From 58b37572718ed65d1b143f44de16aa5efb512f11 Mon Sep 17 00:00:00 2001
From: vorlon <vorlon@alioth.debian.org>
Date: Wed, 21 Nov 2007 17:29:21 +0000
Subject: Load samba-3.0.27a into branches/upstream.

git-svn-id: svn://svn.debian.org/svn/pkg-samba/branches/upstream@1583 fc4039ab-9d04-0410-8cac-899223bdd6b0
---
 docs/htmldocs/manpages/idmap_ad.8.html | 41 ++++++++++++++++++++++++++++++++++
 1 file changed, 41 insertions(+)
 create mode 100644 docs/htmldocs/manpages/idmap_ad.8.html

(limited to 'docs/htmldocs/manpages/idmap_ad.8.html')

diff --git a/docs/htmldocs/manpages/idmap_ad.8.html b/docs/htmldocs/manpages/idmap_ad.8.html
new file mode 100644
index 0000000000..92881350b5
--- /dev/null
+++ b/docs/htmldocs/manpages/idmap_ad.8.html
@@ -0,0 +1,41 @@
+<html><head><meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"><title>idmap_ad</title><link rel="stylesheet" href="samba.css" type="text/css"><meta name="generator" content="DocBook XSL Stylesheets V1.71.0"></head><body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF"><div class="refentry" lang="en"><a name="idmap_ad.8"></a><div class="titlepage"></div><div class="refnamediv"><h2>Name</h2><p>idmap_ad &#8212; Samba's idmap_ad Backend for Winbind</p></div><div class="refsynopsisdiv"><h2>DESCRIPTION</h2><p>The idmap_ad plugin provides a way for Winbind to read
+	id mappings from an AD server that uses RFC2307/SFU schema
+	extensions. This module implements only the "idmap"
+	API, and is READONLY. Mappings must be provided in advance
+	by the administrator by adding the posixAccount/posixGroup
+	classess and relative attribute/value pairs to the users and
+	groups objects in AD</p></div><div class="refsect1" lang="en"><a name="id291819"></a><h2>IDMAP OPTIONS</h2><div class="variablelist"><dl><dt><span class="term">range = low - high</span></dt><dd><p>
+			Defines the available matching uid and gid range for which the
+			backend is authoritative. Note that the range acts as a filter.
+			If specified any UID or GID stored in AD that fall outside the
+			range is ignored and the corresponding map is discarded.
+			It is intended as a way to avoid accidental UID/GID overlaps
+			between local and remotely defined IDs.
+		</p></dd><dt><span class="term">schema_mode = &lt;rfc2307 | sfu &gt;</span></dt><dd><p>
+			Defines the schema that idmap_ad should use when querying 
+			Active Directory regarding user and group information.
+			This can either the RFC2307 schema support included
+			in Windows 2003 R2 or the Service for Unix (SFU) schema.
+		</p></dd></dl></div></div><div class="refsect1" lang="en"><a name="id259542"></a><h2>EXAMPLES</h2><p>
+	The following example shows how to retrieve idmappings from our principal and
+	and trusted AD domains. All is needed is to set default to yes. If trusted
+	domains are present id conflicts must be resolved beforehand, there is no
+	guarantee on the order confliting mappings would be resolved at this point.
+
+	This example also shows how to leave a small non conflicting range for local
+	id allocation that may be used in internal backends like BULTIN.
+	</p><pre class="programlisting">
+	[global]
+	idmap domains = ALLDOMAINS
+	idmap config ALLDOMAINS:backend      = ad
+	idmap config ALLDOMAINS:default      = yes
+	idmap config ALLDOMAINS:range        = 10000 - 300000000
+
+	idmap alloc backend = tdb
+	idmap alloc config:range        = 5000 - 9999
+	</pre></div><div class="refsect1" lang="en"><a name="id259562"></a><h2>AUTHOR</h2><p>
+	The original Samba software and related utilities 
+	were created by Andrew Tridgell. Samba is now developed
+	by the Samba Team as an Open Source project similar 
+	to the way the Linux kernel is developed.
+	</p></div></div></body></html>
-- 
cgit v1.2.3