Hey James! 2012/9/4 James Relph <ja...@themacplace.co.uk>: > >> AD issues are going to require someone tenacious, motivated, and a bit >> masochistic as it's historically been a bit of a moving target. > > AD seems reasonably stable these days, and in fact the current Illumos > strategy works 90% of the way, it's the idmap that actually breaks down > because of the approach taken with ephemeral UIDs. It's the only system that > I've seen use that approach, and it just seems almost guaranteed to make it > difficult for apps that don't have the special hooks that the CIFS server > uses. The opendirectoryd (Mac OS X) and winbind approaches seems much more > reliable - map a user to a generated UID which will be the same across the > domain. Then apps don't need to worry about local or AD users, they just > work.
what about using winbind? Works with Netatalk and I guess it will also work with Solaris CIFS. We haven't been able to get supplementary groups working, but I'm pretty sure that could be solved, possibly by installing an updated winbind from sources. -f _______________________________________________ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
