[Samba] Samba4 AD

Sun Feb 7 17:57:36 UTC 2016

Il 07/02/2016 17:18, Alessandro Baggi ha scritto:
> Il 07/02/2016 17:07, Rowland penny ha scritto:
>> On 07/02/16 15:39, Alessandro Baggi wrote:
>>>>>
>>>>
>>>> Follow the information you will find here:
>>>> https://wiki.samba.org/index.php/Setup_Samba_as_an_AD_Domain_Member
>>>>
>>>> Rowland
>>>>
>>>
>>> Thank you Rowland for your answer.
>>> I've ridden this doc, correct me if I'm wrong, but It explain how to
>>> join a domain for workstation/fileserver/other. After configuring and
>>> joining the domain, winbind in nsswitch.conf permit to see other user
>>> on the new member machine. So if you need to set permission you can.
>>>
>>>
>>>
>>> I don't want join a DC from a file-server on separated machine, I want
>>> serve share-resource located on the same machine where AD DC is
>>> configured.
>>> Samba4 can serve as AD DC and file server in the same time?
>>>
>>> It is possible?
>>>
>>>
>>>
>>>
>>
>> The page is written for a domain member, but you can use some of the
>> info on a DC, What you will need to check is if the libnss links are
>> setup and if 'winbind' is in /etc/nsswitch.conf.
>>
>> You may need another file, but we will cross that bridge if and when we
>> come to it.
>>
>> It is not recommended to use the DC as a fileserver, but you will not be
>> the only one who does :-)
>>
>> What OS are you using.
>>
>> Rowland
>>
>>
>
> I'm using Centos7 but with sernet packages.
>
> How to check if libnss links are setup? I've already configure
> nsswitch.conf with winbind but user does not appears using getent.

Problem found. User are seen as local user but not reported on getent 
passwd.
Running getent passwd I get only local user
Running id "domuser" I get user info
Running chown domuser:somedomgr file give right permission.

I don't know where there is the bug (if this is a bug).