[Samba] wbinfo -u responds with Error looking up domain users

John Little jlittle_97 at yahoo.com
Wed Mar 15 13:40:08 GMT 2006 

Hi all,

I have an Samba + LDAP PDC and BDC setup with a trust to an NT 4
domain. I am using Samba 3.0.21c on Sles 9.  HRH is the Samba domain
and Hendricks is the NT4 domain.

When using getent passwd and/or wbinfo -u on the pdc all of the users
from both domains are listed:
getent passwd:
<snip>HRH users:
njcloud:x:1034:1014:System User:/home/njcloud:/bin/bash
acrardi:x:1035:513:System User:/home/acrardi:/bin/bash
kkkiefe:x:1036:513:System User:/home/kkkiefe:/bin/bash
tgmarcu:x:1037:513:System User:/home/tgmarcu:/bin/bash
kakeese:x:1041:1011:System User:/home/kakeese:/bin/bash
<snip>Hendricks users:
HENDRICKS\acbevin:*:150009:150000:Bevins, Armand
C.:/home/HENDRICKS/acbevin:/bin/false
HENDRICKS\acdusa:*:150010:150000:Dusa, Adrian
C:/home/HENDRICKS/acdusa:/bin/false
HENDRICKS\achagga:*:150011:150000:Haggard, Adalyn
C.:/home/HENDRICKS/achagga:/bin/false
HENDRICKS\achatt:*:150012:150000:Chattin,
Apastra:/home/HENDRICKS/achatt:/bin/false
HENDRICKS\achousd:*:150013:150000:Housden, Alison
C.:/home/HENDRICKS/achousd:/bin/false
<snip>Hendricks users
and wbinfo -u from PDC
HENDRICKS\aghuffm
HENDRICKS\agmiran
HENDRICKS\ahdosse
HENDRICKS\ajbarto
<snip>

When using the same utilities from the bdc I get the message "Error
looking up domain users" with wbinfo and only the HRH (LDAP) users with
getent passwd.
getent passwd (from the bdc showing the ldap users)
<snip>
mastewa:x:1309:513:System User:/home/mastewa:/bin/bash
eldewee:x:1310:513:System User:/home/eldewee:/bin/bash
mbsmall:x:1311:513:System User:/home/mbsmall:/bin/bash
xalicis:x:1312:513:System User:/home/xalicis:/bin/bash
aerober:x:1313:513:System User:/home/aerober:/bin/bash
<snip>
wbinfo -u (from the bdc)
hrhbdc01:/etc/samba # wbinfo -u
Error looking up domain users
hrhbdc01:/etc/samba # 

I have the ldap database replicating from the pdc to the bdc which is
working ok.

Net rpc trustdom list shows the domains properly from the bdc:
hrhbdc01:/etc/samba # net rpc trustdom list
Password:
Trusted domains list:
HENDRICKS           S-1-5-21-1606818979-933581049-1307212239
Trusting domains list:
HENDRICKS           S-1-5-21-1606818979-933581049-1307212239
hrhbdc01:/etc/samba #

and the join to the HRH domain:
hrhbdc01:/etc/samba # net rpc testjoin
Join to 'HRH' is OK
hrhbdc01:/etc/samba #

Some relevant entries from smb.conf:
passdb backend = ldapsam:"ldap://localhost ldap://hrhdc01.hrh.org
ldap://fp3lb.hrh.org"

        wins server = 128.1.3.55
        ldap admin dn = cn=Manager,dc=hrh,dc=org
        ldap group suffix = ou=Groups
        ldap idmap suffix = ou=Idmap
        ldap machine suffix = ou=People
        ldap passwd sync = Yes
        ldap suffix = dc=hrh,dc=org
        ldap user suffix = ou=People
        idmap backend = ldap:ldap://localhost
        idmap uid = 150000-250000
        idmap gid = 150000-250000

I also upgraded to 3.0.21c directly from 3.0.15.

What could be the problem with winbind on the BDC?

Thanks,
John Little



__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

More information about the samba mailing list