[Samba] AD client can't connect to share after winbind cache expires [Samba 3.4.12 on Gentoo]
Marc Muehlfeld
samba at marc-muehlfeld.de
Wed May 1 16:01:34 MDT 2013
Hello Matej,
Am 28.04.2013 20:47, schrieb M Z:
> ...
>
> wbinfo -u, wbinfo -g work (list all >30K AD users,groups) also getent
> passwd, group work (list all local and AD users/groups)
>
> ...
>
> So quick summary - I have to issue wbinfo -u to populate winbind cache to
> be able to log in with AD account. After the cache expires, the AD accounts
> can't log in anymore.
>
> smb.conf:
>
> ...
> winbind enum users = yes
> winbind enum groups = yes
What happens if you turn this two off? If you have >30K AD users/groups,
as you wrote, it needs some time to pull this information from your DC.
Maybe this causes your problem.
Regards,
Marc
More information about the samba
mailing list