[Samba] Re: samba with ADS. winbindd ignore for user authentication
This is a discussion on [Samba] Re: samba with ADS. winbindd ignore for user authentication within the Samba forums, part of the Networking and Network Related category; Oliver Neubauer wrote: > I'm trying to set up samba using ADS for authentication. > > I can successfully ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
10-19-2005
|
|||
|
|||
[Samba] Re: samba with ADS. winbindd ignore for user authentication
Oliver Neubauer wrote:
> I'm trying to set up samba using ADS for authentication. > > I can successfully join the samba machine to the domain. Windows hosts > can "see" the samba machine. > > After successfully joining, doing: > # wbinfo -u > shows me ADS-defined users. Same goes for groups. > > However, when I try and assign one of those users ownership of a file, I > get: > > # chown user1 /tmp/test > chown: test1: illegal user name > even though that user is a valid AD user. You need to configure pam to use nss_winbind, see http://us1.samba.org/samba/docs/man/...html#id2634773 for example, my /etc/pam.d/system-auth contains references to pam_winbind: auth sufficient /lib/security/$ISA/pam_winbind.so use_first_pass .... account [default=bad success=ok user_unknown=ignore] /lib/security/$ISA/pam_winbind.so .... password sufficient /lib/security/$ISA/pam_winbind.so use_authtok -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba 
|
Linear Mode
