[Samba] winbind issues (domain user attempting session with samba)

Thu Sep 4 00:56:02 GMT 2003

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Do you have winbind running correctly?

These commands should all work if everything is set up right:

wbinfo -u (shows all users)
wbinfo -g (shows all groups)
getent passwd (shows that nsswitch is working, should show UNIX & NT
users in an /etc/passwd format)

wbinfo -a user%password (should auth correctly)

You may need to set the auth user if Restrict Anonymous is set to 1:

Samba 2.2.X

wbinfo -AAdministrator%password

Samba 3.0

wbinfo --set-auth-user Adminstrator%password

Hope this helps. (PS: There is a bug in Beta3 and before that will cause
a user to be unable to access a share if he is a member of too many
groups. I'd recommend Samba 3.0rc2).

- -Tom

Preston.Newton at txucom.com wrote:
| I know I am answering my own questions...so here i go again...it appears
| the more I look at this that the problem is occurring within the line
|
| [2003/09/03 20:37:09, 3] auth/auth_sam.c:check_sam_security(438)
| Couldn't find user 'citrix' in passdb file.
|
| I have been looking to this and it apparently deals with the passdb
backend
| somehow...I can only find items relating to ldap and smbpasswd, but I am
| attempting to use a SAM database from the current NT domain.  Any advice
| would be appreciated...also here is a copy of my smb.conf
file....forgot it
| earlier
|
| SMB.CONF
|
| # Samba config file created using SWAT
| # from 10.1.50.24 (10.1.50.24)
| # Date: 2003/09/03 21:12:59
|
| # Global parameters
| [global]
|         workgroup = LCC
|         server string = Andromeda Samba Server
|         security = DOMAIN
|         password server = PDC BDC
|         log level = 3
|         log file = /usr/local/samba/var/log.%m
|         max log size = 50
|         dns proxy = No
|         wins server = 10.1.33.7, 10.0.60.252
|         ldap ssl = no
|         idmap uid = 10000-20000
|         idmap gid = 10000-20000
|         winbind uid = 10000-20000
|         winbind gid = 10000-20000
|         template homedir = /tmp/%D/%U
|         template shell = /bin/bash
|         winbind separator = +
|         hosts allow = 127., 10.1., 10.0.
|
| [homes]
|         comment = Home Directories
|         read only = No
|         browseable = No
|
| [cdrom]
|         comment = CDROM
|         path = /mnt/cdrom
|         guest ok = Yes
|         root preexec = /bin/mount /mnt/cdrom
|         root postexec = /bin/umount /mnt/cdrom
|
| [images]
|         comment = CD Images
|         path = /opt/images
|         valid users = pnewton
|         guest ok = Yes
|
| [src]
|         comment = SRC Directory
|         path = /usr/local/src
|         valid users = pnewton
|         read only = No
|
| [printers]
|         comment = All Printers
|         path = /usr/spool/samba
|         printable = Yes
|         browseable = No
|
| Thanks,
| Preston
|
|
|
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE/Vo2iRliD/69byygRAnpCAJ9AABGeshwag9pZwH3XYha78wu5sgCfVqkL
/IEnOzeu+CZknmNUjWsEqv8=
=yADs
-----END PGP SIGNATURE-----