On Fri, 26 Oct 2018 14:25:52 +0200 Corrado Ravinetto via samba <samba at lists.samba.org> wrote:> > > Il 26/10/2018 14:03, Rowland Penny via samba ha scritto: > > ldbsearch -Hldap://$(hostname -s) -k yes -P > > '(&(samaccountname=Domain Users)(gidNumber=*))' gidNumber | grep > > gidNumber | awk '{print $NF}' > > [root at dc1 ~]# wbinfo --group-info='domain users' > LXCERRUTI\domain users:x:100: > [root at dc1 ~]# ldbsearch -H ldap://$(hostname -s) -k yes -P > '(&(samaccountname=Domain Users)(gidNumber=*))' gidNumber | grep > gidNumber | awk '{print $NF}' > [root at dc1 ~]# > > nothing :-( >Then either you do not have the ldb-tools package installed or Domain users does not have a gidNumber attribute. Lets step back a bit, you upgraded from a PDC, is this correct ? Please post the smb.conf from the PDC. Rowland
Il 26/10/2018 14:49, Rowland Penny via samba ha scritto:> Please post the smb.conf from the PDC.[global] workgroup = LXCERRUTI netbios name = SRVCERRUTI server string = Samba PDC - Versione %v passwd program = /usr/bin/passwd %u passwd chat = *New*UNIX*password* %n\n *Retype*new*UNIX*password* %n\n *passwd:*all*authentication*tokens*update*successfully* lanman auth = Yes smb ports = 139 socket options = TCP_NODELAY IPTOS_LOWDELAY SO_SNDBUF=8192 SO_RCVBUF=8192 printcap name = cups add machine script = /usr/sbin/useradd -d /dev/null -g machines -s /bin/false -M %u logon script = %U.bat logon path logon drive = Z: logon home domain logons = Yes os level = 64 preferred master = Yes domain master = Yes idmap config * : backend = tdb hide unreadable = Yes -- *Corrado Ravinetto * Sistemi informativi corrado.ravinetto at lanificiocerruti.com <mailto:corrado.ravinetto at lanificiocerruti.com> T: +39 015 3591283 Lanificio F.lli CERRUTI *Lanificio F.lli Cerruti S.p.A. * Via Cernaia 40, 13900 - Biella (BI) Italy www.lanificiocerruti.com <http://www.lanificiocerruti.com/> Twitter <https://twitter.com/Lan_Cerruti> Facebook <https://www.facebook.com/LanificioCerruti> Instagram <https://www.instagram.com/lanificiocerruti/> Rispetta l'ambiente, non stampare questa mail se non necessario Respect the environment, don't print unless necessary
On Fri, 26 Oct 2018 15:09:35 +0200 Corrado Ravinetto via samba <samba at lists.samba.org> wrote:> > > Il 26/10/2018 14:49, Rowland Penny via samba ha scritto: > > Please post the smb.conf from the PDC. > > [global] > workgroup = LXCERRUTI > netbios name = SRVCERRUTI > server string = Samba PDC - Versione %v > passwd program = /usr/bin/passwd %u > passwd chat = *New*UNIX*password* %n\n > *Retype*new*UNIX*password* %n\n > *passwd:*all*authentication*tokens*update*successfully* > lanman auth = Yes > smb ports = 139 > socket options = TCP_NODELAY IPTOS_LOWDELAY SO_SNDBUF=8192 > SO_RCVBUF=8192 > printcap name = cups > add machine script = /usr/sbin/useradd -d /dev/null -g > machines -s /bin/false -M %u > logon script = %U.bat > logon path > logon drive = Z: > logon home > domain logons = Yes > os level = 64 > preferred master = Yes > domain master = Yes > idmap config * : backend = tdb > hide unreadable = Yes > > >There isn't anything strange there. Did you test the upgrade process in a separate network ? Did you carry out the upgrade on the original PDC or on a new computer ? You say you compiled Samba yourself, was an earlier OS version of Samba installed and if so, did you alter $PATH so your your new Samba was found first ? Did you check for duplicate SID's ? Did you check if any of your users had a RID less than '1000' ? Did you check for usernames that were also being used as group names. If this was a new computer, did you transfer all the old databases from the old PDC to the new computer ? Did you run the upgrade as 'root' ? Was the output from the upgrade similar to the example on the wiki page, without errors ? Rowland