source: trunk/server/docs/manpages/winbindd.8@ 596

Last change on this file since 596 was 596, checked in by Herwig Bauernfeind, 14 years ago

Samba 3.5: Update trunk to 3.5.8
File size: 16.1 KB
Line 
1'\" t
2.\" Title: winbindd
3.\" Author: [see the "AUTHOR" section]
4.\" Generator: DocBook XSL Stylesheets v1.75.2 <http://docbook.sf.net/>
5.\" Date: 03/06/2011
6.\" Manual: System Administration tools
7.\" Source: Samba 3.5
8.\" Language: English
9.\"
10.TH "WINBINDD" "8" "03/06/2011" "Samba 3\&.5" "System Administration tools"
11.\" -----------------------------------------------------------------
12.\" * set default formatting
13.\" -----------------------------------------------------------------
14.\" disable hyphenation
15.nh
16.\" disable justification (adjust text to left margin only)
17.ad l
18.\" -----------------------------------------------------------------
19.\" * MAIN CONTENT STARTS HERE *
20.\" -----------------------------------------------------------------
21.SH "NAME"
22winbindd \- Name Service Switch daemon for resolving names from NT servers
23.SH "SYNOPSIS"
24.HP \w'\ 'u
25winbindd [\-D] [\-F] [\-S] [\-i] [\-Y] [\-d\ <debug\ level>] [\-s\ <smb\ config\ file>] [\-n]
26.SH "DESCRIPTION"
27.PP
28This program is part of the
29\fBsamba\fR(7)
30suite\&.
31.PP
32winbindd
33is a daemon that provides a number of services to the Name Service Switch capability found in most modern C libraries, to arbitrary applications via PAM and
34ntlm_auth
35and to Samba itself\&.
36.PP
37Even if winbind is not used for nsswitch, it still provides a service to
38smbd,
39ntlm_auth
40and the
41pam_winbind\&.so
42PAM module, by managing connections to domain controllers\&. In this configuraiton the
43\m[blue]\fBidmap uid\fR\m[]
44and
45\m[blue]\fBidmap gid\fR\m[]
46parameters are not required\&. (This is known as `netlogon proxy only mode\'\&.)
47.PP
48The Name Service Switch allows user and system information to be obtained from different databases services such as NIS or DNS\&. The exact behaviour can be configured through the
49/etc/nsswitch\&.conf
50file\&. Users and groups are allocated as they are resolved to a range of user and group ids specified by the administrator of the Samba system\&.
51.PP
52The service provided by
53winbindd
54is called `winbind\' and can be used to resolve user and group information from a Windows NT server\&. The service can also provide authentication services via an associated PAM module\&.
55.PP
56The
57pam_winbind
58module supports the
59\fIauth\fR,
60\fIaccount\fR
61and
62\fIpassword\fR
63module\-types\&. It should be noted that the
64\fIaccount\fR
65module simply performs a getpwnam() to verify that the system can obtain a uid for the user, as the domain controller has already performed access control\&. If the
66libnss_winbind
67library has been correctly installed, or an alternate source of names configured, this should always succeed\&.
68.PP
69The following nsswitch databases are implemented by the winbindd service:
70.PP
71hosts
72.RS 4
73This feature is only available on IRIX\&. User information traditionally stored in the
74hosts(5)
75file and used by
76gethostbyname(3)
77functions\&. Names are resolved through the WINS server or by broadcast\&.
78.RE
79.PP
80passwd
81.RS 4
82User information traditionally stored in the
83passwd(5)
84file and used by
85getpwent(3)
86functions\&.
87.RE
88.PP
89group
90.RS 4
91Group information traditionally stored in the
92group(5)
93file and used by
94getgrent(3)
95functions\&.
96.RE