i was able to successfully joined the linux machine ie. RHEL 3 to windows 2003 domain and able to pull the AD users and groups using wbinfo -u and wbinfo -g command. Am trying to authenticate the AD user using radtest, a command tool used in freeradius to authenticate the user logon credentials. It rejects AD user logon credentials. I have linux nis server running under same subnet. This machine is binded to this linux NIS domain and joined to windows 2003 domain. Here is my nsswitch.conf file. passwd: files winbind nis dns shadow: files nis dns group: files winbind nis dns #hosts: db files nisplus nis dns hosts: files dns winbind nis Also i tried removing it from linux nis domain and running only with winbind service, it didnt help me. Here is the log file i found about winbind service. winbindd[16208]: [2006/08/28 10:57:31, 0] nsswitch/winbindd_util.c:winbindd_param_init(560) winbindd[16208]: winbindd: idmap uid range missing or invalid winbindd[16208]: [2006/08/28 10:57:31, 0] nsswitch/winbindd_util.c:winbindd_param_init(561) winbindd[16208]: winbindd: cannot continue, exiting. winbind: winbindd startup succeeded I have another linux machine running good with the same error message. could someone throw some light to resolve my issue.
Show us your smb.conf. David David Shapiro Distributed Systems Unix Team Lead office: 919-765-2011 cellphone: 730-0538>>> "Karthik R" <kartthikr@gmail.com> 8/28/2006 2:00 PM >>>i was able to successfully joined the linux machine ie. RHEL 3 to windows 2003 domain and able to pull the AD users and groups using wbinfo -u and wbinfo -g command. Am trying to authenticate the AD user using radtest, a command tool used in freeradius to authenticate the user logon credentials. It rejects AD user logon credentials. I have linux nis server running under same subnet. This machine is binded to this linux NIS domain and joined to windows 2003 domain. Here is my nsswitch.conf file. passwd: files winbind nis dns shadow: files nis dns group: files winbind nis dns #hosts: db files nisplus nis dns hosts: files dns winbind nis Also i tried removing it from linux nis domain and running only with winbind service, it didnt help me. Here is the log file i found about winbind service. winbindd[16208]: [2006/08/28 10:57:31, 0] nsswitch/winbindd_util.c:winbindd_param_init(560) winbindd[16208]: winbindd: idmap uid range missing or invalid winbindd[16208]: [2006/08/28 10:57:31, 0] nsswitch/winbindd_util.c:winbindd_param_init(561) winbindd[16208]: winbindd: cannot continue, exiting. winbind: winbindd startup succeeded I have another linux machine running good with the same error message. could someone throw some light to resolve my issue. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Hi David, Here is the samba configuration: [global] # workgroup = NT-Domain-Name or Workgroup-Name workgroup = DC1 realm = DC1.SE.COM <http://dc1.se.com/> server string = Samba_server1 ; hosts allow = 192.168.1. 192.168.2. 127. printcap name = /etc/printcap load printers = yes cups options = raw /etc/passwd log file = /var/log/samba/%m.log max log size = 50 security = ADS password server = 10.40.1.1 encrypt passwords = yes socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 /etc/nsswitch.conf dns proxy = no #============================ Share Definitions ============================= # separate domain and username with '\', like DOMAIN\username #winbind separator = \ # use uids from 10000 to 20000 for domain users idmap uid = 10000-20000 # use gids from 10000 to 20000 for domain groups idmap gid = 10000-20000 # allow enumeration of winbind users and groups winbind enum users = yes winbind enum groups = yes [printers] comment = All Printers path = /var/spool/samba browseable = no # Set public = yes to allow user 'guest account' to print guest ok = no writable = no printable = yes Thanks, Kartthik