[Samba] Fwd: getent group fails - fixed

Christian PERRIER bubulle at debian.org
Thu Jun 23 22:48:13 MDT 2011

Quoting Dermot (paikkos at googlemail.com):

> Perhaps I am not understanding you correctly because that runs counter
> my experience. The settings in my /etc/ldap/ldap.conf were correct
> whereas the ones in /etc/libnss-ldap.conf were not. It was the search
> filters from libnss-ldap.conf that were being used when I did `getent
> group`. I think your telling me that getent is tied to the nss
> framework so would use that config because that's what I told
> nsswitch.conf to do. I would have thought, but I am no expert, that
> samba would have used the config from smb.conf and that ldapsearch
> (and anything else that didn't have hooks else where) would use
> /etc/ldap/ldap.conf.

Please note that Debian has *two* packages for nss-ldap:

mykerinos:/home/cperrier# apt-cache search nss ldap naming service
libnss-ldap - NSS module for using LDAP as a naming service
libnss-ldapd - NSS module for using LDAP as a naming service

IIRC (but you probably want to check this), the latter is more
actively maintained than the former.

