[Samba] Joining Samba 3.24 to 2003 ADS

Adrian Sender asender at tinistuffhosting.com
Mon Apr 30 09:32:11 GMT 2007 

Sounds like you have not setup your /etc/nsswitch.conf correctly.

Check and make sure you have something similar to this:

Passwd:	files winbind
shadow:	files winbind
Group:	files winbind

Usually if not setup users will not resolve through "getent passwd" getent
group"

Cheers,

Adrian Sender.

-----Original Message-----
From: Henrik Zagerholm [mailto:henke at mac.se] 
Sent: Sunday, 29 April 2007 2:21 AM
To: Jeff Thurston
Cc: samba at lists.samba.org
Subject: Re: [Samba] Joining Samba 3.24 to 2003 ADS

Hi,
Check that libnss is linked correctly.

cp ../samba/source/nsswitch/libnss_winbind.so /lib
ln -s /lib/libnss_winbind.so /lib/libnss_winbind.so.2
/sbin/ldconfig -v | grep winbind

Cheers,
Henrik

27 apr 2007 kl. 21:12 skrev Jeff Thurston:

> 'hostname -f'
> host.fqdn.com
>
> Entry is also in the hosts file: host, and DC
>
> I've looked in the winbind logs as well as the samba logs and don't  
> see
> anything that immediately indicates a problem.
>
> Incidentally, I am able to setup shares and access them as a
> @"ADGROUP+domain users" or specific domain user on this server.
>
> Should I even worry about the fact that getent doesn't work  
> "correctly"?
>
>
> -----Original Message-----
> From: paul karrel [mailto:pkarrel at trentu.ca]
> Sent: Friday, April 27, 2007 10:23 AM
> To: Jeff Thurston
> Subject: Re: [Samba] Joining Samba 3.24 to 2003 ADS
>
> Jeff Thurston wrote:
>> I'm hoping someone can give me a clue what I am doing wrong here,
>>
>> Running Debian Etch AMD64, I followed the samba wiki at:
>> http://wiki.samba.org/index.php/Samba_
>> <http://wiki.samba.org/index.php/ 
>> Samba_&_Active_Directory#Prerequisites>
>> &_Active_Directory#Prerequisites.
>>
>> I get mostly good results, except when I try to run 'getent  
>> passwd' or
>> 'getent group' only local users/groups are listed.
>>
>>
>>
>> I was able to join the domain: net ads join -U admin_user
>>
>> The system shows up in AD under computers on the PDC.
>>
>> Afterwards if I do wbinfo -u, wbinfo -g, wbinfo -p, wbinfo -t,  
>> wbinfo -a
>> ad_user%password
>>
>> All of those appear to work correctly.
>>
>>
>>
>> This however seems somewhat fishy, it says "Active Directory: No":
>>
>>
>>
>> 'wbinfo -D domain.com'
>>
>> Name              : DOMAIN
>>
>> Alt_Name          : DOMAIN.COM
>>
>> SID               : S-XXXXXXXXXXXXXXXXXXXXXX
>>
>> Active Directory  : No
>>
>> Native            : No
>>
>> Primary           : Yes
>>
>> Sequence          : 2008
>>
>>
>>
>> My nsswitch.conf looks correct:
>>
>> passwd: files winbind
>>
>> shadow: files winbind
>>
>> group: files winbind
>>
>> hosts: files dns wins
>>
>>
>>
>>
>>
>> -Jeff
>>
>>
> check that the local pc has the correct fqdn; use the hostname  
> command.
> You want the server fqdn to match the local machine fqdn.
> Look in the messages file in /var/log for extra info.
>
> -- 
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/listinfo/samba




-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

More information about the samba mailing list