[Samba] problems with winbindd in centos 5.6

Dirk Traenapp Dirk.Traenapp at nwowhv.de
Tue Sep 6 04:36:20 MDT 2011

i have set up a fileserver with samba 3.5.11-44 from SerNet on a 64Bit
centos 5.6.

I joined our microsoft domain an everything seems to bee o.k.

But when i change a group membership on the AD side, the mapping on the
linux side is wrong.

For example i have a user "GN" which is member of the group "nwo-ke".
Then i and him to "nwo-k" but this doesn't show up on the linux side.

[root at file1 NWO-IA]# id gn
uid=2273(gn) gid=1513(domänen-benutzer)

Asking the AD everything is O.K.

[root at file1 NWO-IA]# getent group | grep -i nwo-k

Here is my config:


passwd:     files winbind
shadow:     files winbind
group:      files winbind


         workgroup = NWOINT
         realm = NWOWHV.INT
         security = ads
         template homedir = /home/%U
         template shell = /bin/bash
         winbind use default domain = true
         winbind offline logon = false
         winbind cache time = 10
         winbind nested groups = yes
         winbind enum users = yes
         winbind enum groups = yes
         winbind expand groups = 10
         allow trusted domains = yes
         idmap backend = idmap_rid:NWOINT=1000-20000
         idmap uid = 1000-20000
         idmap gid = 1000-20000
         password server = *

Anybody any idea?


Dirk Traenapp

Dirk Traenapp
Nord-West Oelleitung GmbH
Zum Ölhafen 207
26384 Wilhelmshaven

Tel: +49442162364
Fax: +49(0)4421/62-221
Mobil: +4916090522467
Website: http://www.nwowhv.de

Dr. Jörg Niegsch, Wilhelmshaven - Lars Bergmann, Hamburg
Eingetragen beim Amtsgericht Oldenburg unter HRB 130002

More information about the samba mailing list