[Samba] issue with multiple Samba DC and uid/gid assignment.

dahopkins at comcast.net dahopkins at comcast.net
Sun Aug 25 08:06:45 MDT 2013 

Steve and Rowland, 

Thanks! I checked smb.conf on both servers and they are identical except for the netbios name. I still get different uid/gid numbers between the servers with wbinfo, even for accounts such as mine (dhopkins) that have been active for years (previous ldap+samba authentication) The smb.conf for the second server is: 

# Global parameters 
[global] 
workgroup = NEWARKCHARTER 
realm = ncs.k12.de.us 
netbios name = NCSSAMBA1 
server role = active directory domain controller 
idmap_ldb:use rfc2307 = yes 
dns forwarder=10.1.1.10 
allow dns updates=nonsecure and secure 
# server services = +smb -s3fs 
# dcerpc endpoint servers = +winreg +srvsvc 

[netlogon] 
path = /usr/local/samba/var/locks/sysvol/ncs.k12.de.us/scripts 
read only = No 

[sysvol] 
path = /usr/local/samba/var/locks/sysvol 
read only = No 

[Profiles] 
path = /opt/samba/Profiles 
read only = no 

[home] 
path=/home 
read only=no 

I am a little confused about nscd and nslcd. I run nscd. Should I also be running nslcd on the samba 4 DCs? I am using nss-pam-ldapd with nslcd and nscd on my linux LTSP servers and the linux samba4/samba3 file servers but apparently I had a mistaken impression that I shouldn't run these on the domain controllers. I will add them. Finally, for the names, I can use lower case but our prior account naming convention was using the format given and this is the format of many names in the existing ldap database that was used via classicupgrade to provision samba4. If it will cause issues, I'll have to find a way to resolve it. 

Thanks! 
Dave 

----- Original Message -----

From: "steve" <steve at steve-ss.com> 
To: samba at lists.samba.org 
Sent: Sunday, August 25, 2013 6:56:37 AM 
Subject: Re: [Samba] issue with multiple Samba DC and uid/gid assignment. 

On Sat, 2013-08-24 at 23:27 +0000, dahopkins at comcast.net wrote: 
> A quick follow-on ... if I examine the local sam.ldb on the server2 via ldbedit, it appears the information is correct, but wbinfo still reports different numbers: 
> 
Replication OK then. 

> wbinfo -i Test24.User 
> Domain\Test24.User:*:3000134:100::/home/Domain/Test24.User:/bin/false 

idmap_ldb use:rfc2307 = Yes 
nscd not running 
?? 


-- 
To unsubscribe from this list go to the following URL and read the 
instructions: https://lists.samba.org/mailman/options/samba

More information about the samba mailing list