Samba user discussion

headers Patrick Rynhart | 1 Jan 2008 02:02

I have an existing PDC which I am attempting to move across to a new
server.  On the new server, I'm having trouble with idmap (using an LDAP
backend) and trusted domains.  The smb.conf file is the same on both
servers.  My idmap & winbind parameters are as follows:

ldap idmap suffix = ou=idmap
idmap backend = ldap:ldap://127.0.0.1
idmap uid = 10000-29000
idmap gid = 10000-29000
winbind use default domain = yes
winbind enum users = yes
winbind enum groups = yes

On the new box, 'wbinfo -t' suceeds and I can list users and groups on
the foreign domain using 'wbinfo -u' and 'wbinfo -g'.  'net rpc trustdom
list' lists the trusted domain.

Comparing the winbind debug logs of the existing and new PDC, I have
discovered that the cruical difference appears to be the following line
(which is missing on the new PDC)

"SID S-1-5-21-15318837-110984162-118601546-6958 is being handled by
default domain"

On the new server I get:
------------------------

[ 3008]: lookupsid S-1-5-21-15318837-110984162-118601546-6958
refresh_sequence_number: IIST time ok
refresh_sequence_number: IIST seq number is now 60700

Mon	Tue	Wed	Thu	Fri	Sat	Sun

	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30	31

338	June 2013
598	May 2013
555	April 2013
529	March 2013
627	February 2013
542	January 2013
476	December 2012
345	November 2012
511	October 2012
321	September 2012
487	August 2012
416	July 2012
340	June 2012
531	May 2012
378	April 2012
371	March 2012
402	February 2012
458	January 2012
364	December 2011
444	November 2011
386	October 2011
343	September 2011
449	August 2011
363	July 2011
448	June 2011
326	May 2011
389	April 2011
610	March 2011
526	February 2011
584	January 2011
459	December 2010
471	November 2010
544	October 2010
501	September 2010
454	August 2010
609	July 2010
646	June 2010
748	May 2010
637	April 2010
726	March 2010
554	February 2010
644	January 2010
544	December 2009
625	November 2009
734	October 2009
606	September 2009
606	August 2009
695	July 2009
432	June 2009
510	May 2009
453	April 2009
762	March 2009
472	February 2009
573	January 2009
501	December 2008
584	November 2008
723	October 2008
554	September 2008
803	August 2008
758	July 2008
728	June 2008
705	May 2008
742	April 2008
643	March 2008
847	February 2008
781	January 2008
583	December 2007
663	November 2007
636	October 2007
578	September 2007
707	August 2007
659	July 2007
911	June 2007
1030	May 2007
738	April 2007
776	March 2007
970	February 2007
886	January 2007
634	December 2006
810	November 2006
789	October 2006
1067	September 2006
1202	August 2006
1296	July 2006
856	June 2006
974	May 2006
832	April 2006
1240	March 2006
1236	February 2006
1367	January 2006
1106	December 2005
1392	November 2005
1570	October 2005
1337	September 2005
1304	August 2005
1256	July 2005
1376	June 2005
1531	May 2005
1687	April 2005
1857	March 2005
1557	February 2005
1629	January 2005
1327	December 2004
1347	November 2004
1495	October 2004
1937	September 2004
1430	August 2004
1728	July 2004
1565	June 2004
1662	May 2004
1479	April 2004
1932	March 2004
1903	February 2004
1901	January 2004
1663	December 2003
1958	November 2003
2089	October 2003
1710	September 2003
1650	August 2003
1661	July 2003
1822	June 2003
1699	May 2003
1561	April 2003
1903	March 2003
1830	February 2003
2024	January 2003
1614	December 2002
2127	November 2002
2403	October 2002
1814	September 2002
1837	August 2002
1789	July 2002
1919	June 2002
82	May 2002
1	January 2002
1	November 2001
1	August 2001
1	July 2001
1	February 2001
1	January 2001
2	July 2000
4	January 2000
1	December 1999
1	February 1997
1	January 1980

idmap_nss: Default domain not being used

Upgrade from SLES9 3.0.20 to 3.0.26a breaks getent

Problem with samba and ldap

pdbmysql

Re: Driver installation fails on samba server - SOLVED

Re: password

Re: SLow cups printing, lots of get-printer-attributes

Re: Upgrade from SLES9 3.0.20 to 3.0.26a breaks getent

Re: print command is ignored after upgrade

Re: Problem with samba and ldap