Re: Samba, ldap and adding machine accounts.

To: Finn-Arne Johansen <faj@bzz.no>
Cc: Petter Reinholdtsen <pere@hungry.com>, Debian Edu Mailinglist <debian-edu@lists.debian.org>
Subject: Re: Samba, ldap and adding machine accounts.
From: Petter Reinholdtsen <petter.reinholdtsen@usit.uio.no>
Date: Wed, 19 May 2004 09:44:13 +0200
Message-id: <[🔎] 2fl65ashnea.fsf@saruman.uio.no>
In-reply-to: <[🔎] 20040518084328.GA3604@bzzware.org> (Finn-Arne Johansen's message of "Tue, 18 May 2004 10:43:28 +0200")
References: <[🔎] 20040511152043.GB7758@bzzware.org> <[🔎] 2flu0yl5rgo.fsf@saruman.uio.no> <[🔎] 20040512204033.GA22439@bzzware.org> <[🔎] 20040512211456.GA24190@saruman.uio.no> <[🔎] 20040514061852.GA19649@bzzware.org> <[🔎] 2flk6za6c36.fsf@saruman.uio.no> <[🔎] 20040518084328.GA3604@bzzware.org>

[Finn-Arne Johansen]
>>  - Logging a user into a host in the SMB domain
>
> You mean the last logged on entry ?

I do not know what it changes in the different situations.  I just
assume that samba behaves differently in these situations.  I'm trying
to describe the situations, and hoped someone with real samba
knowledge could verify or extend the list of situations. 

> + When creating a user. 
>    wlus still uses smbpasswd to setup the samba part of the account

I didn't list this as it is done by wlus, not samba as such.  We could
add support to wlus for adding windows hashes, and that would make
user creating independent of samba.

>> What attributes does it need to read and write to in LDAP and where in
>> the LDAP tree does it need to read and write during these operations?
>
> the attributes with the samba prefix. 

All of them, every time?

> Dont know. But we can, if we give samba access to it, make the unix
> password change when a user changes the samba password

I would rather have it the other way around, in preparation of
Cerebrum.

> If I got time, I will try to move the machines into the
> ou=Machines,ou=People subtree

I saw on IRC that you confirmed that this worked.

> Then I will try to create the needed samba-attributes (as root), and
> only let samba update the ones it needs to update

I would like to know which attributes are modified in which
situations.

> Then I will ty to block password updates from samba.

I look forward to the results.

Reply to:

References:
- Samba, ldap and adding machine accounts.
  - From: Finn-Arne Johansen <faj@bzz.no>
- Re: Samba, ldap and adding machine accounts.
  - From: Petter Reinholdtsen <pere@hungry.com>
- Re: Samba, ldap and adding machine accounts.
  - From: Finn-Arne Johansen <faj@bzz.no>
- Re: Samba, ldap and adding machine accounts.
  - From: Petter Reinholdtsen <pere@hungry.com>
- Re: Samba, ldap and adding machine accounts.
  - From: Finn-Arne Johansen <faj@bzz.no>
- Re: Samba, ldap and adding machine accounts.
  - From: Petter Reinholdtsen <pere@hungry.com>
- Re: Samba, ldap and adding machine accounts.
  - From: Finn-Arne Johansen <faj@bzz.no>

Prev by Date: Re: Changing the boot logo in debian-edu
Next by Date: Re: CVS update: skolelinux/www/testing/wlus 003_delete_many_users.txt
Previous by thread: Re: Samba, ldap and adding machine accounts.
Next by thread: mozilla, j2re1.4, Request for Test
Index(es):
- Date
- Thread