netbsd-users: Re: nsswitch and libnss

Subject: Re: nsswitch and libnss_winbind
To: Sarton O'Brien <bsd-xen@roguewrt.org>
From: Johnny C. Lam <jlam@pkgsrc.org>
List: netbsd-users
Date: 05/31/2007 16:20:38

On Wed, May 30, 2007 at 09:49:11AM +1000, Sarton O'Brien wrote:
> 
> I guess the answer I am looking for is a firm 'yes this facility works, I
> have it set like this'  :) ... or a 'no it's not supported' would suffice.

# pkg_info -e samba
samba-3.0.20.2nb2

# ls -l /usr/lib/nss_winbind.*
lrwxr-xr-x  1 root  wheel  27 May 22  2006 /usr/lib/nss_winbind.so.0@ -> /usr/pkg/lib/nss_winbind.so

# grep winbind /etc/nsswitch.conf
group:          files winbind
passwd:         files winbind

# head -20 /usr/pkg/etc/samba/smb.conf
[global]
        workgroup = BUILDLINK
        realm = BUILDLINK.ORG
        server string =
        security = ADS
        allow trusted domains = No
        enable privileges = Yes
        use kerberos keytab = Yes
        idmap backend = idmap_rid:BUILDLINK=10000-20000
        idmap uid = 10000-20000
        idmap gid = 10000-20000
        template homedir = /nonexistent
        template shell = /sbin/nologin
        winbind use default domain = Yes
        winbind nested groups = Yes

# getent group | grep Domain
Domain Computers:x:10515
Domain Controllers:x:10516
Domain Admins:x:10512:Administrator
Domain Users:x:10513
Domain Guests:x:10514

	Cheers,

	-- Johnny Lam <jlam@pkgsrc.org>