[Samba] Is LDAP + Kerberos without Active Directory no longer supported?
Daniel Lakeland
dlakelan at street-artists.org
Thu Apr 13 20:37:40 UTC 2023
On 4/13/23 13:19, Rowland Penny via samba wrote:
>
>
>
>
> What version of Debian were you running ?
> What version of Samba were you running ?
>
> This could be just something as simple as you were running a version
> of Samba <= 4.8.0 and need to install and run winbind.
>
> Rowland
>
>
It would have been probably Debian Testing circa 2019 or something,
let's say it was samba less than 4.8.0.
I now have winbind installed via apt.
If I do
security = ads
It fails to start and says:
[2023/04/13 13:32:37.039004, 0]
../../source3/winbindd/winbindd_util.c:1235(init_domain_list)
Could not fetch our SID - did we join?
if I do
security = user
It starts and says:
[2023/04/13 13:34:06.986150, 3]
../../source3/winbindd/winbindd_util.c:291(add_trusted_domain)
add_trusted_domain: Added domain [BUILTIN] [(null)] [S-1-5-32]
[2023/04/13 13:34:06.986190, 3]
../../source3/winbindd/winbindd_util.c:291(add_trusted_domain)
add_trusted_domain: Added domain [CHIMERA] [(null)]
[S-1-5-21-2096409422-4100730907-3425993654]
[2023/04/13 13:34:06.986522, 3]
../../librpc/rpc/dcesrv_core.c:2619(dcerpc_register_ep_server)
DCERPC endpoint server 'winbind' registered
[2023/04/13 13:34:06.991408, 2]
../../source3/lib/tallocmsg.c:84(register_msg_pool_usage)
Registered MSG_REQ_POOL_USAGE
Where chimera is the hostname of the server.
security = user is the config that used to work before the upgrade.
More information about the samba
mailing list