Winbind / AIX 5.3 returns incomplete user informations
Jérôme Oufella
jerome.oufella at savoirfairelinux.com
Mon Nov 26 17:18:20 GMT 2007
Hi,
We are facing a problem on AIX 5.3 (latest patch) where the following
behavior happens. Reproduced with versions of samba from 3.0.23 to
3.0.26a.
# Normal behavior :
# id and id username should return the same info
#
root at srv1:/# id
uid=0(root) gid=0(system)
groups=2(bin),3(sys),7(security),8(cron),10(audit),11(lp)
root at srv1:/# id root
uid=0(root) gid=0(system)
groups=2(bin),3(sys),7(security),8(cron),10(audit),11(lp)
# Now let's su to a winbind user :
root at srv1:/# su winuser1
# Running id only returns the users principal group.
# this also affects file ownership checks in smbd, which is our main
problem.
winuser1 at srv1:/# id
uid=10013(winuser1) gid=10002(domain users)
# while id <user> returns the full list :
winuser1 at srv1:/$ id winuser1
uid=10013(winuser1) gid=10002(domain users)
groups=10283(lint-lecsysteme-gpic-inventaire),10277(lint-lecsysteme),10224(lint-lec
ysteme-imax),10186(lint-lecsysteme-gpic),10162(lint-lecsysteme-txtele),10132(gint-app-lecinstructdocfisc),10119(gint-prd-lecs
steme-txtele),10118(gint-dev-lecconstatsinfractions),10819(gsamba),10106(gint-prd-lecsysteme),10101(gint-prd-lecresshum-abonn
bus),10094(gint-prd-lecsysteme-gpic),10090(gint-prd-lecsysteme-imax),10084(gint-prd-lecdgpar-interne),10083(gint-app-lecproji
pact),10077(gint-app-lecdgpar-bd),10063(gint-prd-lecdgpar),10050(gint-prd-lecsysteme-gpic-inventaire),10048(gint-prd-lecsonda
e-rev_loi-reg),10047(gint-prd-lecdgppb),10046(gint-app-lecdgpar),10039(rdgppb-utilisateursbd),10037(gint-prd-lecdgppb-bd),100
8(gint-prd-lectelecommunication),10016(gint-prd-lecinfojuridique),10006(gint-prd-lecdgpar-bd),10001(BUILTIN\users)
# lsuser also returns the "normal/full" list, as the previous command.
Is there anyone having success with winbind on this system /release ?
Regards,
Jerome
More information about the samba-technical
mailing list