Gray Race

Asked: 2011-08-26 14:56:37 +0800 CST2011-08-26 14:56:37 +0800 CST 2011-08-26 14:56:37 +0800 CST

Configure winbind to check multiple attributes in AD?

I have winbind up and running and it is working well for authentication.

When a user is prompted at logon to provide credentials what AD attribute is username checked against? Is it name? sAMAccountName? CN?

The follow-up to this is can I make a change to winbind either via authconfig or smb.conf to allow two possible matches? E.g., I want to have user be able to provide at logon either ID number (currently working) and/or email username (attribute is mailnickname in AD)

EDIT: Is this not possible?

1 Answers

Voted

84104
2011-08-27T19:20:44+08:002011-08-27T19:20:44+08:00
Active Directory stores this information in LDAP accessible databases.
LDAP query filter "(|(idnumber=%s)(mailnickname =%s))".
Unknown if Samba/Winbind allow use of RFC2254 query filters.
1

Configure winbind to check multiple attributes in AD?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?