* [Comm] winbind and local users
@ 2004-12-02 14:35 Salavat Yarmukhametov
0 siblings, 0 replies; only message in thread
From: Salavat Yarmukhametov @ 2004-12-02 14:35 UTC (permalink / raw)
To: community
Здрасвтуйте, проапгрейдился до М.2.4. samba-3.0.5-alt3.M24 берет
пользователей из PDC (WinNT4) через winbind. в домене есть пользователь
salavat (salavat+region). и на машине с самбой есть локальный пользоваетль
salavat. доступ к шарам описан в виде user+domain
/etc/samba/smb.conf
# Global parameters
[global]
dos charset = CP866
unix charset = KOI8-R
display charset = KOI8-R
workgroup = REGION
server string = Samba server on %h (v. %v)
security = DOMAIN
password server = SERVERNT
passwd program = /usr/bin/passwd %u
passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n * passwd:*all*authentication*tokens*updated*successfully*
unix password sync = Yes
log file = /var/log/samba/log.%m
max log size = 50
name resolve order = wins lmhosts bcast
os level = 5
preferred master = No
local master = No
domain master = No
dns proxy = No
wins proxy = Yes
wins server = 192.168.1.1
ldap ssl = no
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind separator = +
winbind enable local accounts = No
winbind use default domain = Yes
hosts allow = 192.168.1., 127.
[install]
path = /win/install
valid users = region+region, region+salavat, region+administrator
read list = region+region
write list = region+salavat, region+administrator
read only = No
create mask = 0644
============================================================
есть машина под вындовс, где пользователь вошел в домен (вынь) под именем
salavat. так вот - самба почему то пытается его авторизовать как
локального пользователя:
[2004/12/02 15:40:47, 1] smbd/service.c:make_connection_snum(619)
salavatw2k (192.168.1.25) connect to service install initially as user
salavat (uid=500, gid=500) (pid 13578)
если зайти с этой машины из-под другого пользователя домена - все
нормально:
[2004/12/02 16:02:04, 1] smbd/service.c:make_connection_snum(619)
salavatw2k (192.168.1.25) connect to service install initially as user
REGION+bogdanov (uid=10006, gid=10004) (pid 14275)
как отучить самбу работать с локальными пользователями?
--
Salavat Yarmukhametov
Jabber: salik@jabber.ru
ICQ: 21144441
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2004-12-02 14:35 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2004-12-02 14:35 [Comm] winbind and local users Salavat Yarmukhametov
ALT Linux Community general discussions
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/community/0 community/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 community community/ http://lore.altlinux.org/community \
mandrake-russian@linuxteam.iplabs.ru community@lists.altlinux.org community@lists.altlinux.ru community@lists.altlinux.com
public-inbox-index community
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.community
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git