[Samba] wbinfo -i domain_username issue

Alessio Tomelleri atomelleri at arpa.veneto.it
Mon Oct 7 10:07:04 MDT 2013


I'm going to set up a samba4 member server joined in a existing AD
Domain (2003). I don't need a DC controller, but a simply file server
where (mostly) windows client will access to some share. so I'm gonna to


distro is Ubuntu 12.04.03 amd64

I compiled...
./configure --libdir=/lib/x86_64-linux-gnu --with-ads
--with-shared-modules=idmap_ad,pam --enable-old-ctdb

make... make install...
everything was fine.

/usr/local/samba/etc/smb.conf :

   log level = 3

   workgroup = SHORTDOMAIN
   security = ADS
   realm = FQDN_DOMAIN
   encrypt passwords = yes
   password server = fqdn_server1 fqdn_server2

   idmap config *:backend = tdb
   idmap config *:range = 70001-80000
   idmap config SHORTDOMAIN:backend = ad
   idmap config SHORTDOMAIN:schema_mode = rfc2307
   idmap config SHORTDOMAIN:range = 500-40000

   winbind nss info = rfc2307
   winbind trusted domains only = no
   winbind use default domain = yes
   winbind enum users  = yes
   winbind enum groups = yes

   load printers = no
   printing = bsd
   printcap name = /dev/null
   disable spoolss = yes

   path = /dati/test
   read only = no

and  /etc/krb5.conf :

     default = FILE:/var/log/krb5libs.log
     kdc = FILE:/var/log/krb5kdc.log
     admin_server = FILE:/var/log/kadmind.log

     default_realm = FQDN_DOMAIN
     dns_lookup_realm = true
     dns_lookup_kdc = false
     ticket_lifetime = 24h
     forwardable = yes

     pam = {
          debug = false
          ticket_lifetime = 36000
          renew_lifetime = 36000
          forwardable = true
          krb4_convert = false

        kdc = fqdn_server1
        admin_server = fqdn_server1
        default_domain = FQDN_DOMAIN

     .arpa.veneto.it = FQDN_DOMAIN
     arpa.veneto.it = FQDN_DOMAIN

passwd:         files winbind
group:          files winbind

net ads join was fine ...

and here we are...  wbinfo -u and -g are fine

but...    wbinfo -i domain_username  fails  with this error :
failed to call wbcGetpwnam: WBC_ERR_DOMAIN_NOT_FOUND
Could not get info for user domain_username

and   getent passwd  ...show me only local users...

This problem, it seem quite near at 
but I really have to switch this fileserver to DC conf ?!  I'm working
with an idea of  2/3 DC controller (samba4 or w2kx), more other samba4
fileserver (as this)

I tried many times.. re-compiling etc...  I'm bit confused... what am I
missing ?

thx in advance
Alessio Tomelleri

More information about the samba mailing list