[Samba] getent passwd works but all wbinfo commands fail
rusking
rusking at live.cn
Wed Sep 24 13:44:45 MDT 2014
Hi,friends.thanks so much for your reply.I don't know what time is it now in
your country, but here in China is about 4 a.m. This question puzzled me
many days without a way. Bellow are the operations and related files
information. Eagerly awaiting for your reply. Thanks.
Domain controller server:MS-Server2008R2
[root at netfolderserver ~]# cat /etc/issue
Red Hat Enterprise Linux Server release 6.3 (Santiago)
Kernel \r on an \m
[root at netfolderserver ~]# service winbind status
winbindd (pid 2944) is running...
[root at netfolderserver ~]# ps -ef | grep samba winbind
root 2944 1 0 03:05 ? 00:00:00 winbindd
root 2946 2944 0 03:05 ? 00:00:00 winbindd
root 3581 2892 0 03:10 pts/1 00:00:00 grep winbind
[root at netfolderserver ~]# net ads join
Enter root's password:
Failed to join domain: failed to lookup DC info for domain 'IAMTEST.COM'
over rpc: Logon failure
[root at netfolderserver ~]# net ads join -U administrator
Enter administrator's password:
Using short domain name -- IAMTEST
Joined 'NETFOLDERSERVER' to realm 'iamtest.com'
[root at netfolderserver ~]# getent passwd
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
……
[root at netfolderserver ~]# getent group
root:x:0:
bin:x:1:bin,daemon
daemon:x:2:bin,daemon
……
cert publishers:*:10010:
domain admins:*:10011:netfolder1,administrator,rusky
[root at netfolderserver ~]# wbinfo -t
could not obtain winbind interface details!
could not obtain winbind domain name!
checking the trust secret for domain (null) via RPC calls failed
Could not check secret
[root at netfolderserver ~]# wbinfo -u
Error looking up domain users
[root at netfolderserver ~]# wbinfo -g
Error looking up domain groups
[root at netfolderserver ~]# testparm /etc/samba/smb.conf
Load smb config files from /etc/samba/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
Processing section "[homes]"
Processing section "[wodewangpan]"
Loaded services file OK.
Server role: ROLE_DOMAIN_MEMBER
Press enter to see a dump of your service definitions
[global]
workgroup = IAMTEST
realm = IAMTEST.COM
server string = netfolder
security = ADS
password server = 10.168.51.183
username map = /etc/samba/smbusers
log file = /var/log/samba/log.%m
max log size = 50000
logon path = \\%L\Profiles\%U
domain master = No
dns proxy = No
wins server = 10.168.51.183
template homedir = /home/share/%U
template shell = /bin/bash
winbind separator = /
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
idmap config * : range = 15000-20000
idmap config * : backend = tdb
idmap config IAMTEST : backend = rid
idmap config IAMTEST : default = yes
idmap config IAMTEST : schema_mode = rfc2307
[homes]
comment = Home Directories
path = /home/share/%U
valid users = IAMTEST.COM\%U, IAMTEST\%U, %U
create mask = 0777
directory mask = 0777
printable = Yes
browseable = No
[wodewangpan]
comment = user
path = /home/share/%U
read only = No
[root at netfolderserver ~]# cat /etc/nsswitch.conf
#
# /etc/nsswitch.conf
#
# An example Name Service Switch config file. This file should be
# sorted with the most-used services at the beginning.
#
# The entry '[NOTFOUND=return]' means that the search for an
# entry should stop if the search in the previous entry turned
# up nothing. Note that if the search failed due to some other reason
# (like no NIS server responding) then the search continues with the
# next entry.
#
# Legal entries are:
#
# nisplus or nis+ Use NIS+ (NIS version 3)
# nis or yp Use NIS (NIS version 2), also called YP
# dns Use DNS (Domain Name Service)
# files Use the local files
# db Use the local database (.db) files
# compat Use NIS on compat mode
# hesiod Use Hesiod for user lookups
# [NOTFOUND=return] Stop searching if not found so far
#
# To use db, put the "db" in front of "files" for entries you want to be
# looked up first in the databases
#
# Example:
#passwd: db files nisplus nis
#shadow: db files nisplus nis
#group: db files nisplus nis
passwd: files winbind
shadow: files winbind
group: files winbind
hosts: files dns wins
#hosts: files dns
# Example - obey only what nisplus tells us...
#services: nisplus [NOTFOUND=return] files
#networks: nisplus [NOTFOUND=return] files
#protocols: nisplus [NOTFOUND=return] files
#rpc: nisplus [NOTFOUND=return] files
#ethers: nisplus [NOTFOUND=return] files
#netmasks: nisplus [NOTFOUND=return] files
bootparams: nisplus [NOTFOUND=return] files
ethers: db files
netmasks: files
networks: files dns
protocols: db files
#protocols: files winbind
rpc: db files
services: db files
#services: files winbind
netgroup: nisplus winbind
#netgroup: files winbind
publickey: nisplus
automount: files nisplus
#automount: files winbind
aliases: files nisplus
--
View this message in context: http://samba.2283325.n4.nabble.com/getent-passwd-works-but-all-wbinfo-commands-fail-tp4673174p4673180.html
Sent from the Samba - General mailing list archive at Nabble.com.
More information about the samba
mailing list