[Samba] getpwnam() fails with winbind on samba pdc

kai at groshert.de kai at groshert.de
Wed Feb 18 15:43:32 GMT 2004 

Hello List,

I've been running into the following winbind problem and would really
appreciate if anyone could give me a hint here:

I'm currently using Samba 2.2.7a as a fileserver (domain member),
user-authentication is done on a WinNT 4.0 PDC. The Samba fileserver
is running winbind so all the users need not be created locally.

Now I want to replace the old Samba version with Samba 3.0.2 running as
PDC, userdata stored in LDAP. Obviously I still want to keep using the
winbind mechanism so I don't have to create local Unix users.

Configuration in /etc/pam.d/samba has been left unchanged so I don't post
it here. Judging from the winbind logfile the daemon is not being asked
at all when a user tries to connect (no entries at all in the log).

As soon as I create a local Unix account for the user everything works fine,
but this is what I want to avoid.

Here is the excerpt from log.smbd, user "kai" trying to connect. Lookup
of the LDAP entry works fine but the getpwnam() seems to fail.
Maybe Samba does not query the winbind daemon when running in PDC mode?

Thank you very much for any help...
Kai


[2004/02/15 19:21:18, 2] smbd/server.c:open_sockets_smbd(318)
  waiting for a connection
[2004/02/15 19:21:43, 2] lib/smbldap.c:smbldap_search_domain_info(1331)
  Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=MAAS))]
[2004/02/15 19:21:43, 2] lib/smbldap.c:smbldap_open_connection(626)
  smbldap_open_connection: connection opened
[2004/02/15 19:21:43, 2] smbd/reply.c:reply_special(105)
  netbios connect: name1=ROMULUS2        name2=PC-TRUNG
[2004/02/15 19:21:43, 2] smbd/reply.c:reply_special(112)
  netbios connect: local=romulus2 remote=pc-trung, name type = 0
[2004/02/15 19:21:43, 2] smbd/sesssetup.c:setup_new_vc_session(591)
  setup_new_vc_session: New VC == 0, if NT4.x compatible we would close
all old resources.
[2004/02/15 19:21:43, 2] passdb/pdb_ldap.c:init_sam_from_ldap(462)
  init_sam_from_ldap: Entry found for user: kai
[2004/02/15 19:21:43, 1] auth/auth_util.c:make_server_info_sam(821)
  User kai in passdb, but getpwnam() fails!
[2004/02/15 19:21:43, 0] auth/auth_sam.c:check_sam_security(221)
  check_sam_security: make_server_info_sam() failed with
'NT_STATUS_NO_SUCH_USER'
[2004/02/15 19:21:43, 2] auth/auth.c:check_ntlm_password(312)
  check_ntlm_password:  Authentication for user [kai] -> [kai] FAILED with
error NT_STATUS_NO_SUCH_USER
[2004/02/15 19:21:43, 2] smbd/server.c:exit_server(558)
  Closing connections
[2004/02/15 19:22:24, 2] smbd/server.c:exit_server(558)
  Closing connections

More information about the samba mailing list