> I'm using Samba 3 as a PDC with an Openldap backend and also have a > number of Samba domain member servers that lookup the ldap directory for > their account information. I use ssh to perform various administration > tasks. There is an account called Administrator in the LDAP directory > that has a UID of 0 . However, after nscd has been started, the next > time i login to one of the member servers using the root account my > username is reported as Administrator and not as root as expected. This > causes various issues with ssh keys etc..
It only works when you're not running nscd because you're lucky. NSS will return the first matching entry for a uidnumber={0} lookup. It doesn't really support multiple accounts with the same uidnumber, id suggest not having a Administration;uidnumber=0 account. Simply map Administrator = root in Samba if this is the behaviour you want. > I have the following lines in my nsswitch.conf file. > > passwd: files ldap > > shadow: files ldap > > group: files ldap > grepping the output of 'getent passwd' for x:0: > > root:x:0:0:root:/root:/bin/bash > > Administrator:x:0:5001:Netbios Domain > > Administrator:/home/Administrator:/bin/bash > When i stop the nscd service the behaviour of the system returns to normal. > I apologise if this topic is not directly samba related. However, i'm > sure somebody else must have come accross this behaviour. nscd is just a dumb cache, you're getting the results of a uidnumber=0 lookup into its cache.
signature.asc
Description: This is a digitally signed message part
-- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba