[Samba] samba4 wbinfo failed to call wbcLookupName: WBC_ERR_DOMAIN_NOT_FOUND.

Rowland Penny rpenny at samba.org
Sat Oct 1 14:28:53 UTC 2016


See inline comments:

On Sat, 1 Oct 2016 11:02:47 -0300 (UYT)
Nicolas Conde via samba <samba at lists.samba.org> wrote:

> Hello. 
> 
> I have installed sernet-samba4 on CentOS 6.7 and provisioned a domain
> "VERDERA.BIZ" and "VERDERA" as workgroup, to which I can add a
> Windows 7 client (tried two times both worked fine). 
> 
> My problem comes with users/groups administration, I cannot add
> neither not even see info on them, look at this: 
> 
> [root at dc1 ~]# wbinfo -u 
> [root at dc1 ~]# wbinfo -g 
> [root at dc1 ~]# wbinfo --all-domains 
> BUILTIN 
> VERDERA 
> [root at dc1 ~]# wbinfo --trusted-domains 
> BUILTIN 
> VERDERA 
> [root at dc1 ~]# wbinfo --name-to-sid Administrator 
> failed to call wbcLookupName: WBC_ERR_DOMAIN_NOT_FOUND 
> Could not lookup name Administrator 
> [root at dc1 ~]# wbinfo -i Administrator 
> failed to call wbcGetpwnam: WBC_ERR_DOMAIN_NOT_FOUND 
> Could not get info for user Administrator 
> 
> And here goes my relevant files: 
> 
> [[smb.conf]] 
> # Global parameters 
> [global] 
> workgroup = VERDERA 
> realm = VERDERA.BIZ 
> netbios name = DC1 
> server role = active directory domain controller 
> dns forwarder = 10.2.118.1 
> winbind enum users = Yes 
> winbind enum groups = Yes 

The line below does not work on a DC:
> winbind use default domain = Yes 

> winbind offline logon = Yes 

Do you need a keytab for something ? 
If not remove the next 4 lines.
> # A ver si anda wbinfo y klist: 
> winbind refresh tickets = Yes 
> dedicated keytab file = /etc/krb5.keytab 
> kerberos method = secrets and keytab
 
> client signing = if_required 
> 
> [netlogon] 
> path = /var/lib/samba/sysvol/verdera.biz/scripts 
> read only = No 
> 
> [sysvol] 
> path = /var/lib/samba/sysvol 
> read only = No 
> 
> [admin] 
> comment = Archivos de la administracion 
> path = /srv/admin

Did you kbow that 'read only = No' and 'writable = Yes' mean the same
thing ?, remove the 'writable' line 
> read only = No 
> writable = Yes 
> 
> [[resolv.conf]] 
> # Generated by NetworkManager 
> search verdera.biz 
> nameserver 10.2.118.20 
> nameserver 10.2.118.1 

What is '10.2.118.20' ??
If it isn't the IP of the DC, this could well be your problem.
Also you shouldn't have the second nameserver line, this is your
forwarder in smb.conf.

> 
> [[nsswitch]] 
> ... 
> passwd: files winbind 
> shadow: files 
> group: files winbind 
> ... 
> 
> My installed packages: 
> 
> [root at dc1 ~]# rpm -qa | grep [s]amba 
> sernet-samba-ad-4.2.14-22.el6.x86_64 
> sernet-samba-client-4.2.14-22.el6.x86_64 
> sernet-samba-libsmbclient0-4.2.14-22.el6.x86_64 
> sernet-samba-common-4.2.14-22.el6.x86_64 
> sernet-samba-winbind-4.2.14-22.el6.x86_64 
> sernet-samba-4.2.14-22.el6.x86_64 
> sernet-samba-libs-4.2.14-22.el6.x86_64 
> 
> I haven't set trusted domains, I even don't know how to do it yet. 
> 
> I need to get this DC up and running ASAP because I'm moving from
> samba3 domain to this. During all week I have been searching the web
> looking for a clue, but so far no success. 
> 
> Thanks in advance. Regards. 

What is in /etc/krb5.conf ?

Have you read the Samba wiki ?

https://wiki.samba.org/index.php/Main_Page

Rowland



More information about the samba mailing list