Hi the list (again)
Got a pretty major issue now
Did the samba link to AD on a couple of redhat es3 servers using samba
3.0.14a
Everything seems ok
Except when I do a getent passwd username
Server 3
getent passwd ross
ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false
Server 2
getent passwd ross
ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false
Server 1
getent passwd ross
ross:x:10195:10000:ross:/home/ACADEMIC/ross:/bin/false
Er... Why does server 1 have username ross as uid 10195?! :)
All have the exact same smb.conf (except netbios name)
Tried restarting all smb on all boxes, doesn't seem to matter
Any ideas?
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind enum users = yes
winbind gid = 10000-20000
winbind enum groups = yes
winbind separator = +
winbind use default domain = yes
Are the same in all smb.conf 's
Thanks again to everyone
Ross
Just added another server and its showing the same and server 3 and 2 ...
It is a case of blatting the tdb's ?
Cheers
Ross
-----Original Message-----
From: samba-bounces+sysrm=stvincent.ac.uk@lists.samba.org
[mailto:samba-bounces+sysrm=stvincent.ac.uk@lists.samba.org] On Behalf Of
Ross McInnes
Sent: 23 August 2005 15:29
To: samba@lists.samba.org
Subject: [Samba] Winbind UID/GID mismatch!!
Hi the list (again)
Got a pretty major issue now
Did the samba link to AD on a couple of redhat es3 servers using samba
3.0.14a Everything seems ok
Except when I do a getent passwd username
Server 3
getent passwd ross
ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false
Server 2
getent passwd ross
ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false
Server 1
getent passwd ross
ross:x:10195:10000:ross:/home/ACADEMIC/ross:/bin/false
Er... Why does server 1 have username ross as uid 10195?! :)
All have the exact same smb.conf (except netbios name)
Tried restarting all smb on all boxes, doesn't seem to matter
Any ideas?
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind enum users = yes
winbind gid = 10000-20000
winbind enum groups = yes
winbind separator = +
winbind use default domain = yes
Are the same in all smb.conf 's
Thanks again to everyone
Ross
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Hi Ross, On Tue, Aug 23, 2005 at 03:29:20PM +0100, Ross McInnes wrote:> Hi the list (again) > > Got a pretty major issue now > > Did the samba link to AD on a couple of redhat es3 servers using samba > 3.0.14a > Everything seems ok > > Except when I do a getent passwd username > > Server 3 > getent passwd ross > ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false > > Server 2 > getent passwd ross > ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false > > Server 1 > getent passwd ross > ross:x:10195:10000:ross:/home/ACADEMIC/ross:/bin/false > > Er... Why does server 1 have username ross as uid 10195?! :)The idmap-mapping (as stored in your local tdbs) assignes uids and gids in the order they were requested on your system. If you want to have unified mapping on all your servers then you must use one of the idmap-modules described here: http://us3.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html Guenther -- G?nther Deschner GPG-ID: 8EE11688 Novell / SUSE LINUX gd@suse.de Samba Team gd@samba.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.samba.org/archive/samba/attachments/20050823/7466df4a/attachment.bin
In a word... "O" :/ I did read that doc before, and didn?t think it would need to apply to me. The problem I have is that the email and file store servers are separate, but by using NFS I am able to over come the issue of "local folders" It was whilst diagnosing a problem I found out about the id mis map :/ Any perticular preference on which method I need to use? Which is better/easier to use/maintain? Many thanks Ross -----Original Message----- From: Guenther Deschner [mailto:gd@samba.org] Sent: 23 August 2005 16:35 To: Ross McInnes Cc: samba@lists.samba.org Subject: Re: [Samba] Winbind UID/GID mismatch!! Hi Ross, On Tue, Aug 23, 2005 at 03:29:20PM +0100, Ross McInnes wrote:> Hi the list (again) > > Got a pretty major issue now > > Did the samba link to AD on a couple of redhat es3 servers using samba > 3.0.14a Everything seems ok > > Except when I do a getent passwd username > > Server 3 > getent passwd ross > ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false > > Server 2 > getent passwd ross > ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false > > Server 1 > getent passwd ross > ross:x:10195:10000:ross:/home/ACADEMIC/ross:/bin/false > > Er... Why does server 1 have username ross as uid 10195?! :)The idmap-mapping (as stored in your local tdbs) assignes uids and gids in the order they were requested on your system. If you want to have unified mapping on all your servers then you must use one of the idmap-modules described here: http://us3.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html Guenther -- G?nther Deschner GPG-ID: 8EE11688 Novell / SUSE LINUX gd@suse.de Samba Team gd@samba.org
