From f62eaeb1a5add34ee7353d0d95db3c84a5c71c22 Mon Sep 17 00:00:00 2001 From: Jelmer Vernooij Date: Wed, 13 Aug 2003 06:07:10 +0000 Subject: regenerate (This used to be commit 75a8a906e8031b50e6583f2e0354073a8aa7f5f3) --- docs/htmldocs/winbindd.8.html | 50 +++++++++++++++++++++---------------------- 1 file changed, 24 insertions(+), 26 deletions(-) (limited to 'docs/htmldocs/winbindd.8.html') diff --git a/docs/htmldocs/winbindd.8.html b/docs/htmldocs/winbindd.8.html index 10759df47e..fdcde9fba8 100644 --- a/docs/htmldocs/winbindd.8.html +++ b/docs/htmldocs/winbindd.8.html @@ -1,5 +1,5 @@ winbindd

Name

winbindd — Name Service Switch daemon for resolving names - from NT servers

Synopsis

winbindd [-F] [-S] [-i] [-Y] [-d <debug level>] [-s <smb config file>] [-n]

DESCRIPTION

This program is part of the Samba(7) suite.

winbindd is a daemon that provides + from NT servers

Synopsis

winbindd [-F] [-S] [-i] [-Y] [-d <debug level>] [-s <smb config file>] [-n]

DESCRIPTION

This program is part of the Samba(7) suite.

winbindd is a daemon that provides a service for the Name Service Switch capability that is present in most modern C libraries. The Name Service Switch allows user and system information to be obtained from different databases @@ -26,12 +26,12 @@ the passwd(5) file and used by getpwent(3) functions.

group

Group information traditionally stored in the group(5) file and used by - getgrent(3) functions.

For example, the following simple configuration in the + getgrent(3) functions.

For example, the following simple configuration in the /etc/nsswitch.conf file can be used to initially resolve user and group information from /etc/passwd and /etc/group and then from the Windows NT server. -

+
 passwd:         files winbind
 group:          files winbind
 
The following simple configuration in the
@@ -55,8 +55,7 @@ configuration details required by the server.  The
 information in this file includes server-specific
 information such as what printcap file to use, as well 
 as descriptions of all the services that the server is 
-to provide. See 
-smb.conf(5) for more information.
+to provide. See smb.conf for more information.
 The default configuration file name is determined at 
 compile time.
-d|--debug=debuglevel
debuglevel is an integer 
 from 0 to 10.  The default value if this parameter is 
@@ -70,9 +69,8 @@ amounts of log data, and should only be used when
 investigating a problem. Levels above 3 are designed for 
 use only by developers and generate HUGE amounts of log
 data, most of which is extremely cryptic.
Note that specifying this parameter here will 
-override the log
-level parameter in the 
-smb.conf(5) file.
-l|--logfile=logbasename
File name for log/debug files. The extension
+override the log level parameter
+in the smb.conf file.
-l|--logfile=logbasename
File name for log/debug files. The extension
 ".client" will be appended. The log file is
 never removed by the client.
 
-h|--help
Print a summary of command line options.
@@ -109,25 +107,25 @@ never removed by the client.
 	determine which user and group ids correspond to Windows NT user 
 	and group rids. 
CONFIGURATION
Configuration of the winbindd daemon 
 	is done through configuration parameters in the smb.conf(5) file.  All parameters should be specified in the 
-	[global] section of smb.conf. 
EXAMPLE SETUP
To setup winbindd for user and group lookups plus 
+	[global] section of smb.conf. 
  • 
+		winbind separator
  • 
+		idmap uid
  • 
+		idmap gid
  • 
+		winbind cache time
  • 
+		winbind enum users
  • 
+		winbind enum groups
  • 
+		template homedir
  • 
+		template shell
  • 
+		winbind use default domain
EXAMPLE SETUP
To setup winbindd for user and group lookups plus 
 	authentication from a domain controller use something like the 
-	following setup. This was tested on a RedHat 6.2 Linux box. 
In /etc/nsswitch.conf put the 
+	following setup. This was tested on a RedHat 6.2 Linux box. 
In /etc/nsswitch.conf put the 
 	following:
-
+
 passwd:     files winbind
 group:      files winbind
-
In /etc/pam.d/* replace the 
+
In /etc/pam.d/* replace the 
 	auth lines with something like this:
-
+
 auth       required	/lib/security/pam_securetty.so
 auth       required	/lib/security/pam_nologin.so
 auth       sufficient	/lib/security/pam_winbind.so
@@ -143,16 +141,16 @@ auth       required     /lib/security/pam_pwdb.so use_first_pass shadow nullok
 	made from /lib/libnss_winbind.so to
 	/lib/libnss_winbind.so.2.  If you are using an
 	older version of glibc then the target of the link should be
-	/lib/libnss_winbind.so.1.
Finally, setup a smb.conf(5) containing directives like the 
+	/lib/libnss_winbind.so.1.
Finally, setup a smb.conf(5) containing directives like the 
 	following:
-
+
 [global]
 	winbind separator = +
         winbind cache time = 10
         template shell = /bin/bash
         template homedir = /home/%D/%U
-        winbind uid = 10000-20000
-        winbind gid = 10000-20000
+        idmap uid = 10000-20000
+        idmap gid = 10000-20000
         workgroup = DOMAIN
         security = domain
         password server = *
-- 
cgit