Fwd: [Samba] machine being dropped from ads
Kyle Corupe
kcorupe at corpedia.com
Thu May 8 17:00:37 GMT 2008
I wanted to bring this question back to the main list. I am lost for ideas,
The issue is that my samba server is being dropped from ADS for some reason,
or is disconnecting itself. Everything is up and working but randomly
winbind will be unable to lookup domain users. Any debug info or ideas would
be much appreciated, could there be something on the windows side? It looks
like the kerberos ticket is only valid for today?
here is some of my configs:
smb.conf
----------------------------------------
[global]
workgroup = WINIX
realm = CORPEDIA.INTERNAL
preferred master = no
server string = File Server
security = ADS
encrypt passwords = yes
log level = 3
log file = /var/log/samba/%m
max log size = 50
# printcap name = cups
# printing = cups
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = true
winbind nested groups = Yes
# winbind separator = +
idmap uid = 600-20000
idmap gid = 600-20000
#template primary group = "Domain Users"
template shell = /bin/bash
# obey pam restrictions = no
# winbind use default domain = yes
obey pam restrictions = yes
#pam password change = yes
#root preexec = /usr/local/sbin/mkhomedir.sh %U
#template homedir = /home/WINIX+%U
security mask = 0775
force security mode = 0
directory security mask = 0775
force directory security mode = 0
create mask = 0775
----------------------------
[kylec at beedril ~]$ wbinfo -u
administrator
guest
support_388945a0
(cut ....)
---------------------------
[kylec at beedril ~]$ net ads info
LDAP server: 10.0.0.6
LDAP server name: charizard.corpedia.internal
Realm: CORPEDIA.INTERNAL
Bind Path: dc=CORPEDIA,dc=INTERNAL
LDAP port: 389
Server time: Thu, 08 May 2008 09:52:29 MST
KDC server: 10.0.0.6
Server time offset: 95
-----------------------------
[root at beedril kylec]# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: samba at CORPEDIA.INTERNAL
Valid starting Expires Service principal
05/08/08 09:54:25 05/08/08 19:55:48
krbtgt/CORPEDIA.INTERNAL at CORPEDIA.INTERNAL
renew until 05/09/08 09:54:25
Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached
-------------- next part --------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iD8DBQBIIkh0z4A8Wyi0NrsRAjejAJ0emsUL9Y220opS8B6jZe/A+Y4fIwCfUQUq
/JSvpoPawpTjW2ag37cXtL8=
=ipo2
-----END PGP SIGNATURE-----
More information about the samba
mailing list