Samba+winbind - some clarification needed on acciount used to bind to AD
Have a question regarding joining linux to AD via samba+winbind.
Do i need to enter credentials with administrative privileges on AD domain to join linux workstation?
And as far as i know, winbind uses this account to get user, group names from domain. What happens if i change that user's password?
Is there any possibility that user password could be "extracted" or somehow altered?
Thanks in advance.
How far have you got so far with your preparation for the domain join?
You would need to install samba and winbind (if it's not already there), then set up /etc/smb.conf appropriately (so that it knows what the domain is). Then, yes - you'd need an account with appropriate admin privileges for the linux workstation to join the domain.
The command would likely be:
net ads join -U <appropriateAdminAccount>
Actually already joined workstation to domain.
The question is about binding via AD user : if i change reset password of a user that joined workstation to domain, what will happen? How will winbind enumerate user/groups from AD?
|All times are GMT -5. The time now is 11:19 PM.|