[Samba] SID always change after reboot
Mai The Chuyen
mtchuyen at nisci.gov.vn
Mon Dec 1 21:56:55 MST 2014
Hello,
I am using samba 4.1
sambaSID in my server alway change a new value after reboot.
What wrong in my config? and How can sambaSID be stable?
Thanks all!
This is my samba server config:
[global]
workgroup = NISCI
netbios name = NISCI
server string = %h server (Samba, SAMBA)
;enable privileges = yes
interfaces = lo eth1
bind interfaces only = yes
passdb backend = ldapsam:ldapi://%2fvar%2frun%2fslapd%2fldapi
ldap ssl = off
log level = 1
syslog = 0
log file = /var/log/samba/idc-smb.%m
max log size = 1000
vfs objects = full_audit
full_audit:success = connect opendir open disconnect unlink
mkdir rmdir rename
full_audit:failure = none
smb ports = 139 1139 445 1445
name resolve order = wins bcast hosts
time server = yes
load printers = no
printing = cups
wins support = yes
ldap suffix = dc=boxAA,dc=boxx,dc=boxx
ldap user suffix = ou=Users
ldap group suffix = ou=Groups
ldap admin dn = cn=ldapadm,dc=boxx,dc=boxx
map acl inherit = yes
security = user
encrypt passwords = yes
obey pam restrictions = no
ldap passwd sync = yes
mangling method = hash2
os level = 65
preferred master = yes
domain master = auto
usershare allow guests = yes
include = /etc/samba/personal.conf
And smbldap.conf:
SID="S-1-5-21-325056222-3979360573-588988473"
sambaDomain="NISCI"
masterLDAP="localhost"
masterPort="389"
slaveLDAP="localhost"
slavePort="10389"
ldapTLS="0"
verify="none"
cafile="/noexist"
clientcert="/noexist"
clientkey="/noexist"
suffix="dc=boxAA,dc=boxx,dc=boxx"
usersdn="ou=Users,${suffix}"
groupsdn="ou=Groups,${suffix}"
sambaUnixIdPooldn="sambaDomainName=${sambaDomain},${suffix}"
scope="sub"
hash_encrypt="SHA"
crypt_salt_format="%s"
userLoginShell="/bin/bash"
userHome="/export/users//%U/"
userHomeDirectoryMode="700"
userGecos="iDragonCloud User"
defaultUserGid="48"
defaultComputerGid="49"
skeletonDir="/etc/skel"
defaultMaxPasswordAge="45"
userSmbHome="\\NISCI\%U"
userProfile="\\NISCI\profiles\%U"
userHomeDrive="H:"
userScript="logon.bat"
mailDomain=""
with_smbpasswd="0"
smbpasswd="/usr/bin/smbpasswd"
with_slappasswd="0"
slappasswd="/usr/sbin/slappasswd"
This my Log:
The primary group domain
sid(S-1-5-21-841725493-689295434-2902749832-513) does not match
the domain sid(S-1-5-21-325056222-3979360573-588988473) for
1162043(S-1-5-21-325056222-3979360573-588988473-5086)
[2014/12/02 09:35:05.546521,
0] ../source3/auth/check_samsec.c:492(check_sam_security)
check_sam_security: make_server_info_sam() failed with
'NT_STATUS_UNSUCCESSFUL'
[2014/12/02 09:35:05.605862,
1] ../source3/auth/server_info.c:346(samu_to_SamInfo3)
The primary group domain
sid(S-1-5-21-841725493-689295434-2902749832-513) does not match
the domain sid(S-1-5-21-325056222-3979360573-588988473) for
1162043(S-1-5-21-325056222-3979360573-588988473-5086)
[2014/12/02 09:35:05.606110,
0] ../source3/auth/check_samsec.c:492(check_sam_security)
check_sam_security: make_server_info_sam() failed with
'NT_STATUS_UNSUCCESSFUL'
[2014/12/02 09:35:05.657556,
1] ../source3/auth/server_info.c:346(samu_to_SamInfo3)
The primary group domain
sid(S-1-5-21-841725493-689295434-2902749832-513) does not match
the domain sid(S-1-5-21-325056222-3979360573-588988473) for
1162043(S-1-5-21-325056222-3979360573-588988473-5086)
[2014/12/02 09:35:05.657801,
0] ../source3/auth/check_samsec.c:492(check_sam_security)
check_sam_security: make_server_info_sam() failed with
'NT_STATUS_UNSUCCESSFUL'
[2014/12/02 09:35:05.709828,
1] ../source3/auth/server_info.c:346(samu_to_SamInfo3)
The primary group domain
sid(S-1-5-21-841725493-689295434-2902749832-513) does not match
the domain sid(S-1-5-21-325056222-3979360573-588988473) for
1162043(S-1-5-21-325056222-3979360573-588988473-5086)
[2014/12/02 09:35:05.710072,
0] ../source3/auth/check_samsec.c:492(check_sam_security)
More information about the samba
mailing list