[Samba] Setting Samba as a Domain Member

Tom kleyoneo at hotmail.com
Mon Jun 17 09:53:03 UTC 2019


Hello,

I'm setting up Samba as a Domain Member and there is one thing that 
does'nt work.

This is the configuration :

Server 1 : Samba AD DC 4.10.4 and CentOS
Server 2 : File Sharing with Samba 4.8.3 (CentOS package) + winbind

I follow this wiki : 
https://wiki.samba.org/index.php/Setting_up_Samba_as_a_Domain_Member

Server 2 is correctly joined to the domain, wbinfo return good 
informations. But the 'getent passwd DOMAIN\\user01' command doesn't 
return anything. However libnss_winbind is enable.

This is my smb.conf :

----------------------------------------------------------
[global]

workgroup = DOMAIN
realm = DOMAIN.COM
netbios name = SERVER2
server role = member
security = ADS

bind interfaces only = yes
interfaces = lo em1

log level = 3
log file = /var/log/samba/samba.log
max log size = 50


idmap config * : backend = tdb
idmap config * : range = 3000-7999

idmap config DOMAIN:backend = ad
idmap config DOMAIN:schema_mode = rfc2307
idmap config DOMAIN:range = 10000-999999
idmap config DOMAIN:unix_nss_info = yes
idmap config DOMAIN:unix_primary_group = yes

acl allow execute always = yes

vfs objects = acl_xattr
map acl inherit = yes
store dos attributes = yes

encrypt passwords = yes
------------------------------------------------------------

Is there anything I missed ?

Thanks !



More information about the samba mailing list