On Mon, 5 Nov 2018 10:28:31 +0100 Corrado Ravinetto via samba <samba at lists.samba.org> wrote:> Hello > > Il 31/10/2018 17:35, Corrado Ravinetto via samba ha scritto: > > ok, sorry, are all AD users > i taked out id map in smb.conf, but when i connect with a client in > log.smbd: > > [2018/11/05 10:20:29.489762, 0] > ../source3/smbd/uid.c:386(change_to_user_internal) > change_to_user_internal: chdir_current_service() failed! > > > any idea ??? > >OK, you classicupgraded 3.6.x to 4.9.1, by this I take it you mean you have upgraded a PDC to an AD DC, is this correct ? What OS are you using ? What Samba packages are you using, or have you compiled Samba yourself ? If you are using Samba Packages, which ones did you install ? If you compiled Samba yourself, did you create the libnss_winbind links ? Rowland
Il 05/11/2018 10:54, Rowland Penny via samba ha scritto:> OK, you classicupgraded 3.6.x to 4.9.1, by this I take it you mean you > have upgraded a PDC to an AD DC, is this correct ?yes, is correct> > What OS are you using ?centos 7.5 x86_64> What Samba packages are you using, or have you compiled Samba yourself ?compiled from source from samba.org, 4.9.1 stable> If you are using Samba Packages, which ones did you install ? > If you compiled Samba yourself, did you create the libnss_winbind > links ?yes i have created link, my smb.conf from testparm : [global] passdb backend = samba_dsdb realm = LXCERRUTI.COM server role = active directory domain controller winbind use default domain = Yes workgroup = LXCERRUTI rpc_server:tcpip = no rpc_daemon:spoolssd = embedded rpc_server:spoolss = embedded rpc_server:winreg = embedded rpc_server:ntsvcs = embedded rpc_server:eventlog = embedded rpc_server:srvsvc = embedded rpc_server:svcctl = embedded rpc_server:default = external winbindd:use external pipes = true idmap config * : backend = tdb map archive = No vfs objects = dfs_samba4 acl_xattr -- *Corrado Ravinetto *
On Mon, 5 Nov 2018 11:11:59 +0100 Corrado Ravinetto via samba <samba at lists.samba.org> wrote:> > > Il 05/11/2018 10:54, Rowland Penny via samba ha scritto: > > OK, you classicupgraded 3.6.x to 4.9.1, by this I take it you mean > > you have upgraded a PDC to an AD DC, is this correct ? > yes, is correct > > > > What OS are you using ? > centos 7.5 x86_64 > > What Samba packages are you using, or have you compiled Samba > > yourself ? > compiled from source from samba.org, 4.9.1 stable > > If you are using Samba Packages, which ones did you install ? > > If you compiled Samba yourself, did you create the libnss_winbind > > links ? > yes i have created link, > my smb.conf from testparm : > > [global] > passdb backend = samba_dsdb > realm = LXCERRUTI.COM > server role = active directory domain controller > winbind use default domain = Yes > workgroup = LXCERRUTI > rpc_server:tcpip = no > rpc_daemon:spoolssd = embedded > rpc_server:spoolss = embedded > rpc_server:winreg = embedded > rpc_server:ntsvcs = embedded > rpc_server:eventlog = embedded > rpc_server:srvsvc = embedded > rpc_server:svcctl = embedded > rpc_server:default = external > winbindd:use external pipes = true > idmap config * : backend = tdb > map archive = No > vfs objects = dfs_samba4 acl_xattr > >You might as well remove the line 'winbind use default domain = Yes', it does nothing on a DC. I would also add 'idmap_ldb:use rfc2307 = yes' When you run 'getent passwd username' does it produce output ? If so, does it produce the output you expect ? How are you starting Samba ? Rowland