04-25-2012
Some smb.conf entries that are helping me make progress!
# deal with NSS and the whole UID/SID id mapping stuff
idmap backend = tdb
idmap uid = 2000000 - 2999999
idmap gid = 2000000 - 2999999
idmap config MYDOMAIN : backend = ad
idmap config MYDOMAIN : schema_mode = rfc2307
idmap config MYDOMAIN : readonly = yes
idmap config MYDOMAIN : range = 500 - 1999999
idmap cache time = 604800
idmap negative cache time = 20
winbind cache time = 600
winbind nss info = rfc2307
winbind expand groups = 2
winbind nested groups = yes
winbind use default domain = yes
winbind enum users = yes
winbind enum groups = yes
winbind refresh tickets = yes
winbind offline logon = false
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Good morning,
The script below without the hilited text successfully FTPs the files in question to the other server when it is called from the crontab. I don't want to establish an FTP connection when there are no files so I tried including the hilited lines to only establish an FTP connection... (6 Replies)
Discussion started by: philplasma
6 Replies
2. Shell Programming and Scripting
Hi everyone I'm new here so and I'm just starting to learn a bit of Solaris and I'm working on repairing 10 year old scripts for our system here at work.
When I execute the commands at my prompt everything go's through smooth. I'm using gedit to edit my code because I'm still getting used to the... (4 Replies)
Discussion started by: 82280zx
4 Replies
3. Solaris
Hi Forum,
I updated my Solaris 10 (10/09) with the current Oracle patch file and moved the smb.conf to /etc/samba/smb.conf.
Anyway, since patching, no Windows client is able to connect the share. It says password is wrong, but its the right pw.
My smb.conf:
bash-3.00# cat... (4 Replies)
Discussion started by: borsti007
4 Replies
4. Shell Programming and Scripting
Hi, I have a question.
I define a function using sed command:
replace()
{
searchterm=$1
replaceterm=$2
sed -e "s/$searchterm/$replaceterm/ig" $3 > $WORK'tempfile.tmp'
mv $WORK'tempfile.tmp' $3
}
Then I call
replace 'test = 0' 'test = 1' $myfileThis code works well in... (1 Reply)
Discussion started by: Dark2Bright
1 Replies
5. Shell Programming and Scripting
Hi, I have a question.
I define a function using sed command:
replace()
{
searchterm=$1
replaceterm=$2
sed -e "s/$searchterm/$replaceterm/ig" $3 > $WORK'tempfile.tmp'
mv $WORK'tempfile.tmp' $3
}
Then I call
replace 'test = 0' 'test = 1' $myfile
This code... (1 Reply)
Discussion started by: Dark2Bright
1 Replies
6. Shell Programming and Scripting
Hello "expect" experts
I am new at Expect. I have searched for a little while how to capture multiple lines with Expect and I am almost succeeded on that but I don't get all the lines of a command's output that the script executes on a server.
Here is how my script works in a nutshell -
... (6 Replies)
Discussion started by: capacho6666
6 Replies
7. Solaris
I have configured samba for working
with and external ldap(ad windows2003+openldap backend to obtain the same uid and gid on all linux machines)
On linux works perfect,and i get the same uid for a X user
on all machines.
On solaris11 and hpux 11.31 not
wbinfo -u works fine
wbinfo -g works... (0 Replies)
Discussion started by: Linusolaradm1
0 Replies
8. Solaris
Hello Experts,
I am performing performance tests on a few mysql select queries.
I use the following command to clear the memory disk caches.
sync && echo 3 | sudo tee /proc/sys/vm/drop_caches
I however see that the above command works on RHEL6 but doesn't work on Solaris 10.
I asked... (4 Replies)
Discussion started by: Anirudh Kumar
4 Replies
9. Shell Programming and Scripting
I am sorry if i post in wrong Form.
i have AIX server in which ssh works for all users but sftp only works for root user .
it is too much important for me to solve this .
Your help will be greatly appreciated. (1 Reply)
Discussion started by: khalid khanAIB
1 Replies
10. AIX
root@PRD /> rsh DR
KFAFH_DR: protocol failure due to unexpected closure from server end
root@PRD /> telnet DR
Trying...
Connected to DR.
Escape character is '^]'.
Connection closed.
root@PRD /> ftp DR
Connected to KFAFH_DR.
421 Service not available, remote server has closed connection... (2 Replies)
Discussion started by: filosophizer
2 Replies
LEARN ABOUT FREEBSD
idmap_tdb
IDMAP_TDB(8) System Administration tools IDMAP_TDB(8)
NAME
idmap_tdb - Samba's idmap_tdb Backend for Winbind
DESCRIPTION
The idmap_tdb plugin is the default backend used by winbindd for storing SID/uid/gid mapping tables.
In contrast to read only backends like idmap_rid, it is an allocating backend: This means that it needs to allocate new user and group IDs
in order to create new mappings. The allocator can be provided by the idmap_tdb backend itself or by any other allocating backend like
idmap_ldap or idmap_tdb2. This is configured with the parameter idmap alloc backend.
Note that in order for this (or any other allocating) backend to function at all, the default backend needs to be writeable. The ranges
used for uid and gid allocation are the default ranges configured by "idmap uid" and "idmap gid".
Furthermore, since there is only one global allocating backend responsible for all domains using writeable idmap backends, any explicitly
configured domain with idmap backend tdb should have the same range as the default range, since it needs to use the global uid / gid
allocator. See the example below.
IDMAP OPTIONS
range = low - high
Defines the available matching uid and gid range for which the backend is authoritative. If the parameter is absent, Winbind fails over
to use the "idmap uid" and "idmap gid" options from smb.conf.
EXAMPLES
This example shows how tdb is used as a the default idmap backend. It configures the idmap range through the global options for all domains
encountered. This same range is used for uid/gid allocation.
[global]
# "idmap backend = tdb" is redundant here since it is the default
idmap backend = tdb
idmap uid = 1000000-2000000
idmap gid = 1000000-2000000
This (rather theoretical) example shows how tdb can be used as the allocating backend while ldap is the default backend used to store the
mappings. It adds an explicit configuration for some domain DOM1, that uses the tdb idmap backend. Note that the same range as the default
uid/gid range is used, since the allocator has to serve both the default backend and the explicitly configured domain DOM1.
[global]
idmap backend = ldap
idmap uid = 1000000-2000000
idmap gid = 1000000-2000000
# use a different uid/gid allocator:
idmap alloc backend = tdb
idmap config DOM1 : backend = tdb
idmap config DOM1 : range = 1000000-2000000
AUTHOR
The original Samba software and related utilities were created by Andrew Tridgell. Samba is now developed by the Samba Team as an Open
Source project similar to the way the Linux kernel is developed.
Samba 3.5 06/18/2010 IDMAP_TDB(8)