HP CIFS Server 3.0a Administrator's Guide version A.02.01

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software

181

182

183

184

185

186

187

188

189

190

Winbind Support

Conﬁguring HP CIFS Server with Winbind

Chapter 9 169

idmap gid = 1500-2500

winbind enum users = yes

winbind enum groups = yes

winbind cache time = 10

winbind enable local accounts = no

winbind use default domain = no

idmap backend = ldap:ldap://ldaphost1.hp.com

ldap idmap suffix = ou=testdir, dc=cup, dc=hp, dc=com

[shareA]

path = /tmp/shareA

guest ok = no

writable = yes

Idmap Backend

When multiple CIFS Servers participate in a Windows NT or ADS

domain and make use of winbind, you can conﬁgure multiple CIFS

Servers to store ID maps in an LDAP directory. Making use of an LDAP

server and conﬁguring HP CIFS Servers with the ldmap backend

parameter in smb.conf will ensure that all UIDs and GIDs are unique

across the domain. This is important in order to support Windows access

to NFS shares

The following is an example of /etc/smb.conf ﬁle which has machine

ldaphostA.hp.com as the idmap backend and passdb backend:

idmap uid = 40000-50000

idmap gid = 20000-30000

idmap backend = ldap:ldap://ldaphostA.hp.com

ldap idmap suffix = ou=test, dc=cup, dc=hp, dc=com

Conﬁguring Name Service Switch

To use winbind support, you need to conﬁgure Name Service Switch

control ﬁle, /etc/nsswitch.conf, to use winbind as the name services

for user or group names lookup.

For example, you can set up the /etc/nsswitch ﬁle as followings:

passwd: files winbind

group: files winbind

protocols: files

netgroup: files