On Wed, Feb 11, 2015 at 11:03 PM, David Finster < [email protected]> wrote:
> Hi Greg > > Thanks for that info - seems quite similar to what I’ve put together so > good to know I’m on the right track. > > I did eventually get the usernames coming across in getent not by using > PAM but rather by manually inserting the nss_winbind.so.1 files into > /usr/local/lib and using ‘crle’ to update the dynamic loader paths that get > searched. I also dropped the 64-bit version into /usr/local/lib/64. I did > both because getent and others are 32-bit whereas id and others are 64-bit. > Glad you were able to get it working. > Once I did that, the settings inside nsswitch.conf flowed through and > started working. AD users can happily authenticate/access the file share > and the permissions are getting properly translated through to ZFS ACLs via > the Windows file security tab. Next step is to try using delegated datasets > and exposing ZFS snapshots via the Previous Versions tab. > That is definitely on my todo list as well. It should be quite dooable, but the trick is teaching Samba to read the zfs snapshots. I've not had any luck with it yet. Samba did create a new snapshot module here: https://www.samba.org/samba/docs/man/manpages/vfs_shadow_copy2.8.html I just need to set some time aside to really focus on it. The trick is going to be writing something for the "Shadow-format" option for zfs snapshots that samba understands. I've even thought about creating symlinks in the Samba VM in the "Samba format" that point to zfs snapshots. That's the clunky way to do it. I'd be really curious to know if you make any headway with this. Greg ------------------------------------------- smartos-discuss Archives: https://www.listbox.com/member/archive/184463/=now RSS Feed: https://www.listbox.com/member/archive/rss/184463/25769125-55cfbc00 Modify Your Subscription: https://www.listbox.com/member/?member_id=25769125&id_secret=25769125-7688e9fb Powered by Listbox: http://www.listbox.com
