[Samba] upgrade to 3.6.0 Could not fetch our SID - did we join?
David Touzeau
david at touzeau.eu
Sun Sep 18 17:24:53 MDT 2011
Dear
I have upgraded from 3.5.11 to 3.6.0
in old version, Server was connected to an Active Directory and no
problems occurs.
when restarting winbind :
Sep 19 01:17:34 onesys-samba winbindd[4818]: [2011/09/19
01:17:34.326691, 0] winbindd/winbindd_util.c:635(init_domain_list)
Sep 19 01:17:34 onesys-samba winbindd[4818]: Could not fetch our SID -
did we join?
Sep 19 01:17:34 onesys-samba winbindd[4818]: [2011/09/19
01:17:34.326753, 0]
winbindd/winbindd.c:1105(winbindd_register_handlers)
Sep 19 01:17:34 onesys-samba winbindd[4818]: unable to initialize
domain list
But when doing
root at onesys-samba:~# net ads info
LDAP server: 172.25.154.147
LDAP server name: USGFRAD006.USGPeopleFR.int
Realm: USGPEOPLEFR.INT
Bind Path: dc=USGPEOPLEFR,dc=INT
LDAP port: 389
Server time: lun., 19 sept. 2011 01:15:00 CEST
KDC server: 172.25.154.147
Server time offset: -118
root at onesys-samba:~# net ads status display Active Directoy information.
root at onesys-samba:~# net rpc info
Unable to find a suitable server for domain USGPEOPLEFR
here it is the smb.conf
[global]
workgroup = USGPEOPLEFR
netbios name = onesys-samba
server string = %h server
disable netbios =no
strict locking = Auto
sync always = No
getwd cache = Yes
max protocol = NT1
name resolve order =host lmhosts wins bcast
dns proxy = No
wins support = Yes
wins hook = /usr/bin/php5 /usr/share/artica-postfix/exec.samba.wins.php
min protocol = NT1
remote announce = 10.7.61.255/USGPEOPLEFR
syslog = 3
log level = 10
log file = /var/log/samba/log.%m
debug timestamp = yes
follow symlinks = yes
wide links = yes
unix extensions = no
usershare allow guests = no
usershare max shares = 100
usershare owner only = true
usershare path=/var/lib/samba/usershares/data
guest account = nobody
map to guest = Bad Password
template homedir = /home/%U
template shell = /bin/false
enable privileges = yes
os level = 40
ldap passwd sync = no
#WINBINDD *******************************************************
security = ADS
realm = USGPEOPLEFR.INT
idmap config USGPEOPLEFR:backend = rid
idmap config USGPEOPLEFR:read only= yes
idmap config USGPEOPLEFR:range = 100000 - 199999
idmap config USGPEOPLEFR:base_rid = 0
idmap gid = 70000 - 99999
idmap uid = 70000 - 99999
encrypt passwords = Yes
client ntlmv2 auth = Yes
client lanman auth = No
winbind normalize names = Yes
winbind separator = /
winbind use default domain = No
winbind enum users = Yes
winbind enum groups = Yes
winbind nested groups = Yes
winbind nss info = rfc2307
winbind reconnect delay = 30
winbind offline logon = true
winbind cache time = 1800
winbind refresh tickets = true
kerberos method = system keytab
allow trusted domains = Yes
server signing = auto
client signing = auto
lm announce = No
ntlm auth = No
lanman auth = No
preferred master = No
printing = bsd
nt acl support=yes
map acl inherit=yes
acl check permissions=yes
inherit permissions=no
inherit acls=yes
acl map full control=yes
dos filemode=yes
force unknown acl user = no
ldap delete dn = no
passdb backend = ldapsam:ldap://127.0.0.1:389
ldap admin dn = cn=admin,dc=usgpeoplefr,dc=int
ldap suffix = dc=usgpeoplefr,dc=int
ldap group suffix = dc=organizations
ldap user suffix = dc=organizations
ldap machine suffix = ou=Computer,dc=samba,dc=organizations
ldap delete dn = yes
ldap ssl = off
ldap idmap suffix =
ou=idmap,dc=samba,dc=organizations,dc=usgpeoplefr,dc=int
logon path =
logon home =
logon drive =
socket options = TCP_NODELAY IPTOS_LOWDELAY IPTOS_THROUGHPUT
SO_KEEPALIVE SO_RCVBUF=8192 SO_SNDBUF=8192
case sensitive = No
default case = lower
preserve case = yes
short preserve case = yes
wins support = Yes
time server = yes
msdfs root = no
host msdfs = no
Some piece of winbind logs
tdb_validate (validation child): calling tdb_validate_child
[2011/09/19 01:17:34.291428, 10]
lib/tdb_validate.c:68(tdb_validate_child)
tdb_validate_child: tdb /var/lib/samba/winbindd_cache.tdb freelist has
1 entries
[2011/09/19 01:17:34.291479, 10]
winbindd/winbindd_cache.c:3979(validate_cache_version)
validate_cache_version: WINBINDD_CACHE_VERSION ok
[2011/09/19 01:17:34.291532, 10]
winbindd/winbindd_cache.c:3938(validate_trustdomcache)
validate_trustdomcache: TRUSTDOMCACHE/USGPEOPLEFR ok
Don't trust me, I am a DUMMY!
