This is an old revision of the document!
gX# cat smb.conf
[global] workgroup = ADX security = DOMAIN winbind use default domain = Yes idmap uid = 20000-40000 idmap gid = 20000-40000 template homedir = /home/%U template shell = /bin/sh winbind enum users = yes winbind enum groups = yes winbind cache time = 36
[gX:~] # /usr/local/etc/rc.d/samba restart
root@gX:~# /etc/init.d/bind9 restart root@gX:~# /etc/init.d/winbind restart
gX# ntlm_auth --username=uX password: NT_STATUS_OK: Success (0x0) gX# wbinfo -u ... gX# wbinfo -g ...
gX# cat /etc/nsswitch.conf … group: files winbind passwd: files winbind shadow: files winbind # for linux only … gX# wbinfo -n uX gX# wbinfo -S … gX# id uX gX# chown -R uX:'domain users' /home/uX
[gX:~] # cat /etc/pam.d/sshd ... auth sufficient /usr/local/lib/pam_winbind.so auth required pam_unix.so no_warn try_first_pass
root@g15:~# apt-get install libpam-modules
root@gX:~# more /etc/pam.d/sshd ... auth sufficient pam_winbind.so # Standard Un*x authentication. ...