[Samba] samba4 as ADS member: some users visible, others not
Stefan G. Weichinger
lists at xunil.at
Tue Dec 29 18:16:14 UTC 2015
in the same ADS I have another member server with Samba-3.6.25
[global]
workgroup = CUSTOMER
realm = MY.CUSTOMER
server string = backup
security = ADS
map to guest = Bad User
printcap name = /dev/null
os level = 65
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
idmap config * : range = 1000-29999
idmap config * : backend = tdb
# nsswitch.conf
passwd: compat winbind
shadow: compat
group: compat winbind
this one gives me all users with "getent passwd" !
For the 4.x server I now tried:
[global]
workgroup = CUSTOMER
realm = MY.CUSTOMER
server string =
security = ADS
map to guest = Bad User
username map = /etc/samba/smbusers
map untrusted to domain = Yes
load printers = No
printcap name = /dev/null
disable spoolss = Yes
template shell = /bin/bash
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
idmap config * : range = 1000-29999
idmap config * : backend = tdb
printing = bsd
level2 oplocks = No
And now it works here as well!
We will see if it stays this way ;-)
Thanks, Stefan
More information about the samba
mailing list