Samba 4.3.13 logon oddity on Solaris 10

Rowland Penny rpenny at
Tue Jun 19 10:04:40 UTC 2018

On Tue, 19 Jun 2018 11:12:11 +0200
Bernd Markgraf via samba-technical <samba-technical at>

> Hi,
> I just finished building Samba 4.3.13 on a Solaris 10 box and
> successfully joined it to a domain. DC is Samba 4.3.13 on FreeBSD.
> The OS itself uses LDAP+Kerberos to authenticate users on the Unix
> level and that works just fine.

Why are you using LDAP for authentication on a Unix domain member ?

you are half way to using the winbind 'ad' backend in your smb.conf,
try adding these lines:

    idmap config *:backend = tdb
    idmap config *:range = 3000-7999

And change /etc/nsswitch.conf by replacing 'ldap' with 'winbind' on the
'passwd' & 'group' lines.


More information about the samba-technical mailing list