSE
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the samba mailing list