HP CIFS Server 3.0d Administrator's Guide version A.02.02 (Edition 5)

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software

181

182

183

184

185

186

187

188

189

190

Winbind Support

Conﬁguring HP CIFS Server with Winbind

Chapter 7 169

idmap uid = 10000-20000

idmap gid = 10000-20000

winbind enum users = yes

winbind enum groups = yes

winbind cache time = 10

winbind enable local accounts = no

winbind use default domain = no

ldap idmap suffix = ou=testdir, dc=depart, dc=company, dc=com

[shareA]

path = /tmp/shareA

guest ok = no

writable = yes

Idmap Backend

When multiple CIFS Servers participate in a Windows NT or Windows

ADS domain and make use of winbind, you can conﬁgure multiple CIFS

Servers to store ID maps in an LDAP directory. Making use of an LDAP

server and conﬁguring CIFS servers with the idmap backend parameter

in smb.conf will ensure that all UIDs and GIDs are unique across the

domain. This is important in order to support Windows access to NFS

shares.

The following is an example of /etc/smb.conf ﬁle which has machine

ldaphostA.hp.com as the idmap backend:

idmap uid = 10000-20000

idmap gid = 10000-20000

idmap backend = ldap:ldap://ldaphostA.company.com

ldap idmap suffix = ou=test, dc=depart, dc=company, dc=com

Conﬁguring Name Service Switch

To use winbind support, you need to conﬁgure the Name Service Switch

control ﬁle, /etc/nsswitch.conf, to use winbind as the name services

for user or group name lookup.

For example, you can set up the /etc/nsswitch.conf ﬁle as follows:

passwd: files winbind

group: files winbind

protocols: files

hosts: dns files [NOTFOUND=return] wins