[Samba] use of ‘idmap_ldb:use rfc2307 = yes’ in DCs

[Olaf Frączyk]

The question is, if without the option "use idmap_ldb:use rfc2307 = 
yes"  I will be able to set the uid, uidNumber, unixHomeDirectory and 
gid on the DC, as I can do it now?

NAVI Sp. z o.o.
Promienista 5/1
60-288 Poznań

mobile: +48609769035
phone: +48616622881
fax: +48616622882
http://www.navi.pl

On 2024-06-20 12:32, Luis Peromarta via samba wrote:
> This looks OK, and is a member server config.
>
> We refer to DCs in this article
>
> http://samba.bigbird.es/doku.php?id=samba:no-need-for-use-rfc2307
>
> You do not need "use idmap_ldb:use rfc2307 = yes" on a DC, unless under very special circumstances.
>
> This line in a DC does not affect your member servers, it only affects DCs.
>
> LP
> On Jun 20, 2024 at 11:26 +0100, Olaf Frączyk via samba <samba at lists.samba.org>, wrote:
>> Hello,
>>
>> Why is it said that it affects only if you have fileserver on DC?
>>
>> I use uid, uidNumber, unixHomeDirectory for users and gid for groups.
>> This attributes are defined in samba DC.
>>
>> Then I have another samba server that works as fileserver, and I have
>> this in config:
>>
>> idmap config * : backend = tdb
>> idmap config * : range = 20000-20999
>> idmap config NAVIDOM:backend = ad
>> idmap config NAVIDOM:schema_mode = rfc2307
>> idmap config NAVIDOM:range = 1000-9999
>> idmap config NAVIDOM:unix_nss_info = yes
>> idmap config NAVIDOM:unix_primary_group = yes
>> winbind use default domain = yes
>> winbind nss info = rfc2307
>>
>> As I understand, to use it this way I need the "idmap_ldb:use rfc2307 =
>> yes" on DC?
>>
>> Or is there another way to directly map samba users and groups to linux
>> users and groups?
>>
>> Best regards,
>>
>> Olaf Frączyk
>>
>> NAVI Sp. z o.o.
>> Promienista 5/1
>> 60-288 Poznań
>>
>> mobile: +48609769035
>> phone: +48616622881
>> fax: +48616622882
>> www.navi.pl
>>
>> --
>> To unsubscribe from this list go to the following URL and read the
>> instructions: lists.samba.org/mailman/options/samba