All,
First off I would like to say the book "The Official Samba-3 HowTO and
Reference Guide" is awesome I purchased it off Amazon a couple of weeks
ago. Ok now on to my problem.
I have samba installed and configured and joined the domain no problem.
When I run wbinfo -u I can see my domain users, when I run wbinfo -g I
can see all my domain groups, BUT if I run
/usr/compat/linux/usr/bin/getent passwd I only see a mirror of my
/etc/passwd and do no see the domain users.
Winbind Setup in smb.conf
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind separator = +
winbind use default domain = Yes
On Wednesday 22 September 2004 13:16, Elijah Savage wrote:> All, > > > First off I would like to say the book "The Official Samba-3 HowTO and > Reference Guide" is awesome I purchased it off Amazon a couple of weeks > ago. Ok now on to my problem. > > > I have samba installed and configured and joined the domain no problem. > > When I run wbinfo -u I can see my domain users, when I run wbinfo -g I > can see all my domain groups, BUT if I run > /usr/compat/linux/usr/bin/getent passwd I only see a mirror of my > /etc/passwd and do no see the domain users. > > Winbind Setup in smb.conf > > idmap uid = 10000-20000 > idmap gid = 10000-20000 > winbind separator = + > winbind use default domain = YesDid you edit your nsswitch.conf file to specify winbind as follows: passwd: files winbind shadow: files winbind group: files winbind Just checking! - John T. -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 OpenLDAP by Example, ISBN: 0131488732 Other books in production.
Yes I did edit the nsswitch.conf just as you have it which looks just like the way it does in the book. -----Original Message----- From: samba-bounces+esavage=digitalrage.org@lists.samba.org [mailto:samba-bounces+esavage=digitalrage.org@lists.samba.org] On Behalf Of John H Terpstra Sent: Wednesday, September 22, 2004 3:25 PM To: samba@lists.samba.org Subject: Re: [Samba] Winbindd on FreeBSD 4.10 Help On Wednesday 22 September 2004 13:16, Elijah Savage wrote:> All, > > > First off I would like to say the book "The Official Samba-3 HowTO and> Reference Guide" is awesome I purchased it off Amazon a couple of > weeks ago. Ok now on to my problem. > > > I have samba installed and configured and joined the domain noproblem.> > When I run wbinfo -u I can see my domain users, when I run wbinfo -g I> can see all my domain groups, BUT if I run > /usr/compat/linux/usr/bin/getent passwd I only see a mirror of my > /etc/passwd and do no see the domain users. > > Winbind Setup in smb.conf > > idmap uid = 10000-20000 > idmap gid = 10000-20000 > winbind separator = + > winbind use default domain = YesDid you edit your nsswitch.conf file to specify winbind as follows: passwd: files winbind shadow: files winbind group: files winbind Just checking! - John T. -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 OpenLDAP by Example, ISBN: 0131488732 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
On Wednesday 22 September 2004 13:30, Elijah Savage wrote:> Yes I did edit the nsswitch.conf just as you have it which looks just > like the way it does in the book.Did you stop the nscd service? - John T.> > -----Original Message----- > From: samba-bounces+esavage=digitalrage.org@lists.samba.org > [mailto:samba-bounces+esavage=digitalrage.org@lists.samba.org] On Behalf > Of John H Terpstra > Sent: Wednesday, September 22, 2004 3:25 PM > To: samba@lists.samba.org > Subject: Re: [Samba] Winbindd on FreeBSD 4.10 Help > > On Wednesday 22 September 2004 13:16, Elijah Savage wrote: > > All, > > > > > > First off I would like to say the book "The Official Samba-3 HowTO and > > > > Reference Guide" is awesome I purchased it off Amazon a couple of > > weeks ago. Ok now on to my problem. > > > > > > I have samba installed and configured and joined the domain no > > problem. > > > When I run wbinfo -u I can see my domain users, when I run wbinfo -g I > > > > can see all my domain groups, BUT if I run > > /usr/compat/linux/usr/bin/getent passwd I only see a mirror of my > > /etc/passwd and do no see the domain users. > > > > Winbind Setup in smb.conf > > > > idmap uid = 10000-20000 > > idmap gid = 10000-20000 > > winbind separator = + > > winbind use default domain = Yes > > Did you edit your nsswitch.conf file to specify winbind as follows: > > passwd: files winbind > shadow: files winbind > group: files winbind > > Just checking! > > - John T. > -- > John H Terpstra > Samba-Team Member > Phone: +1 (650) 580-8668 > > Author: > The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556 > Samba-3 by Example, ISBN: 0131472216 > Hardening Linux, ISBN: 0072254971 > OpenLDAP by Example, ISBN: 0131488732 > Other books in production. > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba-- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 OpenLDAP by Example, ISBN: 0131488732 Other books in production.
