[Samba] Using net ads user to get child domain users on Samba 4.10.7
Rowland penny
rpenny at samba.org
Tue Sep 10 07:18:40 UTC 2019
On 10/09/2019 04:57, Jeremy via samba wrote:
> Hi all,
>
> I have an question about getting child domain users on Samba 4.10.7.
> 1. I have the command net ads search '(objectCategory=trustedDomain)' -P
> and already get the info below:
> objectClass: top
> objectClass: leaf
> objectClass: trustedDomain
> cn: hardware.qsan.ad.com
> distinguishedName: CN=hardware.qsan.ad.com,CN=System,DC=qsan,DC=ad,DC=com
> instanceType: 4
> whenCreated: 20180611041431.0Z
> whenChanged: 20190824083646.0Z
> uSNCreated: 13099
> uSNChanged: 5427247
> showInAdvancedViewOnly: TRUE
> name: hardware.qsan.ad.com
> objectGUID: ed241fe5-a87a-401b-b28a-b553f408f6e9
> trustDirection: 3
> trustPartner: hardware.qsan.ad.com
> trustPosixOffset: 1073741824
> trustType: 2
> trustAttributes: 32
> flatName: HARDWARE
> objectCategory:
> CN=Trusted-Domain,CN=Schema,CN=Configuration,DC=qsan,DC=ad,DC=com
> isCriticalSystemObject: TRUE
> dSCorePropagationData: 16010101000000.0Z
>
> 2. But when i use "net ads user -w hardware.qsan.ad.com -P" can't get any
> users and i'm sure i can ping hardware.qsan.ad.com.
>
> Error messages: ads_connect: No logon servers are currently available to
> service the logon request.
>
> 3. Command for "wbinfo -u" can get users from hardware.qsan.ad.com like
> "HARDWARE/tim".
>
> Could any one help me to figure out this and i'm so grateful.
>
>
> Best Regards
> Jeremy
Never tried this, but '-w' is for the workgroup name and you seem to be
passing a dns name, have you tried it like this:
net ads user -w HARDWARE -P
Rowland
More information about the samba
mailing list