[Samba] how to make 'winbind nss info = sfu' work in v >= 3.0.26a
Jonathan.Detert at msoe.edu
Tue Apr 15 20:40:53 GMT 2008
There is an instance of Ms.Active Directory that has had the 'Services
For Unix' applied.
I use winbind v3.0.24 to get user/group info from that Ms.Active directory
instance like so:
-------- begin smb.conf snippet: ------------
security = ADS
realm = mydomain.com
workgroup = MYDOMAIN
winbind enum groups = yes
winbind enum users = yes
winbind nested groups = yes
winbind nss info = sfu
winbind separator = +
winbind use default domain = yes
idmap gid = 500-45000
idmap uid = 500-45000
idmap backend = ad
-------- end smb.conf snippet: ------------
that works fine on ubuntu v7.04.
The same config, shown above, does not work under winbind v3.0.26a
running on ubuntu v7.10. I can turn an name into a sid, and the sid
back into a name (via wbinfo -n and -s, respectively), but I can't turn
a sid into a unix uid or gid (via the -S argument). Also, 'getent passwd'
doesn't return any users from Active Directory.
Any idea what's wrong? Is it my config?
IT Systems Administrator, Milwaukee School of Engineering
1025 N. Broadway, Milwaukee, Wisconsin 53202, U.S.A.
Linus Torvalds can divide by zero.
More information about the samba