[2009/11/18 12:41:05, 1] winbindd/idmap.c:438(idmap_init_passdb_domain) Could not init passdb idmap domain [2009/11/18 12:41:05, 1] winbindd/idmap_tdb.c:214(idmap_tdb_load_ranges) idmap uid missing [2009/11/18 12:41:05, 0] winbindd/idmap.c:201(smb_register_idmap_alloc) idmap_alloc module tdb already registered! [2009/11/18 12:41:05, 0] winbindd/idmap.c:149(smb_register_idmap) Idmap module passdb already registered! [2009/11/18 12:41:05, 0] winbindd/idmap.c:149(smb_register_idmap) Idmap module nss already registered! [2009/11/18 12:41:05, 1] winbindd/idmap_tdb.c:214(idmap_tdb_load_ranges) idmap uid missing [2009/11/18 12:41:05, 0] winbindd/idmap_tdb.c:341(idmap_tdb_alloc_init) idmap will be unable to map foreign SIDs: NT_STATUS_UNSUCCESSFUL [2009/11/18 12:41:05, 0] winbindd/idmap.c:589(idmap_alloc_init) ERROR: Initialization failed for alloc backend, deferred! so something is probably misconfigured, but I can't see what. Authentication works (using pam_krb5.so), if only with the correct UID :) Here are the config options of the samba package, in case something is missing: --cache-file=./config.cache \ --with-fhs \ --enable-shared \ --enable-static \ --prefix=/usr \ --sysconfdir=/etc \ --libdir=/usr/lib/samba \ --with-privatedir=/etc/samba \ --with-piddir=/var/run/samba \ --localstatedir=/var \ --with-rootsbindir=/sbin \ --with-pammodulesdir=/lib/security \ --with-pam \ --with-syslog \ --with-utmp \ --with-readline \ --with-pam_smbpass \ --with-libsmbclient \ --with-winbind \ --with-shared-modules=idmap_rid,idmap_ad,idmap_adex,idmap_hash,idmap_ldap,idmap_tdb2 \ --with-automount \ --with-ldap \ --with-ads \ --without-smbmount \ --with-dnsupdate \ --without-libtdb \ --without-libnetapi \ --with-modulesdir=/usr/lib/samba \ --datarootdir=/usr/share \ --datadir=/usr/share/samba \ --with-swatdir=/usr/share/samba/swat \ --with-lockdir=/var/run/samba \ --with-statedir=/var/lib/samba \ --with-cachedir=/var/cache/samba \ --enable-external-libtalloc \ --without-libtalloc \ --with-cifsmount \ --with-cifsupcall \ --with-acl-support \ --with-quotas thanks! -- Timo Aaltonen Systems Specialist IT Services, Helsinki University of Technology