Migrating users with the adbindproxy perl script
If winbind is not currently configured in your /etc/nsswitch.conf file, follow the steps below after you’ve installed the adbindproxy package.
This script gets the UID andGID files from Samba. You then import them into Active Directory.
To migrate UNIX user profiles to Active Directory using the adbindproxy.pl script:
- Identify the Samba servers you want to update to integrate with authentication, privilege elevation, and audit and monitoring services.
- On each of the Samba servers to be updated, locate the winbindd_idmap.tdb file and create a backup copy of the file.
To locate the winbindd_idmap.tdb file, you can run a command similar to the following to view details about the Samba build:
/CurrentSambaBInaryPath/smbd -b |grep -i lockdir
In the output, you should see a line similar to the following that indicates the location of the winbind_idmap.tdb file:
Make a backup copy of the winbindd_idmap.tdb file.
cp /var/lib/samba/winbind_idmap.tdb /tmp/winbind_idmap.tdb.pre_adbindproxybackup
Run the adbindproxy.pl script with the following options to generate the export files.
See Using adbindproxy.pl for details about the command-line parameters for adbindproxy.pl.
- Move the exported files to a computer where you have installed the Access Manager console.
For more information on importing existing user and group information and mapping information to Active Directory, see the “Importing existing users and groups” chapter in the Administrator’s Guide for Linux and UNIX.