[Samba] idmap uid range missing or invalid

MargoAndTodd margoandtodd at gmail.com
Fri Apr 3 03:49:04 GMT 2009

John Drescher wrote:
> On Thu, Apr 2, 2009 at 10:40 PM, MargoAndTodd <margoandtodd at gmail.com> wrote:
>> Hi All,
>> What causes this error in /var/log/messages when
>> on XP-Pro client boots up?
>> winbindd[4041]:   idmap uid range missing or invalid
>> winbindd[4041]:   idmap will be unable to map foreign SIDs
>> winbindd[4041]: [2009/04/02 19:38:22, 0]
>> nsswitch/idmap.c:idmap_alloc_init(820)
>> rn1 winbindd[4041]:   ERROR: Initialization failed for
>> alloc backend, deferred!
> And did you check  what it told you? I mean your setting for the idmap
> uid range.
> John

Hi John,

   You probably did.  I have severe burn out at the moment: I
have been fighting with my Fed taxes for two days now.
Are you the one that told me to go read

   Anyway, in smb.conf
       idmap uid
       idmap gid

 From "man smb.conf"
       Default: idmap gid =
       Default: idmap uid =

confuses me.  I thought that leaving them to the default meant
everyone.  Am I incorrect?

testparm -s | grep -i idmap
Load smb config files from /etc/samba/smb.conf
Processing section "[OurStuff]"
Processing section "[CDs]"
Processing section "[mnt]"
Processing section "[netlogon]"
Processing section "[printers]"
Loaded services file OK.
Server role: ROLE_DOMAIN_PDC

No "idmap".  So, the defaults, I presume?

Also, if it helps, in /var/log/messages Todd over on XP-Pro
appeared as
         nss_wins[8213]:   vb-winxp ( connect
         to service OurStuff initially as user todd (uid=500,
         gid=100) (pid 8213)

This is where I get confused.

1) todd's
      #cat /etc/passwd | grep -i todd
      todd:x:500:100:Todd Chester:/home/todd:/bin/bash

      # cat /etc/group | grep -i user

Am I correct that the 500:100 I see in passwd and group
are the same todd (uid=500, pid=100) I see in "messages"?

2) does the "500" have anything to do with XP-Pro's 500
administrator's account?  (Todd has an administrators account
over on the XP-Pro virtual machine.)

3) Where does winbindd get its uid/pid pairs?  Do
I need to populate anything?  Do I need to create a
database for it to read?  How did winbindd know
that "idmap uid range missing or invalid"?  What did
it compare it against?

Sorry for all the confusion: my mind is not all here.

Many thanks,

More information about the samba mailing list