[Samba] Samba 3 member server connected to Samba 4 DC (using nslcd)

Daniel Müller mueller at tropenklinik.de
Tue Jul 9 04:30:00 MDT 2013

How about post your nslcd-config? This would be a great help for other


EDV Daniel Müller

Leitung EDV
Tropenklinik Paul-Lechler-Krankenhaus
Paul-Lechler-Str. 24
72076 Tübingen

Tel.: 07071/206-463, Fax: 07071/206-499
eMail: mueller at tropenklinik.de
Internet: www.tropenklinik.de
-----Ursprüngliche Nachricht-----
Von: samba-bounces at lists.samba.org [mailto:samba-bounces at lists.samba.org] Im
Auftrag von Chris Alavoine
Gesendet: Montag, 8. Juli 2013 19:13
An: Marc Muehlfeld
Cc: samba at lists.samba.org
Betreff: Re: [Samba] Samba 3 member server connected to Samba 4 DC (using

Hi Marc,

I've had many many problems with Winbind and after a few weeks of dead-ends
I decided to switch to nslcd and everything started working very nicely, so
I haven't looked back.

I've just had a major success on getting getent passwd to work by adding
this to my nslcd.conf:

# users
map passwd uid sAMAccountName
map passwd gidNumber primaryGroupID
map passwd homeDirectory unixHomeDirectory

# groups
map group cn sAMAccountName
map    group  uniqueMember     member

This now lets me see all users and groups via getent. Just doing some more
testing now, but I think this may be fixed.

Typical, you spend all day on something, finally decided to post on samba
lists and then fix it 5 mins later :)

Thanks for the swift reply though!


On 8 July 2013 18:05, Marc Muehlfeld <samba at marc-muehlfeld.de> wrote:

> Hello Chris,
> Am 08.07.2013 18:54, schrieb Chris Alavoine:
>  My problem is that I have a Samba 3 member server (fileserver) that 
> I'm
>> trying to get to get work in this scenario. I've installed nslcd and 
>> am using the following conf file:
> Why don't you use winbind on your member server?
> http://wiki.samba.org/index.**php/Samba4/Domain_Member<http://wiki.sam
> ba.org/index.php/Samba4/Domain_Member>
>  If I then do a "getent group" I get success and can see all the 
> groups,
>> however "getent passwd" fails and I see this in the logs:
>> Jul  8 17:51:46 test-fs-001 nslcd[4587]: [8e1f29] passwd entry 
>> CN=ice,CN=Users,DC=test,DC=**internal,DC=com does not contain uid 
>> value
> Does this account have an "uid" attribute in AD?
> Regards,
> Marc

ACS (Alavoine Computer Services Ltd)
Chris Alavoine
mob +44 (0)7724 710 730
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list