Bob Wyatt
2020-Apr-21  02:26 UTC
[Samba] Samba 4.10.13-1, AIX 7100-05-05 - winbindd not starting
Posted some time ago on 4.6 - updated it to 4.10.13-1 as released by IBM.
Added a Kerberos configuration file, updated smb.conf, changed the startup
order to nmbd first, winbindd next, then smbd.
Now nmbd and smbd start, while winbindd does not.
 
Content from log.winbindd:
[2020/04/18 00:00:17.100243,  0]
../../source3/winbindd/winbindd.c:1731(main)
  winbindd version 4.10.13 started.
  Copyright Andrew Tridgell and the Samba Team 1992-2019
[2020/04/18 00:00:17.201137,  0]
../../source3/winbindd/winbindd_cache.c:3166(initialize_winbindd_cache)
  initialize_winbindd_cache: clearing cache and re-creating with version
number 2
[2020/04/18 00:00:17.240557,  0]
../../source3/winbindd/winbindd_util.c:1257(init_domain_list)
  Could not fetch our SID - did we join?
[2020/04/18 00:00:17.240639,  0]
../../source3/winbindd/winbindd.c:1462(winbindd_register_handlers)
  unable to initialize domain list
 
Content from log.smbd:
[2020/04/18 00:00:17.441496,  0] ../../source3/smbd/server.c:1788(main)
  smbd version 4.10.13 started.
  Copyright Andrew Tridgell and the Samba Team 1992-2019
[2020/04/18 00:00:17.847496,  0]
../../lib/util/become_daemon.c:136(daemon_ready)
  daemon_ready: daemon 'smbd' finished starting up and ready to serve
connections
[2020/04/18 00:00:21.098920,  0]
../../source3/printing/nt_printing.c:249(nt_printing_init)
  nt_printing_init: error checking published printers: WERR_ACCESS_DENIED
 
Content for krb5.conf:
[libdefaults]
        default_realm = BOOST.COM
        dns_lookup_realm = false
        dns_lookup_kdc = true
 
Output from testparm:
Load smb config files from /etc/samba/smb.conf
Loaded services file OK.
Server role: ROLE_DOMAIN_MEMBER
 
Press enter to see a dump of your service definitions
 
# Global parameters
[global]
        deadtime = 15
        dedicated keytab file = /etc/krb5.keytab
        interfaces = lo eth0 172.21.10.2/255.255.0.0
        kerberos method = secrets and keytab
        load printers = No
        local master = No
        log file = /var/log/samba/log.%m
        map to guest = Bad User
        max log size = 100
        realm = BOOST.COM
        security = ADS
        server string = Samba Server Version %v
        username map = /etc/samba/user.map
        winbind refresh tickets = Yes
        winbind use default domain = Yes
        workgroup = BOOST
        idmap config boost : range = 10000 - 11999
        idmap config boost : backend = rid
        idmap config * : range = 20000-20499
        idmap config * : backend = tdb
        case sensitive = Yes
        cups options = raw
        hide dot files = No
        map acl inherit = Yes
        vfs objects = vfs_aixacl2
 
 
[homes]
        browseable = No
        comment = Home Directories
        read only = No
 
[printers]
        browseable = No
        comment = All Printers
        path = /var/spool/samba
        printable = Yes
 
[SEI.BP]
        path = /UVDATA/SEI.II/SEI.BP
        read only = No
 
Questions:
 
1.	Read that smbd wouldn't start without winbindd, starting at 4.9.
Yet it started here without it - is that right?
2.	Wasn't able to test with getent per the wiki for joining as a member
Not a valid AIX command; web suggested using lsgroups and lsusers,
Which only test local name and group resolution. Any other ideas how
it can be tested?
3.	Any suggestions for resolving my issue(s)?
 
Any help would be greatly appreciated!
 
Bob Wyatt
