[Samba] help with AD integration
Ben George
bentech4you at gmail.com
Mon Oct 4 07:19:26 MDT 2010
i tried to telnet to sun1(unix) machine..but login failed.
i tried benvin user on AD..not ben
/var/samba/log
[2010/10/04 15:24:06, 6] nsswitch/winbindd.c:(641)
accepted socket 23
[2010/10/04 15:24:06, 10] nsswitch/winbindd.c:(326)
process_request: request fn INTERFACE_VERSION
[2010/10/04 15:24:06, 3] nsswitch/winbindd_misc.c:(491)
[ 5806]: request interface version
[2010/10/04 15:24:06, 10] nsswitch/winbindd.c:(326)
process_request: request fn WINBINDD_PRIV_PIPE_DIR
[2010/10/04 15:24:06, 3] nsswitch/winbindd_misc.c:(524)
[ 5806]: request location of privileged pipe
[2010/10/04 15:24:06, 6] nsswitch/winbindd.c:(641)
accepted socket 31
[2010/10/04 15:24:06, 10] nsswitch/winbindd.c:(326)
process_request: request fn GETGROUPS
[2010/10/04 15:24:06, 3] nsswitch/winbindd_group.c:(1273)
[ 5806]: getgroups root
[2010/10/04 15:24:06, 5] nsswitch/winbindd_group.c:(1292)
Could not parse domain user: root
[2010/10/04 15:24:06, 10] lib/events.c:(131)
Added timed event "async_request_timeout": 2f11e0
[2010/10/04 15:24:06, 10] lib/events.c:(299)
timed_events_timeout: 299/999906
[2010/10/04 15:24:06, 10] lib/events.c:(66)
Destroying timed event 2f11e0 "async_request_timeout"
[2010/10/04 15:24:06, 10] nsswitch/winbindd_cache.c:(2307)
Retrieving response for pid 4252
[2010/10/04 15:24:06, 5] nsswitch/winbindd_async.c:(1303)
Could not find domain from SID S-1-22-1-0
------------------------------------------------------
[2010/10/04 15:24:37, 6] nsswitch/winbindd.c:(641)
accepted socket 23
[2010/10/04 15:24:37, 10] nsswitch/winbindd.c:(326)
process_request: request fn INTERFACE_VERSION
[2010/10/04 15:24:37, 3] nsswitch/winbindd_misc.c:(491)
[ 5809]: request interface version
[2010/10/04 15:24:37, 10] nsswitch/winbindd.c:(326)
process_request: request fn WINBINDD_PRIV_PIPE_DIR
[2010/10/04 15:24:37, 3] nsswitch/winbindd_misc.c:(524)
[ 5809]: request location of privileged pipe
[2010/10/04 15:24:37, 6] nsswitch/winbindd.c:(641)
accepted socket 31
[2010/10/04 15:24:37, 10] nsswitch/winbindd.c:(326)
process_request: request fn GETPWNAM
[2010/10/04 15:24:37, 3] nsswitch/winbindd_user.c:(346)
[ 5809]: getpwnam benvin
[2010/10/04 15:24:37, 5] nsswitch/winbindd_user.c:(353)
Could not parse domain user: benvin
[2010/10/04 15:24:37, 10] nsswitch/winbindd.c:(326)
process_request: request fn GETPWNAM
[2010/10/04 15:24:37, 3] nsswitch/winbindd_user.c:(346)
[ 5809]: getpwnam benvin
[2010/10/04 15:24:37, 5] nsswitch/winbindd_user.c:(353)
Could not parse domain user: benvin
[2010/10/04 15:24:37, 10] nsswitch/winbindd.c:(326)
process_request: request fn GETPWNAM
[2010/10/04 15:24:37, 3] nsswitch/winbindd_user.c:(346)
[ 5809]: getpwnam benvin
[2010/10/04 15:24:37, 5] nsswitch/winbindd_user.c:(353)
Could not parse domain user: benvin
i didn't understand anything from this log
On Mon, Oct 4, 2010 at 4:11 PM, Gaiseric Vandal
<gaiseric.vandal at gmail.com>wrote:
> According to your page
>
> "getent passwd" is showing the domain users.
>
>
> If you try to ssh into your linux machine as "ben", with the way
> nsswitch.conf is configured, it will try to authenticated you as the "ben"
> in /etc/passwd not the one in the AD domain.
>
> I suggest you try the following
> comment out "ben" from /etc/passwd and /etc/shadow.
>
> Make sure that the /export/Home/ben directory is owned by the SRE+ben user.
> See if you can ssh into linux as "ben." (I think you can specify "ben"
> and not "SRE+ben" for the ssh user.) Keep an eye on the log files e.g in
> /var/samba/log or /var/log/samba.
>
> You have still not clarified why nsswitch.conf has entries for ldap.
>
>
>
More information about the samba
mailing list