[Samba] Ubuntu 18:04 not getting 'home' directory from DC

Bob Thomas bthomas at cybernetics.com
Tue Jun 19 18:57:17 UTC 2018 

Hello,

I've been trying to get Ubuntu 18.04 to work with Samba AD, seems I am 
almost there but am unable to get home directories to mount properly.  
The domain join went without a problem but because the default cifs ver 
changed in Ubuntu to get other Samba shares on a samba file server to 
mount I had to add to it's smb.conf:

client min protocol = SMB2
client min protocol = SMB3

So I can now mount shares, but home directory will not mount and build 
on the Ubuntu 18.04 client.  I believe the the issue is this:

On Ubuntu 16.04 client getent passwd kiarar properly gives the DC's home 
directory setting of:
root at CY-SALES-JM:~# getent passwd 'kiarar'
kiarar:*:10155:10001:Kiara Ratcliff:/mnt/home/kiarar:/bin/sh

On Ubuntu 18.04 client  getent passwd kiarar gives:
root at CY-SALE:~# getent passwd 'kiarar'
kiarar:*:10155:10001::/home/CY/kiarar:/bin/false

So it gets the correct UID and GID but not the login shell or home 
directory set in the UNIX Attributes tab.

Samba DC version 4.8.2 on Ubuntu 18.04 config:

[global]
         netbios name = CY-DC
         realm = CY.MYDOMAIN.COM
         workgroup = CY
         server role = active directory domain controller
         server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, 
drepl, winbindd, ntp_signd, kcc, dnsupdate
         idmap_ldb:use rfc2307 = yes
         idmap config CY:unix_nss_info = yes
         ldap server require strong auth = no
         allow dns updates = nonsecure and secure
         log level = 2
         ntlm auth = yes

# stops cups errors in log file
         load printers = no
         printing = bsd
         printcap name = /dev/null
         disable spoolss = yes

[netlogon]
         path = /var/lib/samba/sysvol/cy.cybernetics.com/scripts
         read only = No

[sysvol]
         path = /var/lib/samba/sysvol
         read only = No

Samba File server version 4.7.4 on Ubuntu 16.04 config:

[global]
         realm = CY.CYBERNETICS.COM
         workgroup = CY
         netbios name = cy-vault
         security = ADS
         server role = member server
         encrypt passwords = yes
         client min protocol = SMB2
         client max protocol = SMB3

         idmap config *:backend = tdb
         idmap config *:range = 2000-9999

         idmap config CY:backend = ad
         idmap config CY:schema_mode = rfc2307
         idmap config CY:range = 10000-99999
         idmap config CY : unix_nss_info = yes

         winbind trusted domains only = no
         winbind use default domain = yes

         vfs objects = acl_xattr
         map acl inherit = Yes
         store dos attributes = Yes

         username map = /etc/samba/user.map

         log level=3
         log file = /var/log/samba/log.%m
        max log size = 500

# Stops cups errors in log file
         load printers = no
         printing = bsd
         printcap name = /dev/null
         disable spoolss = yes

####### User folder for Ubuntu ##########

[home]
     comment = UNIX Home Directories
     path =  /mnt/Filestore/user-folders
     read only = no
     level2 oplocks =no
     oplocks = no
     locking = no
     strict locking = no

Any help?

Bob Thomas

More information about the samba mailing list