[Samba] Domain member server not getting updated AD attributes
Rowland Penny
rpenny at samba.org
Sun May 13 11:38:12 UTC 2018
On Sun, 13 May 2018 11:58:52 +0200
Viktor Trojanovic via samba <samba at lists.samba.org> wrote:
> I'm running a pure Samba AD with one Samba AD DC and one member
> server, both on version 4.8.1.
Are you sure AD is working correctly ?
I ask this because there is a bug that comes into play if try to
upgrade a DC to 4.8.0.or 4.8.1 from an earlier version.
> Member Server smb.conf (without shares)
> -------------------------------------
>
> [global]
> idmap config SAMDOM:backend = ad
> idmap config SAMDOM:schema_mode = rfc2307
> idmap config SAMDOM:range = 10000-99999
>
> winbind nss info = rfc2307
This could be your problem,the idmap_config lines changed at 4.6.0, it
should now be:
idmap config SAMDOM:backend = ad
idmap config SAMDOM:schema_mode = rfc2307
idmap config SAMDOM:range = 10000-99999
idmap config SAMDOM : unix_nss_info = yes
You should also remove the 'winbind nss info' line
Then run 'net cache flush' on the Unix domain member'
Rowland
More information about the samba
mailing list