Categories: CategoryNetwork


see: * file:/usr/share/doc/samba-doc/htmldocs/winbind.html

Configuration

edit /etc/nsswitch.conf

 passwd:     files winbind
 shadow:     files
 group:      files winbind
/sbin/ldconfig -v | grep winbind

Configure smb.conf:

[global]
     <...>
     # separate domain and username with '+', like DOMAIN+username
     winbind separator = +
     # use uids from 10000 to 20000 for domain users
     winbind uid = 10000-20000
     # use gids from 10000 to 20000 for domain groups
     winbind gid = 10000-20000
     # allow enumeration of winbind users and groups
     winbind enum users = yes
     winbind enum groups = yes
     # give winbind users a real shell (only needed if they have telnet access)
     template homedir = /home/winnt/%D/%U
     template shell = /bin/bash

Join the SAMBA server to the PDC domain:

 root# /usr/local/samba/bin/smbpasswd -j DOMAIN -r PDC -U Administrator

response should be "Joined the domain DOMAIN".

Start up the winbindd daemon

root# /usr/local/samba/bin/winbindd

Infos about users

Get infos about users:

root# /usr/local/samba/bin/wbinfo -u

Get infos about groups:

root# /usr/local/samba/bin/wbinfo -g

Both local and winbind users.

 root# getent passwd

Fix the startup files

see winbind Howto.

Configure Winbind and PAM

This step is optional.

Make sure you have /lib/security/pam_winbind.so.

See winbind Howto for configuration.