Hi Sasha I think Sacha aka tdy_shadow mean somthing else, i have setup this scenario for some weeks but i have some trouble, when you look In my ask in this list like "second samba pdc". First he must setup the second PDC on a seperate physikal machine, with newest samba version for "trusted domains" ... Then you must do on the LDAP the groupmaps for the second PDC for windows and unix, you can't use the same from the 1 PDC. After them you can add user host groups. Dont forget the SIDs must be the same from the hosts users and groups for an domain, only the RIDs must be not the same. Then add the infos in your smb.conf, i use wins for netbios. Winbind do you only when you authentifikate on Windows Server. Thats was a crash info when you need more help send me an Email, today i have not much time sorry.
P.S. The Second Domain works here Mit freundlichen Grüßen Sven Sorry for bad english > -----Ursprüngliche Nachricht----- > Von: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Im > Auftrag von Sascha Bieler > Gesendet: Dienstag, 10. Juni 2008 12:15 > An: 'Sascha'; [email protected] > Betreff: RE: [Samba] 2nd smb server > > Take this as a hint: > > [global] > interfaces = lo eth0 > bind interfaces only = Yes > name resolve order = wins bcast lmhosts host > printing = cups > printcap name = cups > printcap cache time = 750 > cups options = raw > load printers = Yes > unix charset = UTF-8 > display charset = UTF-8 > workgroup = DOMAIN > netbios name = NETBIOSNAME > admin users = @"Domain Admins" > guest account = gast > server string = FileServer %v > security = user > encrypt passwords = Yes > log level = 1 vfs:1 > log file = /var/log/samba/log.%m > syslog = 0 > max log size = 100000 > domain logons = No > os level = 32 > preferred master = No > domain master = No > local master = No > wins server = 192.168.10.1 > dns proxy = Yes > time server = Yes > #ldap## > passdb backend = ldapsam:"ldap://192.168.10.1"; > ldap admin dn = cn=admin,dc=domain,dc=name > ldap suffix = dc=domain,dc=name > ldap group suffix = ou=Groups > ldap user suffix = ou=Users > ldap machine suffix = ou=Computers > ldap idmap suffix = ou=Users > ldap ssl = no > ldap delete dn = Yes > ldap passwd sync = Yes > utmp = Yes > idmap uid = 1000-20000 > idmap gid = 1000-20000 > idmap backend = ldap:"ldap://192.168.10.1"; > shutdown script = /sbin/shutdown > abort shutdown script = /sbin/shutdown -c > nt acl support = yes > kernel oplocks = yes > enable privileges = Yes > template shell = /bin/false > ldap passwd sync = Yes > utmp = Yes > idmap uid = 1000-20000 > idmap gid = 1000-20000 > idmap backend = ldap:"ldap://192.168.10.1"; > shutdown script = /sbin/shutdown > abort shutdown script = /sbin/shutdown -c > nt acl support = yes > kernel oplocks = yes > enable privileges = Yes > template shell = /bin/false > logon script = > logon path = > logon home = > > > > > ############################ > /etc/samba/smbldap.conf > ############################ > slaveLDAP="192.168.10.1" > slavePort="389" > > masterLDAP="192.168.10.1" > masterPort="389" > > > Also set your ldap.conf and nsswitch.conf to the appropiate values. > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
