thr3ads.net - samba - [Samba] getent not returning users/groups [Feb 2022]

If this information is useful, please help other people find it:
Share via:

Greg Sloop <gregs@sloop.net>

2022-Feb-25 01:02 UTC

[Samba] getent not returning users/groups

wbinfo -u
or
wbinfo -g
return users and groups from the AD (this is run from the member server)

But getent group/passwd doesn't return any of the groups/users in AD.
More specific queries for a single user or group returns nothing - but no
error either.

nsswitch.conf contains
---
passwd:         compat winbind systemd
group:          compat winbind systemd
---

Does someone have any idea what's wrong? (Or where to really start to
figure it out?)

Andrew Bartlett

2022-Feb-25 01:17 UTC

head link

[Samba] getent not returning users/groups

On Thu, 2022-02-24 at 17:02 -0800, Greg Sloop <gregs--- via samba
wrote:> wbinfo -u
> or
> wbinfo -g
> return users and groups from the AD (this is run from the member
> server)
> 
> But getent group/passwd doesn't return any of the groups/users in AD.
> More specific queries for a single user or group returns nothing -
> but no
> error either.
> 
> nsswitch.conf contains
> ---
> passwd:         compat winbind systemd
> group:          compat winbind systemd
> ---
> 
> Does someone have any idea what's wrong? (Or where to really start to
> figure it out?)
winbind enum users/groups in smb.conf, but that wouldn't explain the
individual lookup failing, so perhaps idmap?

Andrew,

-- 
Andrew Bartlett (he/him)       https://samba.org/~abartlet/
Samba Team Member (since 2001) https://samba.org
Samba Team Lead, Catalyst IT   https://catalyst.net.nz/services/samba

Samba Development and Support, Catalyst IT - Expert Open Source
Solutions

Rowland Penny

2022-Feb-25 08:38 UTC

head link

[Samba] getent not returning users/groups

On Thu, 2022-02-24 at 17:02 -0800, Greg Sloop <gregs--- via samba
wrote:> wbinfo -u
> or
> wbinfo -g
> return users and groups from the AD (this is run from the member
> server)
This shows that AD is working.
> 
> But getent group/passwd doesn't return any of the groups/users in AD.
> More specific queries for a single user or group returns nothing -
> but no
> error either.
> 
This shows that you have something configured incorrectly or that you
haven't installed the winbind nss links. A bit more info would help,
what distro, what packages have you installed, what is the DC and
finally please post your smb.conf from the Unix domain member.

Rowland

Christopher Cox

2022-Feb-25 22:49 UTC

head link

[Samba] getent not returning users/groups

On 2/24/22 19:02, Greg Sloop <gregs--- via samba
wrote:> wbinfo -u
> or
> wbinfo -g
> return users and groups from the AD (this is run from the member server)
> 
> But getent group/passwd doesn't return any of the groups/users in AD.
> More specific queries for a single user or group returns nothing - but no
> error either.
> 
> nsswitch.conf contains
> ---
> passwd:         compat winbind systemd
> group:          compat winbind systemd
Try adding the following to your smb.conf (global):

         winbind enum users = yes
         winbind enum groups = yes

samba - Feb 2022 - getent not returning users/groups

[Samba] getent not returning users/groups

[Samba] getent not returning users/groups

[Samba] getent not returning users/groups

[Samba] getent not returning users/groups