Hello,
After upgrading a Samba domain member from 4.16.4 to 4.17.5 our shares
stopped working. This is from Rocky Linux 8.7 to 8.8. The AD domain
controller server is running 4.16.2. Only error message I see is :
check_account: Failed to convert SID S-1-5-21-..... to a UID
(dom_user[DOMAIN\username]
wbinfo --domain-users
returns a list of all the users
wbinfo --user-info username
returns
failed to call wbcGetpwnam: WBC_ERR_DOMAIN_NOT_FOUND
Could not get info for user username
net ads testjoin
returns
Join is OK
smb.conf :
[global]
security = ads
workgroup = DOMAIN
realm = AD.EXAMPLE.COM
local master = no
idmap config *:backend = tdb
idmap config *:range = 100000-199999
idmap config DOMAIN:backend = ad
idmap config DOMAIN:schema_mode = rfc2307
idmap config DOMAIN:range = 512-99999
idmap config DOMAIN:unix_nss_info = yes
idmap config DOMAIN:unix_primary_group = yes
winbind use default domain = yes
winbind refresh tickets = yes
winbind offline logon = yes
winbind nss info = rfc2307
kerberos method = system keytab
dedicated keytab file = /etc/krb5.keytab
template homedir = /home/%U
create krb5 conf = no
map to guest = Bad User
Any thoughts?
Thanks,
Dale
On 29/05/2023 16:29, Dale Renton via samba wrote:> Hello, > > After upgrading a Samba domain member from 4.16.4 to 4.17.5 our shares > stopped working. This is from Rocky Linux 8.7 to 8.8. The AD domain > controller server is running 4.16.2. Only error message I see is : > > check_account: Failed to convert SID S-1-5-21-..... to a UID > (dom_user[DOMAIN\username]Not bothered about the SID, but what was the RID ? Also, does the username end with a '$' ?> > > wbinfo --domain-users > returns a list of all the users > > wbinfo --user-info username > returns > failed to call wbcGetpwnam: WBC_ERR_DOMAIN_NOT_FOUND > Could not get info for user usernameNetwork problem ? What else changed ? Rowland