[Samba] cannot autenticate user in AD

Roberto Lizana rober.lizana at gmail.com
Wed Jul 11 11:25:50 GMT 2007

I have configured samba like member of AD, if i type in console 'wbinfo
-u' y get all user of my AD, if type in console 'wbinfo -g' y get all
groups too. It's correct but if i type 'getent passwd' or 'getent group'
don't get any user or group of my AD... why???

* in nsswitch.conf appears:
passws:   files winbind
group:   files winbind
shadow: files winbind

i execute ldconfig for apply all changes of nsswitch.conf

i have libnss_winbind.so and libnss_winbind.so.2 in /lib

* smbd version is 3.0.25b and i compile this with arguments:
--with-winbind --with-krb5=/usr/lib --with-ads

* smb.conf:
workgroup = DOMAIN
realm = DOMAIN.INT
netbios name = samba1
preferred master = no
client schannel = no
security = ADS
password server = *
idmap uid = 10000-250000
idmap gid = 10000-250000
winbind uid = 10000-250000
winbind gid = 10000-250000
winbind separator = +
winbind enum users = yes
winbind enum groups = yes

* klist
Default principal: administrator at DOMAIN.INT

Valid starting     Expires            Service principal
07/11/07 12:26:17  07/11/07 22:26:18  krbtgt/DOMAIN.INT at DOMAIN.INT
       renew until 07/12/07 12:26:17

Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached

More information about the samba mailing list