Hi the list. Ive read through http://us3.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html and think the idmap_rid way is easy/best for me atm. But it fails to mention exactly how. Ive put the various bits needed in the smb.conf etc wbinfo -u works fine, getent passwd username doesn?t work tho. Googling for more info I then find http://lists.samba.org/archive/samba/2005-January/099451.html , which basically says I need to configure idmap_rid (no mention in the howto) so im left thinking which is correct. I reinstall samba using a new ./configure line. (./configure --prefix=/usr/local/samba --with-shared-modules=idmap_rid --with-ldap --with-ads --with-krb5 --with-pam --with-winbindd) All compiled/installed ok, getent passwd username still doesn?t work :/ Nothing untoward in anylogs. Is it a case of this is working? Is there an easy way to check? Many thanks Ross -----Original Message----- From: samba-bounces+sysrm=stvincent.ac.uk@lists.samba.org [mailto:samba-bounces+sysrm=stvincent.ac.uk@lists.samba.org] On Behalf Of Ross McInnes Sent: 23 August 2005 17:28 To: samba@lists.samba.org Subject: RE: [Samba] Winbind UID/GID mismatch!! In a word... "O" :/ I did read that doc before, and didn?t think it would need to apply to me. The problem I have is that the email and file store servers are separate, but by using NFS I am able to over come the issue of "local folders" It was whilst diagnosing a problem I found out about the id mis map :/ Any perticular preference on which method I need to use? Which is better/easier to use/maintain? Many thanks Ross -----Original Message----- From: Guenther Deschner [mailto:gd@samba.org] Sent: 23 August 2005 16:35 To: Ross McInnes Cc: samba@lists.samba.org Subject: Re: [Samba] Winbind UID/GID mismatch!! Hi Ross, On Tue, Aug 23, 2005 at 03:29:20PM +0100, Ross McInnes wrote:> Hi the list (again) > > Got a pretty major issue now > > Did the samba link to AD on a couple of redhat es3 servers using samba > 3.0.14a Everything seems ok > > Except when I do a getent passwd username > > Server 3 > getent passwd ross > ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false > > Server 2 > getent passwd ross > ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false > > Server 1 > getent passwd ross > ross:x:10195:10000:ross:/home/ACADEMIC/ross:/bin/false > > Er... Why does server 1 have username ross as uid 10195?! :)The idmap-mapping (as stored in your local tdbs) assignes uids and gids in the order they were requested on your system. If you want to have unified mapping on all your servers then you must use one of the idmap-modules described here: http://us3.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html Guenther -- G?nther Deschner GPG-ID: 8EE11688 Novell / SUSE LINUX gd@suse.de Samba Team gd@samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
basicallt you need something like this in your smb.conf idmap backend = idmap_rid:DOMAIN_NAME=1000-100000000 idmap uid = 1000-100000000 idmap gid = 1000-100000000 make sure to delete the tdb database before you start. e.g. rm /var/lib/samba/winbindd_idmap.tdb Stefanos Ross McInnes wrote:> > Hi the list. > > Ive read through > http://us3.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html and > think the idmap_rid way is easy/best for me atm. > But it fails to mention exactly how. Ive put the various bits needed in the > smb.conf etc wbinfo -u works fine, getent passwd username doesn?t work tho. > > Googling for more info I then find > http://lists.samba.org/archive/samba/2005-January/099451.html , which > basically says I need to configure idmap_rid (no mention in the howto) so im > left thinking which is correct. I reinstall samba using a new ../configure > line. (./configure --prefix=/usr/local/samba --with-shared-modules=idmap_rid > --with-ldap --with-ads --with-krb5 --with-pam --with-winbindd) > > All compiled/installed ok, getent passwd username still doesn?t work :/ > > Nothing untoward in anylogs. > > Is it a case of this is working? Is there an easy way to check? > > Many thanks > > Ross > > > -----Original Message----- > From: samba-bounces+sysrm=stvincent.ac.uk@lists.samba.org > [mailto:samba-bounces+sysrm=stvincent.ac.uk@lists.samba.org] On Behalf Of > Ross McInnes > Sent: 23 August 2005 17:28 > To: samba@lists.samba.org > Subject: RE: [Samba] Winbind UID/GID mismatch!! > > In a word... "O" :/ > > I did read that doc before, and didn?t think it would need to apply to me. > > The problem I have is that the email and file store servers are separate, > but by using NFS I am able to over come the issue of "local folders" > > It was whilst diagnosing a problem I found out about the id mis map :/ > > Any perticular preference on which method I need to use? Which is > better/easier to use/maintain? > > Many thanks > > Ross > > -----Original Message----- > From: Guenther Deschner [mailto:gd@samba.org] > Sent: 23 August 2005 16:35 > To: Ross McInnes > Cc: samba@lists.samba.org > Subject: Re: [Samba] Winbind UID/GID mismatch!! > > Hi Ross, > > On Tue, Aug 23, 2005 at 03:29:20PM +0100, Ross McInnes wrote: > >>Hi the list (again) >> >>Got a pretty major issue now >> >>Did the samba link to AD on a couple of redhat es3 servers using samba >>3.0.14a Everything seems ok >> >>Except when I do a getent passwd username >> >>Server 3 >> getent passwd ross >>ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false >> >>Server 2 >>getent passwd ross >>ross:x:10006:10000:ross:/home/ACADEMIC/ross:/bin/false >> >>Server 1 >>getent passwd ross >>ross:x:10195:10000:ross:/home/ACADEMIC/ross:/bin/false >> >>Er... Why does server 1 have username ross as uid 10195?! :) > > > The idmap-mapping (as stored in your local tdbs) assignes uids and gids in > the order they were requested on your system. > > If you want to have unified mapping on all your servers then you must use > one of the idmap-modules described here: > > http://us3.samba.org/samba/docs/man/Samba-HOWTO-Collection/idmapper.html > > Guenther-- =====================================================================Stefanos Karasavvidis Electronic & Computer Engineer, M.Eng. e-mail : sk@isc.tuc.gr Technical University of Crete, Campus Information Systems Center Address: Akrotiri, Chania, 73100 Tel.: Library Buildings (+30) 28210 37352, (+30) 28210 37355, (+30) 28210 37376 Environmental Engineering Buildings (+30) 28210 37766 Fax: (+30) 28210 37571