From: samba-bounces+esavage=digitalrage.org@lists.samba.org [mailto:samba-bounces+esavage=digitalrage.org@lists.samba.org] On Behalf Of John H Terpstra Sent: Wednesday, September 22, 2004 3:38 PM To: samba@lists.samba.org Subject: Re: [Samba] Winbindd on FreeBSD 4.10 Help On Wednesday 22 September 2004 13:30, Elijah Savage wrote:> Yes I did edit the nsswitch.conf just as you have it which looks just > like the way it does in the book.> Did you stop the nscd service?> - John T.That service is not running on my box.> > -----Original Message----- > From: samba-bounces+esavage=digitalrage.org@lists.samba.org > [mailto:samba-bounces+esavage=digitalrage.org@lists.samba.org] On > Behalf Of John H Terpstra > Sent: Wednesday, September 22, 2004 3:25 PM > To: samba@lists.samba.org > Subject: Re: [Samba] Winbindd on FreeBSD 4.10 Help > > On Wednesday 22 September 2004 13:16, Elijah Savage wrote: > > All, > > > > > > First off I would like to say the book "The Official Samba-3 HowTO > > and > > > > Reference Guide" is awesome I purchased it off Amazon a couple of > > weeks ago. Ok now on to my problem. > > > > > > I have samba installed and configured and joined the domain no > > problem. > > > When I run wbinfo -u I can see my domain users, when I run wbinfo -g> > I > > > > can see all my domain groups, BUT if I run > > /usr/compat/linux/usr/bin/getent passwd I only see a mirror of my > > /etc/passwd and do no see the domain users. > > > > Winbind Setup in smb.conf > > > > idmap uid = 10000-20000 > > idmap gid = 10000-20000 > > winbind separator = + > > winbind use default domain = Yes > > Did you edit your nsswitch.conf file to specify winbind as follows: > > passwd: files winbind > shadow: files winbind > group: files winbind > > Just checking! > > - John T. > -- > John H Terpstra > Samba-Team Member > Phone: +1 (650) 580-8668 > > Author: > The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556 > Samba-3 by Example, ISBN: 0131472216 > Hardening Linux, ISBN: 0072254971 > OpenLDAP by Example, ISBN: 0131488732 > Other books in production. > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba-- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 OpenLDAP by Example, ISBN: 0131488732 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Elijah Savage wrote:>All, > > >First off I would like to say the book "The Official Samba-3 HowTO and >Reference Guide" is awesome I purchased it off Amazon a couple of weeks >ago. Ok now on to my problem. > > >I have samba installed and configured and joined the domain no problem. > >When I run wbinfo -u I can see my domain users, when I run wbinfo -g I >can see all my domain groups, BUT if I run >/usr/compat/linux/usr/bin/getent passwd I only see a mirror of my >Try compiling from source, then you don't need to use the linux compatible binaries. You can get it at <http://www.domtools.com/unix/getent.shtml>>/etc/passwd and do no see the domain users. > >Winbind Setup in smb.conf > >idmap uid = 10000-20000 > idmap gid = 10000-20000 > winbind separator = + > winbind use default domain = Yes > > > > >
Winbindd itself runs fine on FreeBSD 4.x, and is a great auth source for
things like Squid, or PAM, but full auto-magic NSS user/group auth isn't
going to happen.
NSS support doesn't really exist in FreeBSD 4.x. There was an
implementation floating around, but you would know if you had installed
it - it would have required some googling, etc to find.. Last I checked it
would not support dynamic modules like Winbind.
Later 5.x versions have NSS and should work in theory, but I haven't done
much in 5.x, so can't say.
Jerry
----- Original Message -----
From: "Elijah Savage" <esavage@digitalrage.org>
To: <samba@lists.samba.org>
Sent: Wednesday, September 22, 2004 3:16 PM
Subject: [Samba] Winbindd on FreeBSD 4.10 Help
All,
First off I would like to say the book "The Official Samba-3 HowTO and
Reference Guide" is awesome I purchased it off Amazon a couple of weeks
ago. Ok now on to my problem.
I have samba installed and configured and joined the domain no problem.
When I run wbinfo -u I can see my domain users, when I run wbinfo -g I
can see all my domain groups, BUT if I run
/usr/compat/linux/usr/bin/getent passwd I only see a mirror of my
/etc/passwd and do no see the domain users.
