[Samba] Samba + Winbind + Windows 2003 AD
Henrik Dige Semark
hds at semark.dk
Sat Jul 17 17:34:52 MDT 2010
Hey out there.
I have to join my UNIX server with an existing Win2k3 AD network.
My system info:
Debian Lenny
Samba - 3.4.8
Winbind - 3.4.8
Windows Server 2003 with 2000-style-AD
My problem is that, I have en UNIX server that have to run auth up
against our existing windows 2003 AD.
I have successfully joined my UNIX server to the AD, without problems.
# net ads join -U Administrator
Enter Administrator's password:
Using short domain name -- TEST
Joined 'MAIL' to realm 'TEST.LOCAL'
My Samba config: http://pastebin.com/ZqaA0Ypn
After the join I'm able to lookup peoples with
# wbinfo -u
[...]
XX
hds
XXX
[...]
# wbinfo -g
[...]
bg XX
bg hds
bg XXX
[...]
Now the problem, getent only returns the local users and not the users
from the AD
The funny thing is that if a user is local on the UNIX and in the AD, I
can login with the password from both local and AD, so I know that it
can lookup people and passwords
# getent passwd hs ; echo $?
2
When I debug on getent it returns 2, witch means that it can't find the
user.
I know there can be a problem with this if the resolv-names is not working
# ping addc.UNDERVISNING.LOCAL
PING addc.birke-gym.dk (10.3.17.1) 56(84) bytes of data.
64 bytes from bgdc.birke-gym.dk (10.3.17.1): icmp_seq=1 ttl=128
time=0.211 ms
64 bytes from bgdc.birke-gym.dk (10.3.17.1): icmp_seq=2 ttl=128
time=0.207 ms
# ping mail.UNDERVISNING.LOCAL
PING mail.birke-gym.dk (127.0.1.1) 56(84) bytes of data.
64 bytes from mail.birke-gym.dk (127.0.1.1): icmp_seq=1 ttl=64 time=0.099 ms
64 bytes from mail.birke-gym.dk (127.0.1.1): icmp_seq=2 ttl=64 time=0.094 ms
Is there anyone that can see where I have done something rung in my
samba-config.?
--
Med Venlig Hilsen / Best Regards
Henrik Dige Semark
More information about the samba
mailing list