[Samba] net ads and wbinfo are painfully slow -- but they work
Chris Stankevitz
chrisstankevitz at gmail.com
Tue Jan 31 16:59:02 UTC 2017
I just created a windows domain. it is essentially empty except for a
couple of users and an group policy related to windows update. I then
configured samba to connect using ads.
net ads join took > 5 minutes - but worked fine
net ads testjoin takes ~5 minutes - shows a good join
wbinfo -u takes ~5 minutes and shows the users
During the long wbinfo pause, the log show: "Starting GENSEC sub
mechanism gse-krb5"
I'm using samba 4.2.14 on FreeBSD 10.3. Configuration files printed
below and came from the samba wiki [1]. The network is not connected
to the internet.
Can you tell me what is wrong?
Thank you,
Chris
[1] https://wiki.samba.org/index.php/Setting_up_Samba_as_a_Domain_Member
root at nickel:~ # smbd --version
Version 4.2.14
root at nickel:~ # cat /etc/krb5.conf
[libdefaults]
default_realm = MYDOMAIN.LOCAL
dns_lookup_realm = false
dns_lookup_kdc = true
root at nickel:~ # cat /usr/local/etc/smb4.conf
[global]
security = ADS
workgroup = MYDOMAIN
realm = MYDOMAIN.LOCAL
disable netbios = yes
idmap config * : backend = tdb
idmap config * : range = 3000-19999
username map = /usr/local/etc/user.map
log file = /var/log/samba4/log.%U
log level = 10
include = /usr/local/etc/smb4.%U.conf
store dos attributes = yes
local master = no
directory name cache size = 0
domain master = no
preferred master = no
# Workaround kqueue bug (pcbsd bug 4728, samba 11063)
kernel change notify = no
More information about the samba
mailing list