2

Attempting to get my fedora linux machine to allow Active Directory logons, but I'm not aple to get past this. I'm trying to reconcile a number of tutorials which seem to give contradictory advice as to a few things, such as setting + or / as winbind separator.

http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/winbind.html

http://blog.scottlowe.org/2007/01/15/linux-ad-integration-version-4/

I get about half way done and I never can get my active directory (win2k3) users to show up after getent passwd.

Peter Turner
  • 2,048
  • 9
  • 33
  • 45
  • 1
    I had problems with winbind and switched to likewise-open, it's very easy to install. You can try to see if it works for you in this case. – chmeee Jul 27 '09 at 21:32

2 Answers2

3

Are you using nsswitch.conf? If so, are the winbind entries in there correctly?

The winbind separator is a bugaboo because of naming conventions. Yes, it can be made to work with a \ instead of +, but there are consequences. (Using \ brings you closer to the old-style NT4 logins, which is what you're after). Frankly, if you only have a single domain, I wouldn't bother with the winbind separator. I would, however, set the default domain that winbind searches in.

Avery Payne
  • 14,326
  • 1
  • 48
  • 87
1

Do you have winbind enum users = yes and winbind enum groups = yes set in smb.conf?

Handyman5
  • 5,177
  • 25
  • 30