Winbind Setup in smb.conf
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind separator = +
winbind use default domain = Yes
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
Thank you for the info, I know of someone running the 5.2.1 and is
having the same issues I am, so looks like if I truly want this to work
I must use Linux.
Thank you
-----Original Message-----
From: Jerry Murdock [mailto:jmurdock@itraktech.com]
Sent: Thursday, September 23, 2004 7:39 AM
To: Elijah Savage; samba@lists.samba.org
Subject: Re: [Samba] Winbindd on FreeBSD 4.10 Help
Winbindd itself runs fine on FreeBSD 4.x, and is a great auth source for
things like Squid, or PAM, but full auto-magic NSS user/group auth isn't
going to happen.
NSS support doesn't really exist in FreeBSD 4.x. There was an
implementation floating around, but you would know if you had installed
it - it would have required some googling, etc to find.. Last I checked
it would not support dynamic modules like Winbind.
Later 5.x versions have NSS and should work in theory, but I haven't
done much in 5.x, so can't say.
Jerry
----- Original Message -----
From: "Elijah Savage" <esavage@digitalrage.org>
To: <samba@lists.samba.org>
Sent: Wednesday, September 22, 2004 3:16 PM
Subject: [Samba] Winbindd on FreeBSD 4.10 Help
All,
First off I would like to say the book "The Official Samba-3 HowTO and
Reference Guide" is awesome I purchased it off Amazon a couple of weeks
ago. Ok now on to my problem.
I have samba installed and configured and joined the domain no problem.
When I run wbinfo -u I can see my domain users, when I run wbinfo -g I
can see all my domain groups, BUT if I run
/usr/compat/linux/usr/bin/getent passwd I only see a mirror of my
/etc/passwd and do no see the domain users.
Winbind Setup in smb.conf
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind separator = +
winbind use default domain = Yes
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
Even with linux compatibilty installed it has no nsswitch support? I thought if you installed linux compatibilty then nsswitch support works. -----Original Message----- From: Luke Mewburn [mailto:lukem-samba@mewburn.net] Sent: Wednesday, September 22, 2004 9:55 PM To: Elijah Savage Cc: samba@lists.samba.org Subject: Re: [Samba] Winbindd on FreeBSD 4.10 Help On Wed, Sep 22, 2004 at 03:30:35PM -0400, Elijah Savage wrote: | Yes I did edit the nsswitch.conf just as you have it which looks just | like the way it does in the book. FreeBSD 4.10 doesn't appear to have nsswitch support, at least on the version I have installed under VMware. FreeBSD 5.x should have nsswitch support. The original import of nsswitch into FreeBSD 5.x (from NetBSD) didn't have support for dynamic nsswitch modules, so you couldn't use winbind. I understand that FreeBSD 5.3 has dynamic nsswitch support, but as I've been unable to install 5.3 under VMware I cannot confirm this. Cheers, Luke.
On Thu, Sep 23, 2004 at 07:45:57AM -0400, Elijah Savage wrote: | Even with linux compatibilty installed it has no nsswitch support? I | thought if you installed linux compatibilty then nsswitch support works.> Oh, right; binaries within the Linux compat heirarchy should probablywork if the appropriate Linux libraries are install there too.> At least, that's the theory in NetBSD (and the Linux emulation code inFreeBSD has a common heritage). When I installed this box I specifically installed it for this task and installed linux compatibilty during intstall, the /etc/nsswitch.conf was created and everything. I can join my AD domain as NT4 style but not with ADS which is strange and it works with NT4 style as long as the usernames are local to the samba machine. It was recommended that I run the latest heimdal 0.6.1 so I mad world last night everything went great and I am running the latest 4.10 stable with heimdal 0.6.1 and I get these errors when I try to join the AD domain as ADS. But if I use the rpc join for nt4 style it joins right up I can see all my shares on the samba box and get to them. One good thing out of all this it is on a lab LAN so I am glad I got a chance to test it before trying to implement it. ns1# kinit Administrator@DIGITALRAGE FreeBSD Inc. (luke.digitalrage.org) Kerberos Initialization for "Administrator@DIGITALRAGE" Password: kinit: Can't send request (send_to_kdc) ns1# net ads join -U Administrator%XXXXXX [2004/09/23 07:15:57, 0] libads/kerberos.c:ads_kinit_password(136) kerberos_kinit_password Administrator@DIGITALRAGE.LOCAL failed: Unknown error -1765328228 [2004/09/23 07:15:57, 0] utils/net_ads.c:ads_startup(183) ads_connect: Unknown error -1765328228