[Samba] Winbind UID/GID mismatch!!

Stefanos Karasavvidis sk at isc.tuc.gr
Wed Aug 24 09:58:02 GMT 2005 

basicallt you need something like this in your smb.conf
idmap backend = idmap_rid:DOMAIN_NAME=1000-100000000
idmap uid = 1000-100000000
idmap gid = 1000-100000000

make sure to delete the tdb database before you start. e.g.
rm /var/lib/samba/winbindd_idmap.tdb

Stefanos
Ross McInnes wrote:
>  
> Hi the list.
> 
> Ive read through
> http://us3.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html and
> think the idmap_rid way is easy/best for me atm.
> But it fails to mention exactly how. Ive put the various bits needed in the
> smb.conf etc wbinfo -u works fine, getent passwd username doesn’t work tho.
> 
> Googling for more info I then find
> http://lists.samba.org/archive/samba/2005-January/099451.html , which
> basically says I need to configure idmap_rid (no mention in the howto) so im
> left thinking which is correct. I reinstall samba using a new ../configure
> line. (./configure --prefix=/usr/local/samba --with-shared-modules=idmap_rid
> --with-ldap --with-ads --with-krb5 --with-pam --with-winbindd)
> 
> All compiled/installed ok, getent passwd username still doesn’t work :/
> 
> Nothing untoward in anylogs.
> 
> Is it a case of this is working? Is there an easy way to check?
> 
> Many thanks
> 
> Ross
> 
> 
> -----Original Message-----
> From: samba-bounces+sysrm=stvincent.ac.uk at lists.samba.org
> [mailto:samba-bounces+sysrm=stvincent.ac.uk at lists.samba.org] On Behalf Of
> Ross McInnes
> Sent: 23 August 2005 17:28
> To: samba at lists.samba.org
> Subject: RE: [Samba] Winbind UID/GID mismatch!!
> 
> In a word... "O" :/
> 
> I did read that doc before, and didn’t think it would need to apply to me.
> 
> The problem I have is that the email and file store servers are separate,
> but by using NFS I am able to over come the issue of "local folders"
> 
> It was whilst diagnosing a problem I found out about the id mis map :/
> 
> Any perticular preference on which method I need to use? Which is
> better/easier to use/maintain?
> 
> Many thanks
> 
> Ross
> 
> -----Original Message-----
> From: Guenther Deschner [mailto:gd at samba.org]
> Sent: 23 August 2005 16:35
> To: Ross McInnes
> Cc: samba at lists.samba.org
> Subject: Re: [Samba] Winbind UID/GID mismatch!!
> 
> Hi Ross,
> 
> On Tue, Aug 23, 2005 at 03:29:20PM +0100, Ross McInnes wrote:
> 
>>Hi the list (again)
>>
>>Got a pretty major issue now
>>
>>Did the samba link to AD on a couple of redhat es3 servers using samba 
>>3.0.14a Everything seems ok
>>
>>Except when I do a getent passwd username
>>
>>Server 3
>> getent passwd ross
>>ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false
>>
>>Server 2
>>getent passwd ross
>>ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false
>>
>>Server 1
>>getent passwd ross
>>ross:x:10195:10000:ross:/home/ACADEMIC/ross:/bin/false
>>
>>Er... Why does server 1 have username ross as uid 10195?! :)
> 
> 
> The idmap-mapping (as stored in your local tdbs) assignes uids and gids in
> the order they were requested on your system.
> 
> If you want to have unified mapping on all your servers then you must use
> one of the idmap-modules described here:
> 
> http://us3.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html
> 
> Guenther

-- 
======================================================================
Stefanos Karasavvidis
Electronic & Computer Engineer, M.Eng.
e-mail : sk at isc.tuc.gr

Technical University of Crete, Campus
Information Systems Center
Address: Akrotiri, Chania, 73100
Tel.: Library Buildings
       (+30) 28210 37352, (+30) 28210 37355, (+30) 28210 37376
       Environmental Engineering Buildings
       (+30) 28210 37766
Fax:  (+30) 28210 37571

More information about the samba mailing list