Re: winbind offline logon [ERA Re: pam_sss(login:account): Access denied for user]

To: debian-italian@lists.debian.org
Subject: Re: winbind offline logon [ERA Re: pam_sss(login:account): Access denied for user]
From: Piviul <piviul@riminilug.it>
Date: Mon, 11 Dec 2023 08:28:12 +0100
Message-id: <[🔎] 778c5b20-f553-4511-8362-90f4fcabaf9a@riminilug.it>
In-reply-to: <[🔎] evrb4k-1vh.ln1@hermione.lilliput.linux.it>
References: <[🔎] 073a4eb5-812b-4cdf-9ed2-4171329c35ec@riminilug.it> <[🔎] 707ded7f-5ac8-4cca-b8f4-43ffbb7432ff@riminilug.it> <[🔎] evrb4k-1vh.ln1@hermione.lilliput.linux.it>

On 12/8/23 17:14, Marco Gaiarin wrote:

Mandi! Piviul
   In chel di` si favelave...

A voi invece va sempre?

Si. Metti qui un 'testparm' che vediamo.

# Global parameters
[global]
    client ipc min protocol = NT1
    client max protocol = SMB3
    client min protocol = NT1
    lock directory = /var/cache/samba
    log file = /var/log/samba/log.%m
    logging = file
    map to guest = Bad User
    max log size = 1000
    obey pam restrictions = Yes
    pam password change = Yes
    panic action = /usr/share/samba/panic-action %d

passwd chat = *Enter\snew\s*\spassword:* %n\n*Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .

    passwd program = /usr/bin/passwd %u
    realm = AD.CSARICERCHE.COM
    security = ADS
    server role = standalone server
    server string = %h server
    template shell = /bin/bash
    unix password sync = Yes
    winbind enum groups = Yes
    winbind enum users = Yes
    winbind expand groups = 1
    winbind offline logon = Yes
    winbind refresh tickets = Yes
    winbind request timeout = 10
    workgroup = DOMINIOCSA
    idmap config dominiocsa : range = 10000-24999
    idmap config dominiocsa : backend = rid
    idmap config * : range = 3000-9999
    idmap config * : backend = tdb


[homes]
    browseable = No
    comment = Home Directories
    create mask = 0700
    directory mask = 0700


Grazie Marco!

Paolo

Reply to:

Follow-Ups:
- Re: winbind offline logon [ERA Re: pam_sss(login:account): Access denied for user]
  - From: Marco Gaiarin <gaio@lilliput.linux.it>

References:
- Re: pam_sss(login:account): Access denied for user
  - From: Piviul <piviul@riminilug.it>
- winbind offline logon [ERA Re: pam_sss(login:account): Access denied for user]
  - From: Piviul <piviul@riminilug.it>
- Re: winbind offline logon [ERA Re: pam_sss(login:account): Access denied for user]
  - From: Marco Gaiarin <gaio@lilliput.linux.it>

Prev by Date: Re: Avviso: malfunzionamento pagina web di iscrizione a questa lista
Next by Date: Re: Disco, FF o che altro ?
Previous by thread: Re: winbind offline logon [ERA Re: pam_sss(login:account): Access denied for user]
Next by thread: Re: winbind offline logon [ERA Re: pam_sss(login:account): Access denied for user]
Index(es):
- Date
- Thread