[2011/09/19 01:17:34.291566, 10]
lib/tdb_validate.c:81(tdb_validate_child)
tdb_validate_child: tdb /var/lib/samba/winbindd_cache.tdb is good with
2 entries
[2011/09/19 01:17:34.291588, 10]
lib/tdb_validate.c:85(tdb_validate_child)
tdb_validate_child: summary of validation status:
* tdb error: no
* bad freelist: no
* bad entry: no
* unknown key: no
=> overall success: yes
[2011/09/19 01:17:34.292016, 10] lib/tdb_validate.c:155(tdb_validate)
tdb_validate: validating child returned.
[2011/09/19 01:17:34.292049, 10] lib/tdb_validate.c:158(tdb_validate)
tdb_validate: child exited, code 0.
[2011/09/19 01:17:34.292069, 5] lib/tdb_validate.c:179(tdb_validate)
tdb_validate returning code '0' for tdb
'/var/lib/samba/winbindd_cache.tdb'
[2011/09/19 01:17:34.292095, 1]
lib/tdb_validate.c:476(tdb_validate_and_backup)
tdb '/var/lib/samba/winbindd_cache.tdb' is valid
[2011/09/19 01:17:34.292167, 5]
lib/tdb_validate.c:373(rename_file_with_suffix)
moved '/var/lib/samba/winbindd_cache.tdb.bak' to
'/var/lib/samba/winbindd_cache.tdb.bak.old'
[2011/09/19 01:17:34.292397, 10] lib/tdb_validate.c:328(tdb_backup)
tdb_backup: successfully copied 2 entries
[2011/09/19 01:17:34.325982, 1]
lib/tdb_validate.c:486(tdb_validate_and_backup)
Created backup '/var/lib/samba/winbindd_cache.tdb.bak' of tdb
'/var/lib/samba/winbindd_cache.tdb'
[2011/09/19 01:17:34.326027, 10]
winbindd/winbindd_cache.c:4123(winbindd_validate_cache)
winbindd_validate_cache: restoring panic function
[2011/09/19 01:17:34.326119, 10]
lib/dbwrap_tdb.c:102(db_tdb_fetch_locked)
Locking key D2120000FFFFFFFF
[2011/09/19 01:17:34.326183, 10]
lib/dbwrap_tdb.c:131(db_tdb_fetch_locked)
Allocated locked data 0x0x21c3e90
[2011/09/19 01:17:34.326221, 10]
lib/dbwrap_tdb.c:44(db_tdb_record_destr)
Unlocking key D2120000FFFFFFFF
[2011/09/19 01:17:34.326258, 5] lib/messages.c:300(messaging_register)
Overriding messaging pointer for type 1 - private_data=(nil)
[2011/09/19 01:17:34.326375, 10]
winbindd/winbindd_cache.c:4468(wcache_tdc_add_domain)
wcache_tdc_add_domain: Adding domain BUILTIN (), SID S-1-5-32, flags =
0x0, attributes = 0x0, type = 0x0
[2011/09/19 01:17:34.326411, 10]
winbindd/winbindd_cache.c:4277(pack_tdc_domains)
pack_tdc_domains: Packing 1 trusted domains
[2011/09/19 01:17:34.326437, 10]
winbindd/winbindd_cache.c:4296(pack_tdc_domains)
pack_tdc_domains: Packing domain BUILTIN ()
[2011/09/19 01:17:34.326466, 10]
winbindd/winbindd_util.c:210(add_trusted_domain)
idmap config BUILTIN : range = not defined
[2011/09/19 01:17:34.326487, 2]
winbindd/winbindd_util.c:233(add_trusted_domain)
Added domain BUILTIN S-1-5-32
[2011/09/19 01:17:34.326527, 10]
winbindd/winbindd_cache.c:4468(wcache_tdc_add_domain)
wcache_tdc_add_domain: Adding domain ONESYS-SAMBA (), SID
S-1-5-21-1638388838-4721671-2614886730, flags = 0x0, attributes = 0x0,
type = 0x0
[2011/09/19 01:17:34.326562, 10]
winbindd/winbindd_cache.c:4277(pack_tdc_domains)
pack_tdc_domains: Packing 2 trusted domains
[2011/09/19 01:17:34.326587, 10]
winbindd/winbindd_cache.c:4296(pack_tdc_domains)
pack_tdc_domains: Packing domain BUILTIN ()
[2011/09/19 01:17:34.326608, 10]
winbindd/winbindd_cache.c:4296(pack_tdc_domains)
pack_tdc_domains: Packing domain ONESYS-SAMBA ()
[2011/09/19 01:17:34.326640, 10]
winbindd/winbindd_util.c:210(add_trusted_domain)
idmap config ONESYS-SAMBA : range = not defined
[2011/09/19 01:17:34.326661, 2]
winbindd/winbindd_util.c:233(add_trusted_domain)
Added domain ONESYS-SAMBA S-1-5-21-1638388838-4721671-2614886730
[2011/09/19 01:17:34.326691, 0]
winbindd/winbindd_util.c:635(init_domain_list)
Could not fetch our SID - did we join?
[2011/09/19 01:17:34.326753, 0]
winbindd/winbindd.c:1105(winbindd_register_handlers)
unable to initialize domain list
More information about the samba
mailing list