[Samba] winbind problems with linux domain member
Anders Berg
andersb at vg.no
Fri May 14 09:14:32 GMT 2004
Hi,
not to get you hopes down, but I think this is the same problem that is
adressed in:
http://lists.samba.org/archive/samba/2004-May/085521.html
http://lists.samba.org/archive/samba/2004-May/085808.html
Look at:
<http://www.linuxquestions.org/questions/showthread.php?s=&threadid=161506>http://www.linuxquestions.org/questions/showthread.php?s=&threadid=161506
that may help.
Appart from that, and countless postings about this problem, there is little.
That said.
I am not sure its is the same problem. I am just one that has got a similar
problem (except want a access from a XP client to a samba server in a
Win2003 DMC).
I think its a kerberos problem so far.
YS.
Anders Berg
At 09:43 13.05.2004 -0700, you wrote:
>Hey everyone,
>
>I'm having some strange responses, and a bit of trouble with getting
>access to a member server on my domain. I've got Samba running on
>another Linux box as a PDC, and my Win2k clients can login just fine,
>and share between one another. The problem comes in with another
>Linux workstation that's setup as a member server.
>
>Here's the relevant smb.conf section from the member server:
>
>[global]
> workgroup = 102010
> server string = Samba Server %v
> log file = /var/log/samba3/log.%m
> max log size = 50
> socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
> dns proxy = no
>
> netbios name = miru
> security = domain
> printcap name = cups
> disable spoolss = yes
> show add printer wizard = no
> printing = cups
>
> idmap uid = 15000-20000
> idmap gid = 15000-20000
> winbind separator = +
> winbind use default domain = yes
> winbind enum users = yes
> winbind enum groups = yes
> winbind enable local accounts = no
> use sendfile = yes
>
>testparm comes out okay, with the caveat that using '+' as a separator
>might cause problems with group membership. I also get success
>response from wbinfo -t
>
>What's strange is this:
>
>miru root # wbinfo -u
>root
>sak
>michael
>
>Shouldn't it show the domain+user output?
>
>When I do:
>miru root # getent passwd
>...
>guest:x:405:100:guest:/dev/null:/dev/null
>nobody:x:65534:65534:nobody:/:/bin/false
>sak:x:1000:100::/home/sak:/bin/bash
>ntp:x:123:123:added by portage for ntp:/dev/null:/bin/false
>root:x:15007:15001:root:/home/102010/root:/bin/false
>sak:x:15006:15001::/home/102010/sak:/bin/false
>michael:x:15008:15001::/home/102010/michael:/bin/false
>
>If I understand correctly, this is okay; listing the local users and
>then the domain users.
>
>When I do:
>
>miru root # getent passwd sak
>sak:x:1000:100::/home/sak:/bin/bash
>
>which is probably correct, but when I do:
>
>miru root # getent passwd 102010+sak
>
>I get no response whatsoever.
>
>All of this results in the shares on the member server showing up on
>the domain, but unable to access them. From a Win2k client, logged
>into the domain, I can't get it to accept any type of login to access
>a share on the member server. When I try to access a share it asks
>for a username and password. If I try sak, it doesn't work, if I try
>102010+sak it gives me an hourglass for about thirty seconds, and then
>gives me "\\Miru\sak is not accessible. The specified username is
>invalid."
>
>Anyway, I'm stuck. I don't know what else to try. Anyone have any
>thoughts or suggestions?
>
>--
>Thanks,
>Sak.
>-----
>
>i've got this epic problem
>this epic problem's not a problem for me
>and inside i know i'm broken
>but i'm working as far as you can see
>and outside it's all production
>it's all illusion set scenery
>i've got this epic problem
>this epic problem's not a problem for me
> -fugazi
>--
>To unsubscribe from this list go to the following URL and read the
>instructions: http://lists.samba.org/mailman/listinfo/samba
*****************************************************************
Denne fotnoten bekrefter at denne e-postmeldingen ble
skannet av MailSweeper og funnet fri for virus.
*****************************************************************
This footnote confirms that this email message has been swept by
MailSweeper for the presence of computer viruses.
*****************************************************************
More information about the samba
mailing list