[Samba] LDAP, winbind problem

Bostjan Müller neonatus at gmail.com
Tue Dec 28 11:04:49 GMT 2004


Hi everyone,

I was just trying to switch from tdbsam to ldapsam backend, and I seem
to have a problem now.

I have two linux machines here, one was PDC, the other domain member.
I have created LDAP DB on the PDC, and connected samba on it. I can
authenticate users and connect to shares, but group mapping seems to
be wrong.
I have added three groups to ldap and used net groupmap commands to
map them to nt groups, the output is like this:
Domain Admins (S-1-5-21-1701261443-1898081063-1743202547-512) -> smbadm
Domain Users (S-1-5-21-1701261443-1898081063-1743202547-512) -> smbusers
Domain Guests (S-1-5-21-1701261443-1898081063-1743202547-514) -> nogroup

I have created a user, added him to domain users and domain admins
group, but he is not listed as member of any on domain member (which
uses winbind)

wbinfo -g does show all the groups:
BUILTIN+System Operators
BUILTIN+Replicators
BUILTIN+Guests
BUILTIN+Power Users
BUILTIN+Print Operators
BUILTIN+Administrators
BUILTIN+Account Operators
BUILTIN+Backup Operators
BUILTIN+Users
Domain Admins
Domain Users
Domain Guests

but getent group shows only the domain guests:
[local groups snipped]
Domain Guests:x:10027:fetchmail,ntop,nobody,sshd,amavis
BUILTIN+System Operators:x:10003:
BUILTIN+Replicators:x:10004:
BUILTIN+Guests:x:10005:
BUILTIN+Power Users:x:10006:
BUILTIN+Print Operators:x:10007:
BUILTIN+Administrators:x:10008:
BUILTIN+Account Operators:x:10009:
BUILTIN+Backup Operators:x:10010:
BUILTIN+Users:x:10011:

(there are members of it since the group is mapped to nogroup)
Can someone please help me fix that problem?
I would really need the correct functionality.

Thank you in advance,
Bostjan
-- 
buhdej evridej


More information about the samba mailing list