Помогите разобраться с настройкой. Какие еще файлы править? Как настроить PAM для winbind?Я пока что поправил файл other:
# cat /etc/pam.d/other
#
# $FreeBSD: src/etc/pam.d/other,v 1.10 2003/04/30 21:57:54 markm Exp $
#
# PAM configuration for the "other" service
#
# auth
auth required pam_nologin.so no_warn
auth required /usr/lib/pam_winbind.so
auth sufficient pam_opie.so no_warn no_fake_prompts
auth requisite pam_opieaccess.so no_warn allow_local
auth sufficient pam_krb5.so no_warn try_first_pass
auth sufficient /usr/lib/pam_winbind.so use_first_pass shadow nullok
auth required pam_unix.so no_warn try_first_pass
account required /usr/lib/pam_winbind.so
# session
session required pam_permit.so
# password
password required pam_permit.so
Вот мой smb.conf
# cat /usr/local/etc/smb.conf
[global]
................................
workgroup = DOMAIN
realm = DOMAIN.LOCAL
server string = Интернет сервер
interfaces = 192.168.0.1/24
security = ADS
auth methods = winbind
lanman auth = No
ntlm auth = No
client NTLMv2 auth = Yes
client lanman auth = No
client plaintext auth = No
log level = 10 ads:10
log file = /var/log/samba/log.%m
max log size = 50
max xmit = 65535
client signing = Yes
server signing = Yes
deadtime = 5
paranoid server security = No
preferred master = No
local master = No
domain master = No
dns proxy = No
ldap ssl = no
winbind separator = +
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
winbind refresh tickets = Yes
inherit acls = Yes
hosts allow = 192.168.0., 127.
map acl inherit = Yes
hide special files = Yes
map archive = No
store dos attributes = Yes
wide links = No
template shell = /usr/local/bin/bash
idmap uid = 10000-20000
idmap gid = 10000-20000
# net ads testjoin
Join is OK
#wbinfo -u
выдает список пользователей домена
#pw usershow -a
тоже отображает пользователей и локальных, и доменных.
Остался PAM для Samba и для Squid
Вариант для распечатки
OpenNET: Виртуальная конференция (Public)
(??) on 04-Фев-07, 13:09 
