samba - Nov 2006 - "I have no name!" shown as username

Hello all,
I have setup my gentoo samba server as a domain member server of a
windows 2003 Active Directory Domain using winbind.

I am able to see all the users and groups with wbinfo -u and wbinfo -g
andwbinfo -t does not report any errors.
'Getent passwd' and 'getent group' return local and domain users
and
groups.

My problem is that when I login as a domain user, my prompt changes to
'I have no name!@Solidus', with Solidus being my gentoo box.
In the /etc/pam.d/login and samba files I have specified it to use
system-auth-winbind instead of system-auth.

What could I be doing wrong?
Also I am able to get into the home directory from the network but not
my public share.

Here is a print out of my smb.conf:

[global]
        workgroup = MARKETSCAN
        realm = MARKETSCAN.COM
        server string = %h, Gentoo Samba Server %v
        interfaces = eth0, lo
        bind interfaces only = Yes
        security = ADS
        obey pam restrictions = Yes
        username map = /etc/samba/smbusers
        log level = 5
        log file = /var/log/samba/log.%m
        max log size = 50
        client signing = Yes
        os level = 2
        preferred master = No
        local master = No
        dns proxy = No
        wins server = 10.11.3.177
        ldap ssl = no
        socket address = 10.11.3.210
        idmap uid = 150000-550000
        idmap gid = 150000-550000
        template homedir = /home/MARKETSCAN/%U
        template shell = /bin/bash
        winbind enum users = Yes
        winbind enum groups = Yes

[public]
        comment = Public Volume on %h
        path = /home/samba/public
        valid users = @MARKETSCAN\ggutierrez, @MARKETSCAN\Administrator
        read only = No
        force create mode = 0766
        force directory mode = 0766

[homes]
        comment = Home Folder for %U
        valid users = %D\%S
        read only = No
        force create mode = 0700
        force directory mode = 0700
        browseable = No

Thanks in advance for any help.

Guillermo Gutierrez
Network Administrator
Market Scan Information Systems, Inc
(818) 575-2000 x2017
ggutierrez@marketscan.com

Guillermo Gutierrez wrote:
> Hello all,
> I have setup my gentoo samba server as a domain member server of a
> windows 2003 Active Directory Domain using winbind.
>
> I am able to see all the users and groups with wbinfo -u and wbinfo -g
> andwbinfo -t does not report any errors.
> 'Getent passwd' and 'getent group' return local and domain
users and
> groups.
>
> My problem is that when I login as a domain user, my prompt changes to
> 'I have no name!@Solidus', with Solidus being my gentoo box.
> In the /etc/pam.d/login and samba files I have specified it to use
> system-auth-winbind instead of system-auth.
>
> What could I be doing wrong?
> Also I am able to get into the home directory from the network but not
> my public share.
>
> Here is a print out of my smb.conf:
>
> [global]
>         workgroup = MARKETSCAN
>         realm = MARKETSCAN.COM
>         server string = %h, Gentoo Samba Server %v
>         interfaces = eth0, lo
>         bind interfaces only = Yes
>         security = ADS
>         obey pam restrictions = Yes
>         username map = /etc/samba/smbusers
>         log level = 5
>         log file = /var/log/samba/log.%m
>         max log size = 50
>         client signing = Yes
>         os level = 2
>         preferred master = No
>         local master = No
>         dns proxy = No
>         wins server = 10.11.3.177
>         ldap ssl = no
>         socket address = 10.11.3.210
>         idmap uid = 150000-550000
>         idmap gid = 150000-550000
>         template homedir = /home/MARKETSCAN/%U
>         template shell = /bin/bash
>         winbind enum users = Yes
>         winbind enum groups = Yes
>
> [public]
>         comment = Public Volume on %h
>         path = /home/samba/public
>         valid users = @MARKETSCAN\ggutierrez, @MARKETSCAN\Administrator
>   
Are these "valid users" really groups?  They look more like
'users'.  If
so, remove the "@" and try it out.

Dale
>         read only = No
>         force create mode = 0766
>         force directory mode = 0766
>
> [homes]
>         comment = Home Folder for %U
>         valid users = %D\%S
>         read only = No
>         force create mode = 0700
>         force directory mode = 0700
>         browseable = No
>
> Thanks in advance for any help.
>
> Guillermo Gutierrez
> Network Administrator
> Market Scan Information Systems, Inc
> (818) 575-2000 x2017
> ggutierrez@marketscan.com
>
>

Are you absolutely sure that the winbind daemon is running?  Whenever I've
had problems resolving user/group names from a "member" server,
winbind
was the problem.

Jim
> Hello all,
> I have setup my gentoo samba server as a domain member server of a
> windows 2003 Active Directory Domain using winbind.
>
> I am able to see all the users and groups with wbinfo -u and wbinfo -g
> andwbinfo -t does not report any errors.
> 'Getent passwd' and 'getent group' return local and domain
users and
> groups.
>
> My problem is that when I login as a domain user, my prompt changes to
> 'I have no name!@Solidus', with Solidus being my gentoo box.
> In the /etc/pam.d/login and samba files I have specified it to use
> system-auth-winbind instead of system-auth.
>
> What could I be doing wrong?
> Also I am able to get into the home directory from the network but not
> my public share.
>
> Here is a print out of my smb.conf:
>
> [global]
>         workgroup = MARKETSCAN
>         realm = MARKETSCAN.COM
>         server string = %h, Gentoo Samba Server %v
>         interfaces = eth0, lo
>         bind interfaces only = Yes
>         security = ADS
>         obey pam restrictions = Yes
>         username map = /etc/samba/smbusers
>         log level = 5
>         log file = /var/log/samba/log.%m
>         max log size = 50
>         client signing = Yes
>         os level = 2
>         preferred master = No
>         local master = No
>         dns proxy = No
>         wins server = 10.11.3.177
>         ldap ssl = no
>         socket address = 10.11.3.210
>         idmap uid = 150000-550000
>         idmap gid = 150000-550000
>         template homedir = /home/MARKETSCAN/%U
>         template shell = /bin/bash
>         winbind enum users = Yes
>         winbind enum groups = Yes
>
> [public]
>         comment = Public Volume on %h
>         path = /home/samba/public
>         valid users = @MARKETSCAN\ggutierrez, @MARKETSCAN\Administrator
>         read only = No
>         force create mode = 0766
>         force directory mode = 0766
>
> [homes]
>         comment = Home Folder for %U
>         valid users = %D\%S
>         read only = No
>         force create mode = 0700
>         force directory mode = 0700
>         browseable = No
>
> Thanks in advance for any help.
>
> Guillermo Gutierrez
> Network Administrator
> Market Scan Information Systems, Inc
> (818) 575-2000 x2017
> ggutierrez@marketscan.com
>
>
>

On Monday 20 November 2006 14:35, Guillermo Gutierrez
wrote:
> Yes, you are right "rc-update -s -v" shows nscd, I just don't
use it.
> Can it be used when trying to join a 2k3 domain with using ldap instead
> of winbindd?
Suggest using the official Samba docs re: nscd and winbindd.

As far as joining a domain, I am under the impression that Samba doesn't
even
need to be running for said task; so, unless I'm mistaken, I doubt how
either
would help or hinder in that direction.

Chris