Using the latest source for samba (3.0.22) on RHEL4 (32-bit X86), the build
appears to run smoothly. SMBD and NMBD start and seem to run without
problem. However, the following happens when WINBIND is started the
following happens:
<From smbd.log>
[2006/05/16 18:22:23, 0] lib/util.c:smb_panic2(1554)
PANIC: Could not fetch our SID - did we join?
[2006/05/16 18:22:23, 0] lib/util.c:smb_panic2(1562)
BACKTRACE: 6 stack frames:
#0 /opt/samba/sbin/winbindd(smb_panic2+0x1ce) [0xd6bfa3]
#1 /opt/samba/sbin/winbindd(smb_panic+0x1d) [0xd6bdd0]
#2 /opt/samba/sbin/winbindd(init_domain_list+0x7f) [0xd074d1]
#3 /opt/samba/sbin/winbindd(main+0x53c) [0xd012b2]
#4 /lib/tls/libc.so.6(__libc_start_main+0xd3) [0x1a1e23]
#5 /opt/samba/sbin/winbindd [0xcff3c9]
Winbind has died at this point. Any thoughts on the configuration? The
ldap libraries are openldap-2.2.13 and MIT Kerberos 1.3.4. The same also
happens when I upgrade to openldap 2.3.20 libs and hiemdal Kerberos 0.7.2.
Any thoughts?
Build options:
./configure --with-winbind --with-acl-support --with-libsmbclient
--with-smbmount --with-krb5=/usr --with-ldap=/usr --with-ads
--prefix=/opt/samba
I set the ld.so.config file to first include /opt/samba/lib
I replaced the /lib/libnss_winbind.so and /lib/libnss_wins.so libraries with
the new ones from $(SAMBA_SROUCE)/source/nsswitch.
Below is configuration information, this was a running system under 3.0.10
as shipped with RHEL4
Smb.conf (sanitized)
[global]
interfaces = xxx.xxx.xxx.xxx/24 lo
bind interfaces only = yes
workgroup = MY-DOMAIN
netbios name = MY-HOSTNAME
server string = MY-HOSTNAME
log file = /var/log/samba/smbd.log
max log size = 50
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
security = ADS
realm = MY-REALM
password server = *
domain master = no
preferred master = no
dns proxy = no
encrypt passwords = yes
#add user script = /usr/sbin/useradd -g users -s /bin/bash %u
idmap uid = 15000-20000
idmap gid = 15000-20000
winbind use default domain = no
winbind separator = +
template shell = /bin/bash
winbind enum groups = yes
winbind enum users = yes
template homedir = /home/%D/%U
[homes]
comment = Home Directories
browseable = yes
writeable = yes
krb5.conf (sanitized)
[libdefaults]
default_realm = MY-REALM
[realms]
MY-REALM = {
kdc = my-pdc.my-domain.com
}
[domain_realm]
.harttech.com = HARTTECH.COM
harttech.com = HARTTECH.COM
On Tue, May 16, 2006 at 06:34:53PM -0400, Paul Hoehne wrote:> [2006/05/16 18:22:23, 0] lib/util.c:smb_panic2(1554) > > PANIC: Could not fetch our SID - did we join?It would be interesting to see the answer to the question winbind is asking you here. Did you successfully do a net join? Volker -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.samba.org/archive/samba/attachments/20060517/d092e56c/attachment.bin
Net ads join -U<admin>%<passwd> appears to work. The machine is joined to the domain. Is there any way I can verify this through secrets.tdb? Paul -----Original Message----- From: Volker Lendecke [mailto:Volker.Lendecke@SerNet.DE] Sent: Wednesday, May 17, 2006 2:53 AM To: Paul Hoehne Cc: samba@lists.samba.org Subject: Re: [Samba] winbind crashes after clean build of 3.0.22 On Tue, May 16, 2006 at 06:34:53PM -0400, Paul Hoehne wrote:> [2006/05/16 18:22:23, 0] lib/util.c:smb_panic2(1554) > > PANIC: Could not fetch our SID - did we join?It would be interesting to see the answer to the question winbind is asking you here. Did you successfully do a net join? Volker
Thomas Limoncelli
2006-May-17 14:45 UTC
[Samba] winbind crashes after clean build of 3.0.22
Paul Hoehne wrote:> Net ads join -U<admin>%<passwd> appears to work. The machine is joined to > the domain. Is there any way I can verify this through secrets.tdb?"net ads testjoin" should do the trick. -TL
Testjoin returns: "Join is OK" -----Original Message----- From: Thomas Limoncelli [mailto:limoncelli@web.de] Sent: Wednesday, May 17, 2006 10:46 AM To: samba@lists.samba.org Subject: Re: [Samba] winbind crashes after clean build of 3.0.22 Paul Hoehne wrote:> Net ads join -U<admin>%<passwd> appears to work. The machine is joined to > the domain. Is there any way I can verify this through secrets.tdb?"net ads testjoin" should do the trick. -TL