HP CIFS Server Administrator's Guide Version A.03.01.01 (5900-1282, May 2011)
idmap gid = 50000-60000
idmap backend = rid:DomainA=50000-60000
allow trusted domains = no
Check the log file to see if the rid shared library is loaded after you configure and setup rid.
LDAP Backend Support
When multiple CIFS Servers participate in a Windows NT or Windows ADS domain and make
use of winbind, you can configure multiple CIFS Servers to store ID maps in an LDAP directory.
Making use of an LDAP server and configuring CIFS servers with the idmap backend parameter
in smb.conf will ensure that all UIDs and GIDs are unique across the domain. This is important
in order to support Windows access to NFS shares.
NOTE: The HP CIFS Server does not support the ad option for idmap backend. For Windows
ADS environments, you can consider to use idmap rid. See the “idmap rid Backend Support”
section for detailed information
Configuring the LDAP Backend
To manage ID maps in an LDAP backend server, set idmap backend = ldap:ldap://<LDAP server
name>. The following is an example of /etc/smb.conf file which has machine
ldaphostA.company.com as the idmap backend:
[global]
workgroup = DomainA # Doamin name
security = domain
# idmap section
ldap user suffix = ou=Pepole
ldap grup suffix = ou=Groups
idmap uid = 50000-60000
idmap gid = 50000-60000
idmap backend = ldap:ldap://ldaphostA.company.com
ldap idmap suffix = Idmap
ldap admin dn = "cn=Directory Manager"
ldap suffix = dc=org, dc=company, dc=com
Starting and Stopping Winbind
This section describes how to start or stop the HP CIFS Server with winbind support.
Starting Winbind
Use the startsmb -winbind or startsmb -w command to start the winbind daemon on the
HP CIFS server as follows:
$ startsmb -winbind
or
$ startsmb -w
The startsmb command without specifying any option will start both smbd and nmbd daemons
only.
Stopping Winbind
Use the stopsmb -winbind or stopsmb -w command to stop the winbind daemon on the HP
CIFS server as follows:
$ stopsmb -winbind
or
$ stopsmb -w
108 Winbind Support