HP CIFS Server Administrator's Guide (5900-1282, April 2011)

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software

101

102

103

104

105

106

107

108

109

110

Table 14 Global Parameters (continued)

DescriptionParameter

This string variable specifies the type of the idmap backend that is used. The

syntax can be:

• idmap backend =

This is the default where the local idmap tdb file is used.

• idmap backend = rid:<domain name>=<idmap_rid_range>

The ID mappings are generated by the idmap rid facility. For example, idmap

backend = rid:DomainA=50000–60000.

• idmap backend = ldap:ldap://<ldap server name>[:389]

The ID mapping data is stored in a common LDAP directory server backend.

For example, idmap backend = ldap:ldap://ldapserverA.hp.com.

idmap backend

This integer variable specifies the number of seconds the winbindd daemon

caches user and group information before querying a Windows NT server again.

The default value is 300.

winbind cache time

This boolean variable controls whether to enable or disable winbind caching

for the user or group list entries. When this parameter is set to Yes, the winbind

daemon, winbindd, caches the user or group list entries into the winbindd

cache to reduce the HP CIFS Server response time while enumerating user or

group list. To disable winbind caching for the user or group list entries, set this

parameter to No. The default setting is Yes.

You can also use the winbindd -n command to disable winbind caching when

you start the winbind daemon, this means winbindd always has to wait a

response from the Windows domain controller before it can respond to a client.

Either the winbindd -n command or winbind cache ug list = No

configuration disables winbind caching for the user or group list entries.

winbind cache ug list

This boolean variable specifies whether the winbindd daemon operates on

users without domain component in their username. Users without a domain

component are treated as a part of the winbindd server's own domain. The

default setting is No.

winbind use default domain

This string variable specifies the winbind users a home direcotry. For example,

template homedir = /home/%U

template homedir

This string variable specifies the winbind users a login shell. For example,

template shell = /shin/ksh.

template shell

NOTE: If you want to use the default value "\" of the winbind separator parameter in

smb.conf, you should comment out this parameter. By doing this, the testparm and wbinfo

commands can show the correct default separator character "/" without generating an error.

Commenting out the winbind separator parameter with the default value, you must type the

default "\" separator character twice ("\\") when using the wbinfo -n command. For example,

wbinfo -n domain_name\\domain_username.

NOTE:

• The HP CIFS Server does not support the ad option for idmap backend.

• The idmap rid utility requires that the parameter, allow trusted domains = No, must

be specified, as it is not compatible with multiple domain environments. The idmap uid and

idmap gid ranges must also be specified.

Unsupported Parameters or Options

Table 7–2 shows the parameters or options which are not supported by the HP CIFS Server.

104 Winbind Support