[Samba] getent passwd works but all wbinfo commands fail

Rowland Penny rowlandpenny at googlemail.com
Thu Sep 25 12:07:00 MDT 2014 

On 25/09/14 18:54, rusking wrote:
> Hi,Rowland Penny,thanks your reply. as you said, I have set a range for
> IAMTEST, and use 'schema_mode' with the 'rid' backend. I have changed the
> smb.conf file many times. The problem occured as before. Maybe it's not the
> problem of smb.conf, but others with my linux system or the Primary domain
> control server machine.
> =================================
> realm = IAMTEST.COM
> idmap config IAMTEST : schema_mode = rfc2307
> idmap config IAMTEST : range = 30000-40000
> idmap config IAMTEST : default = yes
> idmap config IAMTEST : backend = rid
> ;idmap config IAMTEST : backend = ad
> idmap config * : backend = tdb
> idmap config * : backend = rid
> idmap backend =tdb
> idmap config * : range = 10000-20000
> idmap uid = 10000-20000
> idmap gid = 10000-20000
> idmap backend = idmap_rid:IAMTEST=10000-200000

Remove the 'idmap uid', 'idmap gid', idmap config IAMTEST  : schema_mode 
= rfc2307', 'idmap backend =tdb' and 'idmap backend = 
idmap_rid:IAMTEST=10000-20000' lines, they are totally un-needed.

I would then suggest you restart the samba daemons and try again, though 
you may have to leave and rejoin the domain.

Rowland
> winbind nss info = rfc2307
> winbind trusted domains only = no
> winbind enum groups = yes
> winbind enum users = yes
> winbind separator = /
> winbind use default domain = yes
> ;winbind rpc only = yes
> template homedir = /home/share/%U
> template shell = /bin/bash
> ======================================
> I don't what's the error means. When I use 'net ads status', it's wrong, but
> 'net ads info' is ok.
> [root at netfolderserver ~]# net ads status
> Enter root's password:
> [2014/09/26 00:43:16.027751,  0] libads/kerberos.c:333(ads_kinit_password)
>    kerberos_kinit_password root at IAMTEST.COM failed: Client not found in
> Kerberos database
> [2014/09/26 00:43:16.041498,  0] libads/kerberos.c:333(ads_kinit_password)
>    kerberos_kinit_password root at IAMTEST.COM failed: Client not found in
> Kerberos database
> [2014/09/26 00:43:16.054947,  0] libads/kerberos.c:333(ads_kinit_password)
>    kerberos_kinit_password root at IAMTEST.COM failed: Client not found in
> Kerberos database
> -bash: idmap: command not found
> [root at netfolderserver ~]# net ads info
> LDAP server: 10.168.51.183
> LDAP server name: citrix-test01.iamtest.com
> Realm: IAMTEST.COM
> Bind Path: dc=IAMTEST,dc=COM
> LDAP port: 389
> Server time: Fri, 26 Sep 2014 00:45:23 CST
> KDC server: 10.168.51.183
> Server time offset: 2
>
>
>
> --
> View this message in context: http://samba.2283325.n4.nabble.com/getent-passwd-works-but-all-wbinfo-commands-fail-tp4673174p4673229.html
> Sent from the Samba - General mailing list archive at Nabble.com.

More information about the samba mailing list