Samba4 wbinfo -i output

steve steve at steve-ss.com
Sun May 6 01:06:34 MDT 2012 

On 05/06/2012 08:39 AM, Gémes Géza wrote:
> On 2012-05-06 07:29, steve wrote:
>> Hi
>> 4.0.0alpha21-GIT-16a24dc
>>
>> We have user rfc2307 objects and attributes stored along with the user
>> and group DN in the directory.
>>
>> getent passwd works:
>> getent passwd steve2
>> steve2:*:3000011:20513:steve2:/home2/CACTUS/staff/steve2:/bin/bash
>> and
>> getent group "Domain Users"
>> Domain Users:*:20513:
>>
>> but wbinfo doesn't:
>>   wbinfo -i steve2
>> CACTUS\steve2:*:3000011:100::/home/CACTUS/steve2:/bin/false
>>
>> Until recent builds, it gave the same as getent for the
>> uidNumber:gidNumber pair but now it always gives 100. (but never
>> unixHomeDirectory)
>>
>> 1. Has this changed recently?
>> 2. Is there a possibility (if we switch to using winbind) for storing
>> user home directories in places other than /home/WORKGROUP/user.
>>
>> Cheers,
>> Steve
>>
> Hi Steve,
>
> Some missing detail:
>
> 1. your /etc/nsswitch.conf
> 2. version of your winbind and wbinfo (from samba4 or samba3)?
>
> Samba4 winbind is known not to honor rfc2307 attributes yet, it will be
> likely sorted out when integration of s3fs will be completed (together
> with winbind3).
>
>
> Regards
>
> geza
Hi Geza

The format of /private/idmap.ldb changed recently so I think the change 
in output is due to that. It doesn't affect us as we are happy with 
storing rfc2307 in the directory but we are still interested in giving 
winbind a go when it becomes available. We'd be interested to know if 
winbind can cope with home directories according to unixHomeDirectory 
rather than everyone under /home/DOMAIN.

Cheers,
Steve

  cat /etc/nsswitch.conf
# /etc/nsswitch.conf
#
# Example configuration of GNU Name Service Switch functionality.
# If you have the `glibc-doc-reference' and `info' packages installed, try:
# `info libc "Name Service Switch"' for information about this file.

passwd:         compat ldap
group:          compat ldap
shadow:         compat

hosts:          files mdns4_minimal [NOTFOUND=return] dns mdns4
networks:       files

protocols:      db files
services:       db files
ethers:         db files
rpc:            db files

netgroup:       nis

To make sure it's the wbinfo from S4:
/usr/local/samba/bin/wbinfo -i steve2
CACTUS\steve2:*:3000011:100::/home/CACTUS/steve2:/bin/false

getent passwd steve2
steve2:*:3000011:20513:steve2:/home2/CACTUS/staff/steve2:/bin/bash

Here is the DN:
dn: CN=steve2,CN=Users,DC=polop,DC=site
cn: steve2
instanceType: 4
whenCreated: 20120505174235.0Z
uSNCreated: 3735
name: steve2
objectGUID: 70cea1cc-2d1a-4301-b80d-695244824f8d
badPwdCount: 0
codePage: 0
countryCode: 0
badPasswordTime: 0
lastLogoff: 0
lastLogon: 0
primaryGroupID: 513
objectSid: S-1-5-21-216190789-1528428426-2244757706-1107
accountExpires: 9223372036854775807
logonCount: 0
sAMAccountName: steve2
sAMAccountType: 805306368
userPrincipalName: steve2 at polop.site
objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=polop,DC=site
pwdLastSet: 129807133550000000
userAccountControl: 512
uidNumber: 3000011
gidNumber: 20513
loginShell: /bin/bash
objectClass: top
objectClass: posixAccount
objectClass: person
objectClass: organizationalPerson
objectClass: user
profilePath: \\sam4dc\profiles\steve2
homeDrive: Z:
memberOf: CN=staff,CN=Users,DC=polop,DC=site
unixHomeDirectory: /home2/CACTUS/staff/steve2
homeDirectory: \\sam4dc\staff\steve2
whenChanged: 20120505175114.0Z
uSNChanged: 3746
distinguishedName: CN=steve2,CN=Users,DC=polop,DC=site

More information about the samba-technical mailing list