請教samba3.4中「map untrusted to domain」參數的用法
呵呵,首先不是很明白這個參數的意思,
我在smb.conf中加入「map untrusted to domain = No」或者不加的時候,啟動,使用都是正常的,
但是我如果改成「map untrusted to domain = Yes」的話,就啟動不了了。
誰能指點一下啊,這個參數到底幹嘛用的?只加這個參數就可以了,還是需要其他的參數?
看了一下關於這個參數的說明,如下:
Previously, when Samba was a domain member and a client was connecting using an
untrusted domain name, such as BOGUS\user smbd would remap the untrusted
domain to the primary domain smbd was a member of and attempt authentication
using that DOMAIN\user name. This differed from how a Windows member server
would behave. Now, smbd will replace the BOGUS name with it's SAM name. In
the case where smbd is acting as a PDC this will be DOMAIN\user. In the case
where smbd is acting as a domain member server this will be WORKSTATION\user.
Thus, smbd will never assume that an incoming user name which is not qualified
with the same primary domain, is part of smbd's primary domain.
While this behavior matches Windows, it may break some workflows which depended
on smbd to always pass through bogus names to the DC for verification. A new
parameter "map untrusted to domain" can be enabled to revert to the legacy
behavior.
來自http://samba.org/samba/history/samba-3.4.0.html
不是很明白,往指點。
《解決方案》
沒人知道么,自己頂一個
《解決方案》
map untrusted to domain = Yes
smbd會重新映射來路不明域名客戶端連接訪問
