Hello, We are a group of software developers at macmon secure in Berlin (Germany). We have the following request as an extension of the current SAMBA server: To perform authentications against several Active Directories(AD) simultaneously via ntlm_auth, an extension of the winbind service is required. This was achieved by us for a test by making changes to the Samba source code. With this change we made, a separate Samba configuration file can be created for each connected AD and a separate instance of the winbind service can be started. Is it possible to make such a customization in the original Samba source code? If so, in what time frame would such an extension be available? If desired, a corresponding patch with the changes could be made available for review. Kind regards Peter Friede
It will be easier if you show the proposed patch. It should include tests, with the patches broken down into small logical steps that leave things in a working state along the way. My guess is that would raise your chances from zero to maybe. After that you will need to explain the use case. If it gets accepted into master, the time to a release is around 3-9 months (6 monthly releases, ~3 months freeze for new features). The discussion might be better on the Samba Technical list https://lists.samba.org/mailman/listinfo/samba-technical When the patches are ready, they will need to come through gitlab merge requests. I'm not a winbind expert so it won't be me reviewing. This is just general advice. Thanks for offering to improve Samba.
(In reply to Peter.Friede from comment #0) > This was achieved by us for a test by making changes to the Samba source code. I have a question: did it mean even followed this wiki guideline, some changes to samba source code are still required to make 'authetication against multiple AD with ntlm_auth' work? Thank you :) https://wiki.samba.org/index.php/Multiple_Server_Instances