[Samba] IDMAP + GETENT

Edson Tadeu Almeida da Silveira edson.tadeu at gmail.com
Thu Sep 22 22:35:57 UTC 2016 

Hi guys!

I'm looking for a way to solve the problem between my Samba 4.4.4 DC and my
samba 4.3 File Server.

The users and groups ids are not the same in both servers and i can't find
the solution for this.

Can anyone help me?

This is the environment:

DC: Samba 4.4.4
------------------------
smb.conf:

[global]

interfaces = lo eth0

workgroup = DOMAIN

realm = DOMAIN.LOCAL

netbios name = SERVER

server role = active directory domain controller

dns forwarder = 10.x.x.x

allow dns updates = nonsecure

        idmap config *:backend = tdb

        idmap config *:range = 70001-80000

        idmap config DOMAIN:backend = ad

        idmap config DOMAIN:schema_mode = rfc2307

        idmap config DOMAIN:range = 3000000-4000000

        winbind nss info = rfc2307

        winbind trusted domains only = no

        winbind use default domain = yes

        winbind enum users = yes

        winbind enum groups = yes


root at server:/usr/local/src/samba-4.4.6# wbinfo --name-to-sid edsontadeu

S-1-5-21-1058002876-845724780-2777320708-1106 SID_USER (1)


root at server:/usr/local/src/samba-4.4.6# wbinfo --sid-to-uid
S-1-5-21-1058002876-845724780-2777320708-1106

3000019


FILE SERVER: Samba 4.3.6

------------------------
smb.conf

[global]

        workgroup = DOMAIN

        netbios name = FS1

        realm = DOMAIN.LOCAL

        security = domain

        server services = smb winbindd

        encrypt passwords = true

        wins server = 10.x.x.x

        idmap config * : backend = tdb

        idmap config * : range = 70001-80000

        idmap config DOMAIN : backend = ad

        idmap config DOMAIN : schema_mode = rfc2307

        idmap config DOMAIN : range = 3000000-4000000

        winbind nss info = rfc2307

        winbind trusted domains only = no

        winbind use default domain = yes

        winbind enum users = yes

        winbind enum groups = yes

        vfs objects = acl_xattr

        map acl inherit = Yes

        store dos attributes = Yes

        domain master = no

        local master = no

        preferred master = no

        os level = 0

        log level = 2 vfs:7 auth:2 passdb:2


root at fs1:~# wbinfo --name-to-sid edsontadeu

S-1-5-21-1058002876-845724780-2777320708-1106 SID_USER (1)


root at fs1:~# wbinfo --sid-to-uid
S-1-5-21-1058002876-845724780-2777320708-1106

70001


root at fs1:~# id edsontadeu

id: edsontadeu: no such user


root at fs1:~# getent passwd edsontadeu

(NO RESULTS)


root at fs1:~# wbinfo -i edsontadeu

failed to call wbcGetpwnam: WBC_ERR_DOMAIN_NOT_FOUND

Could not get info for user edsontadeu


wbinfo -u and wbinfo -g works well. They give-me all my AD Users.



Thanks all!!


-- 

-------------------------------------------
Edson Tadeu Almeida Silveira
http://sites.google.com/site/edsontadeu/
-------------------------------------------

More information about the samba mailing list