Fwd: [Samba] machine being dropped from ads

Kyle Corupe kcorupe at corpedia.com
Thu May 8 17:00:37 GMT 2008 

I wanted to bring this question back to the main list. I am lost for ideas,

The issue is that my samba server is being dropped from ADS for some reason,
or is disconnecting itself. Everything is up and working but randomly
winbind will be unable to lookup domain users. Any debug info or ideas would
be much appreciated, could there be something on the windows side? It looks
like the kerberos ticket is only valid for today?


here is some of my configs:


smb.conf
----------------------------------------

[global]
   workgroup = WINIX
   realm = CORPEDIA.INTERNAL
   preferred master = no
   server string = File Server
   security = ADS
   encrypt passwords = yes
   log level = 3
   log file = /var/log/samba/%m
   max log size = 50
#   printcap name = cups
#   printing = cups
   winbind enum users = Yes
   winbind enum groups = Yes
   winbind use default domain = true
   winbind nested groups = Yes
#   winbind separator = +
   idmap uid = 600-20000
   idmap gid = 600-20000
   #template primary group = "Domain Users"
   template shell = /bin/bash
#   obey pam restrictions = no
#   winbind use default domain = yes

obey pam restrictions = yes
#pam password change = yes

#root preexec = /usr/local/sbin/mkhomedir.sh %U
#template homedir = /home/WINIX+%U


security mask = 0775
force security mode = 0
directory security mask = 0775
force directory security mode = 0
create mask = 0775

----------------------------

[kylec at beedril ~]$ wbinfo -u
administrator
guest
support_388945a0
(cut ....)

---------------------------

[kylec at beedril ~]$ net ads info
LDAP server: 10.0.0.6
LDAP server name: charizard.corpedia.internal
Realm: CORPEDIA.INTERNAL
Bind Path: dc=CORPEDIA,dc=INTERNAL
LDAP port: 389
Server time: Thu, 08 May 2008 09:52:29 MST
KDC server: 10.0.0.6
Server time offset: 95

-----------------------------

[root at beedril kylec]# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: samba at CORPEDIA.INTERNAL

Valid starting     Expires            Service principal
05/08/08 09:54:25  05/08/08 19:55:48
krbtgt/CORPEDIA.INTERNAL at CORPEDIA.INTERNAL
        renew until 05/09/08 09:54:25


Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached
-------------- next part --------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iD8DBQBIIkh0z4A8Wyi0NrsRAjejAJ0emsUL9Y220opS8B6jZe/A+Y4fIwCfUQUq
/JSvpoPawpTjW2ag37cXtL8=
=ipo2
-----END PGP SIGNATURE-----

More information about the samba mailing list