[Samba] Please assist with Winbind issues!

John H. Reinhardt johnhreinhardt at yahoo.com
Wed Oct 9 12:16:01 GMT 2002


Sven,

    Being somewhat of a newbie, I cannot comment on everything that you've 
included here with authority, but I did notice a typographic error in the 
pam_winbind.so line for PAM account checking in your 
"/etc/pam.d/system-auth" file.  It's pointed out below.  Seems like that 
could be the problem since you can authenticate, but just not with the 
correct account.

    John Reinhardt


>Message: 14
>From: SRuth at LANDAM.com
>To: samba at lists.samba.org
>Date: Tue, 8 Oct 2002 17:29:23 -0400
>Subject: [Samba] Please assist with Winbind issues!
>

<<snip>>

>Here is my /etc/pam.d/system-auth
>
>auth        required      /lib/security/pam_env.so
>auth        sufficient    /lib/security/pam_winbind.so
>auth        sufficient    /lib/security/pam_unix.so likeauth nullok 
>use_first_pa
>ss
>auth        required      /lib/security/pam_deny.so
>
>account     sufficient    /lib/secutiry/pam_winbind.so

                                     ^^^ <== Typo here...

>account     required      /lib/security/pam_unix.so
>
>password    required      /lib/security/pam_cracklib.so retry=3
>password    sufficient    /lib/security/pam_unix.so nullok use_authtok md5 
>shado
>w
>password    required      /lib/security/pam_deny.so
>
>session     required      /lib/security/pam_mkhomedir.so skel=/etc/skel/ 
>umask=0
>022
>session     required      /lib/security/pam_limits.so
>session     required      /lib/security/pam_unix.so
>
>Here is my /etc/samba/smb.conf:
>
>[global]
>         workgroup = CHICAGO
>         netbios name = SILCHRS03
>         server string =
>         security = DOMAIN
>         encrypt passwords = Yes
>         password server = *
>         log level = 3
>         log file = /var/log/samba/log.%m
>         max log size = 50
>         large readwrite = Yes
>         name resolve order = host wins bcast
>         socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
>         load printers = No
>         preferred master = False
>         local master = No
>         domain master = False
>         dns proxy = No
>         wins server = 172.30.XXX.XXX
>         winbind uid = 10000-50000
>         winbind gid = 10000-50000
>         template shell = /bin/bash
>         guest account = ftp
>         invalid users = root bin daemon adm sync shutdown halt mail news 
> uucp operator gopher
>         printer admin = +PrinterAdmins
>         nt acl support = No
>         printing = cups
>
>[homes]
>         comment = Home Directories
>         read only = No
>         browseable = No
>
>[printers]
>         comment = All Printers
>         path = /var/spool/samba
>         printable = Yes
>         browseable = No
>
>
>I really want this to work, so any help is appreciated.
>Please include my e-mail address in any replies.
>
>Thank you!
>
>
>Sven




More information about the samba mailing list