[Samba] getent & winbindd on FreeBSD 5.4

John H Terpstra jht at primastasys.com
Fri Sep 16 21:26:27 GMT 2005 

On Thursday 15 September 2005 17:44, Doug Sampson wrote:
...
> # /etc/nsswitch.conf
> passwd: compat winbind
> group: compat winbind
> hosts: files winbind wins dns

Change to:

hosts: fils dns wins

> networks: files
> shells: files
>
...
> # smb.conf
> [global]
>         workgroup = DSP
>         server string = Samba Server
>         security = DOMAIN
>         passdb backend = tdbsam

Remove the "passdb backend = tdbsam" parameter - this is a domain member and 
will obtain SAM information using MS RPC via winbind.

>         log file = /var/log/samba/log.%m
>         max log size = 50
>         os level = 33
>         local master = No
>         dns proxy = No
>         wins server = 192.168.1.1
>         idmap uid = 15000-20000
>         idmap gid = 15000-20000
>         template homedir = /usr/home/%D/%U
>         template shell = /bin/bash
>         winbind separator = +
>         hosts allow = 192.168.1., 192.168.2., 127.
>
> [homes]
>         comment = Home Directories
>         read only = No
>         browseable = No
>
> [MacData]
>         comment = Production Data
>         path = /data
>         valid users = @DSP+PRODUCTION
>         read only = No
>         create mask = 0765
>
>
> The odd thing is- there's no /etc/pam.d/samba file even though I specified
> that the PAM samba module be installed. Is my PAM whacked?

You need PAM only to log into your BSD system using a Windows account - if 
that is what you want to do.

>
> Also, I am unsure if I need to map users to NT account using a text file

You do not need to map NT accounts to UNIX local accounts. That is all handled 
by winbind.

> similar to /etc/smb/smbusers or some file similar to that? When I execute
> 'pw groupshow DSP+PRODUCTION', the log.smbd shows this:
> [2005/09/15 16:17:24, 0] passdb/pdb_tdb.c:tdbsam_tdbopen(195)
>   Unable to open/create TDB passwd
> [2005/09/15 16:17:24, 0] passdb/pdb_tdb.c:tdbsam_getsampwrid(488)
>   pdb_getsampwrid: Unable to open TDB rid database!

This will go away when you get rid of "passdb backend = tdbsam".

- John T.
-- 
John H Terpstra, CTO
PrimaStasys Inc.
Phone: +1 (650) 580-8668

Author:
The Official Samba-3 HOWTO & Reference Guide, 2 Ed., ISBN: 0131882228
Samba-3 by Example, 2 Ed., ISBN: 0131882221X
Hardening Linux, ISBN: 0072254971
Other books in production.

More information about the samba mailing list