[Samba] New AD user cannot access file share from member server

Viktor Trojanovic viktor at troja.ch
Mon Jun 19 10:38:09 UTC 2017


Here is the DC's smb.conf:


[global]
        workgroup = SAMDOM
        realm = SAMDOM.EXAMPLE.COM
        netbios name = DC
        interfaces = lo br-lxc
        bind interfaces only = Yes
        server role = active directory domain controller
        dns forwarder = 192.168.1.2
        idmap_ldb:use rfc2307 = yes

[netlogon]
        path = /var/lib/samba/sysvol/samdom.example.com/scripts
        read only = No

[sysvol]
        path = /var/lib/samba/sysvol
        read only = No

I'm not sure what you mean by showing you the user's AD object, can you
elaborate?

Samba is running on (Arch) Linux with Kernel 4.11. Clients are Windows 10
with all the latest updates, I'm running the RSAT from there.



On 19 June 2017 at 11:25, Rowland Penny <rpenny at samba.org> wrote:

> On Mon, 19 Jun 2017 11:15:02 +0200
> Viktor Trojanovic <viktor at troja.ch> wrote:
>
> > Thanks for the quick reply, Rowland.
> >
> > I changed the respective line in my member server's smb.conf, and
> > restarted smbd, winbindd, and nmbd.
> >
> > The issue persists. I can access the share with all users except this
> > one.
> >
>
> OK, can you post the smb.conf from the DC and the users AD object.
>
> Also what OS is this ?
>
> Rowland
>


More information about the samba mailing list