[Samba] LDAP + SSSD + Winbind group membership updating
a.moz at mailhaven.su
a.moz at mailhaven.su
Mon Jun 9 12:03:30 UTC 2025
> I do not think anyone doubted if it was possible, with code, virtually
> anything is possible. What was doubted (at least from my perspective),
> is it worth doing, the way things are going, then I personally do not
> think so, but you are welcome to do whatever you like.
>
> One of the problems is, redhat (one of the big players) obviously does
> not really see a future for Openldap, as they removed the
> openldap-server package from RHEL sometime ago. I am not saying that
> openldap is going to disappear overnight, but I think it is likely to
> slowly fade into the background.
>
> Congratulations for making it work for you, whether anyone else will
> want to use your setup is another matter.
>
> One possible problem I see is, your Linux servers will now probably
> operate differently from any Windows clients. Your servers will update
> group membership (if they use your code), but I doubt if your Windows
> clients will.
>
> Rowland
I don't doubt you doubt.
It doesn't requires any changes on the client side. It refresh only
session info stored on the server. That's all. And, of course, I tested
it using windows client connected to fedora server. It's not "wil"l, It
works.
And it doesn't requires OpenLDAP (why should?). Any LDAP compatible one
can be used. Miss again.
// Offtop. Redhat promotes they own directory server, related to 389
Directory Server.
More information about the samba
mailing list