I recently upgraded to SAMBA 3.0 on several Linux servers. My servers are joined to a child domain that is part of a larger Active Directory forest and I am using ADS security. Some of my users only have accounts in the root Active Directory domain and other users have accounts in our child domain. Since upgrading to SAMBA 3.0 only users with accounts in the child domain can access their home directories via SAMBA (currently the only thing being shared are the home directories). When users from the top level domain try to access things, I get error messages in the logs like: username TOPLEVEL.DOM\joeuser is invalid on this system . This used to work perfectly with SAMBA 2.2.8. I need help! Thanks.
I recently upgraded to SAMBA 3.0 on several Linux servers. My servers are joined to a child domain that is part of a larger Active Directory forest and I am using ADS security. Some of my users only have accounts in the root Active Directory domain and other users have accounts in our child domain. Since upgrading to SAMBA 3.0 only users with accounts in the child domain can access their home directories via SAMBA (currently the only thing being shared are the home directories). When users from the top level domain try to access things, I get error messages in the logs like: username TOPLEVEL.DOM\joeuser is invalid on this system . This used to work perfectly with SAMBA 2.2.8. I need help! Thanks.
Gerald (Jerry) Carter
2003-Oct-06 16:24 UTC
[Samba] SAMBA 3.0 and AD Forrest - username is invalid
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 James Trater wrote: | I recently upgraded to SAMBA 3.0 on several Linux servers. My servers | are joined to a child domain that is part of a larger Active Directory | forest and I am using ADS security. Some of my users only have accounts | in the root Active Directory domain and other users have accounts in our | child domain. Since upgrading to SAMBA 3.0 only users with accounts in | the child domain can access their home directories via SAMBA (currently | the only thing being shared are the home directories). When users from | the top level domain try to access things, I get error messages in the | logs like: username TOPLEVEL.DOM\joeuser is invalid on this system . | This used to work perfectly with SAMBA 2.2.8. Please look at the logs and see if it is the authentication that is failing or the winbindd_getpwnam() call. Also look for any name resolution errors in log.winbindd. cheers, jerry ~ ---------------------------------------------------------------------- ~ Hewlett-Packard ------------------------- http://www.hp.com ~ SAMBA Team ---------------------- http://www.samba.org ~ GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc ~ "You can never go home again, Oatman, but I guess you can shop there." ~ --John Cusack - "Grosse Point Blank" (1997) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE/gZdXIR7qMdg1EfYRAg/GAJ0WqyXCQk3OGqSghB27/eJazwHSrwCgnv59 btBDHIIBVAnUsYV+RO8X7O8=maR8 -----END PGP SIGNATURE-----