[Samba] failed to call wbcSidToUid
Rowland Penny
rpenny at samba.org
Mon Mar 5 15:53:56 UTC 2018
On Mon, 5 Mar 2018 16:29:43 +0100
Marcin Kruk via samba <samba at lists.samba.org> wrote:
> I have samba-4.6.2-12.el7_4.x86_64 which is connected to WIndows
> Active Directory Server.
>
> When I use command wbinfo -u
> I can see a list of all users in AD domain
> MYDOMAIN+user1
> MYDOMAIN+user2
At least this shows that winbind knows your AD users.
>
> When I execute
> wbinfo -n user1 or
> wbinfo -n DOMAIN+user
> I get:
> S-1-5-21-... SID_USER (1)
>
> but when I execute
> wbinfo -S SID
> I get:
> Could not convert sid S-1-5-21-... to uid
>
> moreover when I try to chown the directory
> chown "DOMAIN+user1" directory_path
> I get:
> chown: invalid user: 'DOMAIN+user1’
Here we go with 1001th time of saying this ;-)
Just because wbinfo shows your users & groups, doesnt mean your OS
knows who they are.
>
> In the respectively configuration in samba samba-4.4.4-12.el7_3.x86_64
> everything goes ok but configuration is without whole idmap config
> section. Its oldfashion style.
> I do not know mabye "backend = ad" is the problem of this
> configuration. But when I move configuration from the sama 4.4.4-12
> server the problem still exists.
It probably is the 'ad' backend, do your users have a 'uidNumber'
attribute in AD and does 'Domain Users' have a 'gidNumber' attribute ?
These numbers will need to be inside the '1000000-2000000' range you
have set in smb.conf.
Rowland
More information about the samba
mailing list