thr3ads.net - samba - [Samba] Failed to convert SID to a UID [May 2023]

If this information is useful, please help other people find it:
Share via:

Dale Renton

2023-May-29 15:29 UTC

[Samba] Failed to convert SID to a UID

Hello,

After upgrading a Samba domain member from 4.16.4 to 4.17.5 our shares
stopped working. This is from Rocky Linux 8.7 to 8.8.   The AD domain
controller server is running 4.16.2.  Only error message I see is :

check_account: Failed to convert SID S-1-5-21-..... to a UID
(dom_user[DOMAIN\username]


wbinfo --domain-users
   returns a list of all the users

wbinfo --user-info username
   returns
     failed to call wbcGetpwnam: WBC_ERR_DOMAIN_NOT_FOUND
     Could not get info for user username

net ads testjoin
   returns
     Join is OK


smb.conf :
[global]
    security = ads
    workgroup = DOMAIN
    realm = AD.EXAMPLE.COM
    local master = no
    idmap config *:backend = tdb
    idmap config *:range = 100000-199999
    idmap config DOMAIN:backend = ad
    idmap config DOMAIN:schema_mode = rfc2307
    idmap config DOMAIN:range = 512-99999
    idmap config DOMAIN:unix_nss_info = yes
    idmap config DOMAIN:unix_primary_group = yes
    winbind use default domain = yes
    winbind refresh tickets = yes
    winbind offline logon = yes
    winbind nss info = rfc2307
    kerberos method = system keytab
    dedicated keytab file = /etc/krb5.keytab
    template homedir = /home/%U
    create krb5 conf = no
    map to guest = Bad User


Any thoughts?

Thanks,
Dale

Rowland Penny

2023-May-29 16:02 UTC

head link

[Samba] Failed to convert SID to a UID

On 29/05/2023 16:29, Dale Renton via samba wrote:> Hello,
> 
> After upgrading a Samba domain member from 4.16.4 to 4.17.5 our shares
> stopped working. This is from Rocky Linux 8.7 to 8.8.   The AD domain
> controller server is running 4.16.2.  Only error message I see is :
> 
> check_account: Failed to convert SID S-1-5-21-..... to a UID
> (dom_user[DOMAIN\username]
Not bothered about the SID, but what was the RID ?
Also, does the username end with a '$' ?
> 
> 
> wbinfo --domain-users
>     returns a list of all the users
> 
> wbinfo --user-info username
>     returns
>       failed to call wbcGetpwnam: WBC_ERR_DOMAIN_NOT_FOUND
>       Could not get info for user username
Network problem ?

What else changed ?

Rowland

Possibly Parallel Threads

Search for more reasonably related threads

samba - May 2023 - Failed to convert SID to a UID

[Samba] Failed to convert SID to a UID

[Samba] Failed to convert SID to a UID

Possibly Parallel Threads