[Samba] idmap uid allocation problem
Hugo Mallinson
hfm21 at cam.ac.uk
Wed Mar 11 09:39:26 GMT 2009
Solved.
After adding the explicit "idmap alloc" section, I had to do "net
idmap secret alloc <secret>". Still not sure why it had worked before
without idmap alloc though.
On Mar 8, 2009, at 2:31 PM, Hugo Mallinson wrote:
> Sorry: Samba 3.2.8-0.26 running on Intel FC9.
>
> On Mar 8, 2009, at 2:08 PM, Hugo Mallinson wrote:
>
>> Hi, we've had a machine happily authenticating to an ADS domain for
>> about a year now, and it's recently stopped working (possibly due
>> to changes in the domain or a samba upgrade, unfortunately I'm not
>> sure). We're using an ldap idmap backend running on the local
>> machine.
>>
>> Now though, new domain users can't log in. Running "wbinfo -i
>> newuser" returns an error. However users can use wbinfo -a to
>> authenticate, and previously registered users can still log in
>> fine. The problem seems to be with the sid->uid mapping. I can
>> manually add an LDAP entry for the new user's sid and make up a uid
>> and the login works as normal. Specifically "wbinfo --allocate-uid"
>> says it cannot allocate a uid.
>>
>> Could someone please help?
>>
>> smb.conf:
More information about the samba
mailing list