[Samba] Windows clients disconnect periodically

Rowland Penny rpenny at samba.org
Thu Jun 8 15:43:23 UTC 2023 


On 08/06/2023 16:30, sambalsauce1 via samba wrote:
> On Thursday, June 8th, 2023 at 6:36 AM, Rowland Penny via samba wrote:
> 
>> How are you running Samba ?
>> Is it domain joined or a standalone server ?
> 
>> Posting your smb.conf will help.
> 
> Samba is domain joined with CentrifyDC-5.9.1 Server Suite. The below is the smb.conf file:

I suggest you go and ask centrify, that is what appears to be doing your 
idmapping, I would have expected lines like these;
	idmap config DOMAIN : backend = rid
	idmap config DOMAIN : range = 90001-1000000

It might be an idea to consider upgrading.

Rowland

> 
> [global]
>      security = ADS
>      realm = domain.site
>      workgroup = domain
>      netbios name = samba
> 
>      template homedir = /home/%u
>      template shell = /bin/bash
> 
>      strict allocate = no
>      strict locking = no
>      posix locking = no
>      read raw = Yes
>      write raw = Yes
>      socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=131072 SO_SNDBUF=131072
>      aio read size = 16384
>      aio write size = 16384
> 
>      auth methods = guest, sam, winbind, ntdomain
> 
>      machine password timeout = 0
>      passdb backend = tdbsam:/etc/samba/private/passdb.tdb
>      kerberos method = secrets and keytab
> 
>      server signing = auto
> 
>      client signing = auto
>      client use spnego principal = true
>      client ntlmv2 auth = yes
>      client use spnego = yes
> 
>      min protocol = SMB3
> 
>      winbind enum users = Yes
>      winbind enum groups = Yes
> 
>      winbind use default domain = Yes
>      winbind nested groups = Yes
>      winbind rpc only = Yes
>      winbind offline logon = false
> 
>      idmap cache time = 0
>      idmap config * : backend  = tdb
>      idmap config * : range = 10000 - 90000    # custom range - nak - 6/27/2014
>      idmap config * : base_tdb = 0
>      enable core files = false
> 
>      syslog = 0
>      log file = /var/log/samba/samba.log
> #    debug level = 0
>      log level = 10
>      max log size = 0
> 
>      invalid users = root deamon bin sys adm nobody mail uucp
> 
> [home]
>      comment = Home directories
>      path = /home
>      read only = No
>      public = yes
>      browseable = No
>      writeable = yes
>      create mask = 0664
>      directory mask = 0775
>      force group = caps
>      follow symlinks = no
> 
> 
> [apps]
>      comment = Linux apps directory
>      path = /apps
>      read only = no
>      guest ok = yes
>      public = yes
>      browseable = no
>      writeable = yes
> 
> [share2]
>      comment = Linux share2 directory
>      path = /share2
>      read only = yes
>      guest ok = yes
>      public = yes
>      browseable = no
>      writeable = yes
> 
> 
> [common]
>      comment = Linux common directory
>      path = /common
>      read only = no
>      guest ok = yes
>      public = yes
>      browseable = no
>      writeable = yes
>      create mask = 0664
>      directory mask = 0775
>      force group = caps
> 
> [share3]
>      comment = Linux share3 directory
>      path = /share3
>      read only = no
>      guest ok = yes
>      public = yes
>      browseable = no
>      writeable = yes
>      create mask = 0664
>      directory mask = 0775
>      force group = caps
> 
> [homes]
>      comment = Home directories
>      read only = No
>      browseable = No
> 
>

More information about the samba mailing list