[Samba] Samba AD - Issue with winbindd: Could not write result

Rowland Penny rowlandpenny241155 at gmail.com
Tue Sep 1 15:05:20 UTC 2015 

On 01/09/15 15:33, Rafael Domiciano wrote:
> Hi Rowland, thanks for your response.
>
> Both samba is self compiled.
>
> DC 1:
> [root at wdc samba]# uname -a
> Linux wdc 2.6.32-504.23.4.el6.x86_64 #1 SMP Tue Jun 9 20:57:37 UTC 
> 2015 x86_64 x86_64 x86_64 GNU/Linux
>
> [root at wdc samba]# cat /etc/redhat-release
> CentOS release 6.6 (Final)
>
> [root at wdc samba]# cat /etc/resolv.conf
> search DOMAIN
> nameserver 172.16.5.22
> nameserver 172.16.5.1
> nameserver 8.8.8.8
>
> [root at wdc samba]# samba -V
> Version 4.2.3
>
> [root at wdc samba]# cat /etc/krb5.conf
> [libdefaults]
>         default_realm = DOMAIN.COM
>         dns_lookup_realm = false
>         dns_lookup_kdc = true
>
> DC 2:
> [root at bcd samba]# uname -a
> Linux bcd.senffnet 2.6.32-504.3.3.el6.x86_64 #1 SMP Wed Dec 17 
> 01:55:02 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
>
> [root at bcd samba]# cat /etc/redhat-release
> CentOS release 6.6 (Final)
>
> [root at bcd samba]# cat /etc/resolv.conf
> search DOMAIN
> nameserver 172.16.5.1
> nameserver 172.16.5.22
> nameserver 8.8.8.8
>
> [root at bcd samba]# samba -V
> Version 4.2.3
>
> [root at bcd samba]# cat /etc/krb5.conf
> [libdefaults]
>         default_realm = DOMAIN.COM
>         dns_lookup_realm = false
>         dns_lookup_kdc = true
>
>
> About the winbindd I got some perfomance with the following lines, and 
> I could reproduce this in my tests, so in some manner they get 
> processed at some time:
> > winbind use default domain = yes
> > winbind nested groups = false
> > winbind enum users = no
> > winbind enum groups = no
>
> Rafael
>
> ------------------------------------------------------------------------
>

Hmm, again there doesn't seem to be anything really wrong, only 
possibility is the resolv.conf files, I take it that 'search DOMAIN' is 
really 'search domain.com' i.e. DOMAIN is the dns domain name. I also 
take it that the two '172.16.5.x' numbers are the ipaddress of the two 
DCs and each DC points to the other DC first, you do not actually don't 
need the google line, this should be set as a forwarder in named.conf.

The only thing I can think is that you missed installing a package 
before compiling Samba, is this in production ? could you change to the 
Sernet packages ?

Is selinux involved here? have you checked the logs, same goes for any 
firewall you might have installed.

Rowland

More information about the samba mailing list