[Samba] winbind problems with linux domain member

Anders Berg andersb at vg.no
Fri May 14 09:14:32 GMT 2004


not to get you hopes down, but I think this is the same problem that is 
adressed in:



Look at:


that may help.

Appart from that, and countless postings about this problem, there is little.

That said.
I am not sure its is the same problem. I am just one that has got a similar 
problem (except want a access from a XP client to a samba server in a 
Win2003 DMC).
I think its a kerberos problem so far.

Anders Berg
At 09:43 13.05.2004 -0700, you wrote:
>Hey everyone,
>I'm having some strange responses, and a bit of trouble with getting
>access to a member server on my domain.  I've got Samba running on
>another Linux box as a PDC, and my Win2k clients can login just fine,
>and share between one another.  The problem comes in with another
>Linux workstation that's setup as a member server.
>Here's the relevant smb.conf section from the member server:
>         workgroup = 102010
>         server string = Samba Server %v
>         log file = /var/log/samba3/log.%m
>         max log size = 50
>         socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
>         dns proxy = no
>         netbios name = miru
>         security = domain
>         printcap name = cups
>         disable spoolss = yes
>         show add printer wizard = no
>         printing = cups
>         idmap uid = 15000-20000
>         idmap gid = 15000-20000
>         winbind separator = +
>         winbind use default domain = yes
>         winbind enum users = yes
>         winbind enum groups = yes
>         winbind enable local accounts = no
>         use sendfile = yes
>testparm comes out okay, with the caveat that using '+' as a separator
>might cause problems with group membership.  I also get success
>response from wbinfo -t
>What's strange is this:
>miru root # wbinfo -u
>Shouldn't it show the domain+user output?
>When I do:
>miru root # getent passwd
>ntp:x:123:123:added by portage for ntp:/dev/null:/bin/false
>If I understand correctly, this is okay; listing the local users and
>then the domain users.
>When I do:
>miru root # getent passwd sak
>which is probably correct, but when I do:
>miru root # getent passwd 102010+sak
>I get no response whatsoever.
>All of this results in the shares on the member server showing up on
>the domain, but unable to access them.  From a Win2k client, logged
>into the domain, I can't get it to accept any type of login to access
>a share on the member server.  When I try to access a share it asks
>for a username and password.  If I try sak, it doesn't work, if I try
>102010+sak it gives me an hourglass for about thirty seconds, and then
>gives me "\\Miru\sak is not accessible. The specified username is
>Anyway, I'm stuck.  I don't know what else to try.  Anyone have any
>thoughts or suggestions?
>i've got this epic problem
>this epic problem's not a problem for me
>and inside i know i'm broken
>but i'm working as far as you can see
>and outside it's all production
>it's all illusion set scenery
>i've got this epic problem
>this epic problem's not a problem for me
>      -fugazi
>To unsubscribe from this list go to the following URL and read the
>instructions:  http://lists.samba.org/mailman/listinfo/samba

Denne fotnoten bekrefter at denne e-postmeldingen ble
skannet av MailSweeper og funnet fri for virus.
This footnote confirms that this email message has been swept by
MailSweeper for the presence of computer viruses.

More information about the samba mailing list