[Samba] Samba with Winbind Doesn't See New AD Groups
Bill Riner
bill.riner at gmail.com
Thu Oct 17 19:32:09 UTC 2019
No, the new groups don’t show up using ‘getent group {group_name}’.
> On Oct 16, 2019, at 3:26 PM, Bill Riner <bill.riner at gmail.com> wrote:
>
> [global]
> workgroup = VANDERBILT
> netbios name = mako-smb
> realm = DS.VANDERBILT.EDU <http://ds.vanderbilt.edu/>
> security = ads
> encrypt passwords = yes
> allow trusted domains = No
> idmap config *:backend = tdb
> idmap config *:range = 4000000 - 5000000
> idmap config VANDERBILT : backend = rid
> idmap config VANDERBILT : range = 5000001 - 9000000
> template shell = /bin/bash
> template homedir = /home/%U
> winbind offline logon = false
> #winbind nss info = rfc2307
> winbind trusted domains only = no
> winbind use default domain = yes
> winbind enum users = no
> winbind enum groups = no
> winbind expand groups = 3
> server string = DORS SMB
> log level = 2
> log file = /var/log/samba/log.%m
> max log size = 10000
> passdb backend = tdbsam
> clustering = yes
> unix extensions = yes
>
>
>> On Oct 16, 2019, at 10:24 AM, Bill Riner <bill.riner at gmail.com <mailto:bill.riner at gmail.com>> wrote:
>>
>> We have an issue where new groups that are created in Active Directory are not visible in Samba. Groups that were created more than about one month ago are visible. We’re using clustered Sernet 4.3.9 with winbind (with ID mapping) and CTDB. NSCD is not running. We’ve tried restarting Samba, but still have the issue. The OS is RHEL 6.7 and the kernel is 2.6.32.
>
More information about the samba
mailing list