So, was told a RHEL IPA client (leveraging sssd) could not also be a Samba server (leveraging winbindd) because sssd and winbindd collide in terms of the Kerberos bindings. Our IPA servers are configured in "compat" mode in expectation of having to support a few Solaris systems. Could I configured this RHEL IPA client to instead use LDAP via the compat method and still be able to be a Samba server?
Amos
On ti, 21 tammi 2020, Amos via FreeIPA-users wrote:
So, was told a RHEL IPA client (leveraging sssd) could not also be a Samba server (leveraging winbindd) because sssd and winbindd collide in terms of the Kerberos bindings. Our IPA servers are configured in "compat" mode in expectation of having to support a few Solaris systems. Could I configured this RHEL IPA client to instead use LDAP via the compat method and still be able to be a Samba server?
You should be using RHEL 8.1+ (RHEL 8.2 beta was released today). FreeIPA in RHEL 8.1+ introduces a support for Samba domain member on IPA client enrolled into an IPA deployment where at least IPA trust controllers run RHEL 8.1+.
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/htm...
freeipa-users@lists.fedorahosted.org
-
Alexander Bokovoy -
Amos