[Samba] winbindd starts, works, then fails soon

Robert Grasso Robert.Grasso at cedrat.com
Wed Aug 22 15:23:32 GMT 2007 

Add-on : having seen on the list some troubles with v3.0.25b, I just upgraded to v3.0.25c - no change - well, with the config below
it failed to resolve some group IDs at service startup - setting our AD servers IPs into

wins server = ...

seems to help at service startup, now it looks like it used to be in v3.0.25b : simply correct (at startup)

For the time being I am restarting winbindd every 5 minutes - not really a good service management ...

---
Robert GRASSO
System Engineer

CEDRAT
15, Chemin de Malacher - Inovallée - 38246 MEYLAN Cedex - FRANCE
Tel: +33 (0)4 76 90 50 45 Fax: +33 (0)4 76 90 16 09
mailto:Robert.Grasso at cedrat.com
---
Support service       : mailto:support at cedrat.com
Commercial service : mailto:cedrat at cedrat.com
Web site                  : http://www.cedrat.com



> -----Original Message-----
> From: samba-bounces+robert.grasso=cedrat.com at lists.samba.org
> [mailto:samba-bounces+robert.grasso=cedrat.com at lists.samba.org]On Behalf
> Of Robert Grasso
> Sent: Wednesday, August 22, 2007 3:02 PM
> To: samba at lists.samba.org
> Subject: [Samba] winbindd starts, works, then fails soon
>
>
> Hello,
>
> I recently installed samba 3.0.25b-33, in order to connect some RHEL 4 workstations to our AD servers using SFU. I am a Linux
> sysadmin but not very used to Samba.
>
> I succeeded configuring Samba, and when the smb and winbind services are started, everything is fine, I get my Linux users as I
> configured them in AD/SFU : wbinfo -u is correct, logins are possible, samba shares are reachable from a Windows desktop
>
> Alas, very quickly (less than one hour ?) winbind uses to fail, and the connection with AD is lost; the logs are full of
>
> ads_connect for domain ddd failed: No logon servers
> (...)
> ad_idmap_init: failed to connect to AD
> (...)
> NT_STATUS_UNSUCCESSFUL
>
> Can anybody give some help ?
>
> Here is my smb.conf
>
> [global]
>    workgroup = xxx
>    realm = yyy
>    server string = Samba Server - ccc
>    hosts allow = 192.168. 127.
>    #printcap name = /etc/printcap
>    printcap name = cups
>    load printers = yes
>     printing = cups
>     cups options = raw
>  log level = 1
>  log file = /var/log/samba/%m.log
>    max log size = 50
>    security = ADS
>    encrypt passwords = yes
>    socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
>    preferred master = no
> name resolve order = wins bcast
>    dns proxy = yes
>    idmap domains = ALLDOMAINS
>    idmap config ALLDOMAINS:backend = ad
>    idmap config ALLDOMAINS:default = yes
>    idmap config ALLDOMAINS:schema_mode = sfu
>
>    template homedir = /home/%U
>    winbind use default domain = yes
>    winbind separator = +
>    winbind enum users = yes
>    winbind enum groups = yes
>    winbind nss info = template sfu
>    winbind offline logon = true
>    winbind refresh tickets = true
> [xxx]
> 	path = /home/xxx
> 	writeable = yes
>         valid users = ddd+xxx ddd+yyy
>         create mask = 0755
> 	map archive = yes
>
> [zzz]
> 	path = /home/zzz
> 	writeable = yes
>         valid users = ddd+zzz ddd+yyy
>         create mask = 0755
> 	map archive = yes
>
>
>
>
> ---
> Robert GRASSO
> System Engineer
>
> CEDRAT
> 15, Chemin de Malacher - Inovallée - 38246 MEYLAN Cedex - FRANCE
> Tel: +33 (0)4 76 90 50 45 Fax: +33 (0)4 76 90 16 09
> mailto:Robert.Grasso at cedrat.com
> ---
> Support service       : mailto:support at cedrat.com
> Commercial service : mailto:cedrat at cedrat.com
> Web site                  : http://www.cedrat.com
>
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/listinfo/samba

More information about the samba mailing list