[Samba] Sequence numbers and AD trusts
Chris Douglass
ALLEN.C.DOUGLASS at saic.com
Thu Feb 19 16:37:56 GMT 2004
Hello List -
My AD domain has trusts with several other domains, some NT4 and some
AD. I've been doing some testing with winbind to see if I can move the
UNIX accounts to winbind from LDAP. However, I can't enumerate users
from other AD domains. Here is the output I get:
root at nomad:~# wbinfo --sequence
NT4-DOM1 : 21141
NT4-DOM2 : 5668
AD-DOM1 : DISCONNECTED
AD-DOM2 : DISCONNECTED
AD-DOM3 : DISCONNECTED
NT4-DOM3 : 31895
NT4-DOM4 : 39446
MY-AD-DOM : 376144
I have tried setting the winbind auth user to an account from AD-DOM1,
but I don't get any better results.
log.winbindd shows:[2004/02/19 11:29:13, 10]
nsswitch/winbindd_cache.c:refresh_sequence_number(351)
refresh_sequence_number: AD-DOM1 time ok
[2004/02/19 11:29:13, 10]
nsswitch/winbindd_cache.c:refresh_sequence_number(376)
refresh_sequence_number: AD-DOM1 seq number is now -1
[2004/02/19 11:29:13, 10]
nsswitch/winbindd_cache.c:refresh_sequence_number(351)
refresh_sequence_number: AD-DOM2 time ok
[2004/02/19 11:29:13, 10]
nsswitch/winbindd_cache.c:refresh_sequence_number(376)
refresh_sequence_number: AD-DOM2 seq number is now -1
[2004/02/19 11:29:13, 10]
nsswitch/winbindd_cache.c:refresh_sequence_number(351)
refresh_sequence_number: AD-DOM3 time ok
[2004/02/19 11:29:13, 10]
nsswitch/winbindd_cache.c:refresh_sequence_number(376)
refresh_sequence_number: AD-DOM3 seq number is now -1
Can someone help me with why this is happening or what I can do about
it?
Thanks-
Chris
--
More information about the samba
mailing list