[Samba] ADS domain member: winbind fails

Stefan G. Weichinger lists at xunil.at
Fri Dec 30 12:54:42 UTC 2016


Am 2016-12-30 um 13:20 schrieb L.P.H. van Belle via samba:
> And in addition to Rowlands comments..
>
>  Correct you hosts file to
> /etc/hosts
> 127.0.0.1       localhost
> # The following lines are desirable for IPv6 capable hosts
> ::1     localhost ip6-localhost ip6-loopback
> ff02::1 ip6-allnodes
> ff02::2 ip6-allrouters
>
> # This server name and ip.
> 10.0.0.221 main.arbeitsgruppe.secret.tld main
> 10.0.0.224 backup.arbeitsgruppe.secret.tld backup
>
>
> Second. Post you resolv.conf that was asked already.
> That should contain something like:
> search arbeitsgruppe.secret.tld
> Server IP_of_DC
>
>
> Remove
> map to guest = Bad User
> from you smb.conf the default is ok.

did all that
restarted the 3 services smbd nmbd winbind

winbindd fails immediately:

Dez 30 13:43:48 main systemd[1]: winbindd.service: Main process exited, 
code=killed, status=6/ABRT
Dez 30 13:43:48 main systemd[1]: winbindd.service: Unit entered failed 
state.
Dez 30 13:43:48 main systemd[1]: winbindd.service: Failed with result 
'signal'.


---

but maybe I have to row back anyway:

editing GPOs via RSAT always kicks us off after a few minutes.
Seems that my DC isn't working correctly yet.

[global]
	workgroup = ARBEITSGRUPPE
	realm = arbeitsgruppe.secret.tld
	server role = active directory domain controller
	passdb backend = samba_dsdb
	dns forwarder = 10.0.0.254
	rpc_server:tcpip = no
	rpc_daemon:spoolssd = embedded
	rpc_server:spoolss = embedded
	rpc_server:winreg = embedded
	rpc_server:ntsvcs = embedded
	rpc_server:eventlog = embedded
	rpc_server:srvsvc = embedded
	rpc_server:svcctl = embedded
	rpc_server:default = external
	winbindd:use external pipes = true
	idmap_ldb:use rfc2307 = yes
	idmap config * : backend = tdb
	map archive = No
	map readonly = no
	store dos attributes = Yes
	vfs objects = dfs_samba4 acl_xattr


we can login with old and new users, we see shares ...

root at backup:~# cat /etc/resolv.conf
search arbeitsgruppe.ikw-amstetten.at
nameserver 10.0.0.224

# host -t SRV _ldap._tcp.backup.arbeitsgruppe.ikw-amstetten.at
Host _ldap._tcp.backup.arbeitsgruppe.ikw-amstetten.at not found: 3(NXDOMAIN)

--> this query has worked before

thanks for any help






More information about the samba mailing list