Hello, I have a question about machine accounts. I using Samba 3.0, OpenLDAP 2.1.30 and Berkeley 4.2.52 on backend on RedHat machines. I also have 3 slave/BDC's and 1 master/PDC
Right now all of my users and groups exist entirely in the LDAP directory. I have a few accounts in addition to the normal system accounts that are used for emergency access. All authention and group enumeration uses PAM_LDAP with NSS_LDAP. My question is that when I have a machine join the domain, in the LDAP directory an objectclass Account and sambaSAMAccount are created. I still need to create a machine account in /etc/passwd for this to happen. Is there anyone out there that is first creating a posixAccount with appropriate attributes in LDAP then using the Samba/Windows to generate the sambaSAMAccount object and attributes in LDAP also? I was so happy to get all of the user/group stuff consolidated into the directory. Now I see that this is a possibility also but I haven't tried it. Kent N Wareham Public Schools -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba