[Samba] Upgraded to 4.8 - forced to use winbindd - retro how to missing?
Richard Bollinger
rabollinger at gmail.com
Thu Nov 29 17:58:57 UTC 2018
Sad, because that used to work fine (without winbind)... and it seems to
work now only after some magical event occurs.
While I was testing various smb.conf and wbinfo commands, suddenly it
started working... but I don't know what was the triggering event / setting
:-(.
Is there a documented way to force supplemental groups to be recognized
initially / always?
On Wed, Nov 28, 2018 at 5:16 PM Rowland Penny via samba <
samba at lists.samba.org> wrote:
> On Wed, 28 Nov 2018 16:48:09 -0500
> Richard Bollinger <rabollinger at gmail.com> wrote:
>
> > winbind is running and I fixed the ranges. testparm seems happy
> > now. Same result.
> >
> > Any other suggestions?
> >
>
> Well, 'man idmap_nss' says this:
>
> The idmap_nss plugin provides a means to map Unix users and groups to
> Windows accounts.
> This provides a simple means of ensuring that the SID for a Unix user
> named jsmith is reported as the one assigned to DOMAIN\jsmith which is
> necessary for reporting ACLs on files and printers stored on a Samba member
> server.
>
> So, from that, it is possible you are hitting the 'supplementary
> groups are not found unless the user has logged in' feature.
>
> You may never get this to work as you want.
>
> Rowland
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
More information about the samba
mailing list