[Samba] "id" and "id username" don't match up when using Winbind groups

Graeme Humphries graeme.humphries at vcom.com
Fri Jun 10 18:51:55 GMT 2005

On Fri, 2005-06-10 at 13:15 -0500, Gerald (Jerry) Carter wrote:
> are you using security = domain or ads ?

ADS. I was under the impression that security = domain was broken with
SP1? Or has than been fixed in 3.0.14a?

> If the latter then stop winbindd and remove $(lockdir)/netsamlogon_cache.tdb.
> If the former, then the cache should be updated every time
> the user's logs in.

Ok, so to clear this up in ADS continually, I'll need to make a cron job
that shuts down winbind, removes this file, and then starts winbind up

> In technical terms, the cache is a copy of the NET_USER_INFO_3
> structure in the samlogin() reply (used for NTLM authenication).

Ahhh, and it's just not getting updated properly with ADS?

> You're not the first one to be bitten by this.  It was more
> useful in Samba 2.2.x installations.  We'll definitely fix
> this somehow before the next stable release.

Cool. As long as I have a workaround, I'm happy, but it'd be nice to
have it cleaned up. Is 3.0.15 the next stable release, or does Samba use
the even=stable odd=devel numbering?


More information about the samba mailing list