[OpenIndiana-discuss] ActiveDirectory UID mapping (netatalk)
Günther Alka
alka at hfg-gmuend.de
Mon Aug 13 17:11:52 UTC 2012
with SAMBA and winbind you may loose:
- snaps via Windows previous version
- Windows compatible ntfs4 ACL (only Posix ACL ?)
- SMB as a ZFS property
- interoperability with NFS4
- movable pools that keep ACL intact
- performance, kernel based CIFS server is mostly faster
- CIFS is managed by Illumos, not a third party product that cares mostly about Linux
- napp-it integration
From Windows and interoperability view CIFS is much better.
A minimal solution may be using at least the UID/GID provided by idmap for
already created AD users, optionally add a SID->UID/GID entry in this database.
In this case, you do not write proper ACL but use at least the same UID/GID like CIFS
I have not tried if CIFS is using the proper SID via idmap when there is only a UID/GID entry in files.
Am 13.08.2012 um 12:24 schrieb James Relph:
>> I would say, OpenIndiana/ Solaris (as a fileserver) is useless without its Windows compatible
>> Snap, ACL and CIFS features. These are the killer arguments to use OI/ Solaris widely - the most compatible
>> Windows-server on Unix.
>
> I think the only thing you're missing moving to SAMBA+winbindd is the VSS integration? The snapshots are still there and all the other ZFS features, you just lose the right-click - restore previous versions option (which most enterprises seem to disable for clients anyway).
>
> James.
>
>
>
> _______________________________________________
> OpenIndiana-discuss mailing list
> OpenIndiana-discuss at openindiana.org
> http://openindiana.org/mailman/listinfo/openindiana-discuss
More information about the OpenIndiana-discuss
mailing list