[Samba] Use UPN to authenticate / Winbind / SSSD
Leon Benthaus
leon.benthaus at mailbox.org
Fri Feb 10 14:53:39 UTC 2023
Dear all,
I only find really old forum entries for this, therefor I would like to
ask for help.
I have a Ubuntu Server 22.04 running with Samba (4.15.13 (nothing newer
available via apt)) bound
to AD using winbindd. Integration via SSSD was not working for me. SSSD
however is used for ssh authentication.
I can create a share now and authenticate via the samaccountname, but I
would like to use the UPN.
The special situation is that the ad domain and the domain part of the
UPN differ. How can I use the UPN
to login? This is working via SSSD and SSH just fine for example. Can
winbind find a user object via UPN
and resolve this to the samaccountname, so the user can use UPN instead
of sama. If so, how?
Any advice to integrate Samba with SSSD then? Is Winbind really best
practice? It feels really limited.
Samba is always complaining about winbindd not running when having
winbind uninstalled and still
with idmap setting set to "sss".
Best,
Leon
More information about the samba
mailing list