[Samba] user cannot access shares on new ad-dc

Rowland Penny rpenny at samba.org
Fri Sep 29 14:00:51 UTC 2017

On Fri, 29 Sep 2017 15:42:17 +0200
Klaus Hartnegg via samba <samba at lists.samba.org> wrote:

> > On 29.09.2017 14:32 Rowland Penny wrote:
> > I cannot see where it says not to use on a DC
> I misread the first section.
> > What does 'getent passwd username' actually produce ?
> root at dc1:~# getent passwd administrator
> COMPANY\administrator:*:0:100::/home/COMPANY/administrator:/bin/false
> root at dc1:~# getent passwd klaus
> COMPANY\klaus:*:10000:100::/home/COMPANY/klaus:/bin/false
> > if PAM isn't set up, then set it up by installing the
> > required packages and try again
> Ok, I ran "pam-auth-update" and pressed enter twice.
> Have no idea what this does.
> But is PAM really necessary on a DC?

Yes, if you want to use it as a fileserver

> The Wiki says that winbindd is optional.

Point me to where it says that and if required, I will alter it.

> Should not at least sysvol work without it?

Yes, sysvol will work without it, but sysvol is only used by Windows
clients and users.


More information about the samba mailing list