Web lists-archives.com

Re: [Samba] wbinfo --group-info not listed users inside the group




On Thu, 22 Jun 2017 17:44:52 +0300
Dmitriy Merzlov <rxwrxrx@xxxxxxxxx> wrote:

> Hi Rowland,
> 
> I already crosschecked all configuration, according samba wiki,
> recently. This server connected to AD as domain member.
> 
> LOCAL\db_g -- group and other groups are stored in AD
> 
> For example:
> 
> wbinfo --group-info "LOCAL\Field_G"
> LOCAL\field_g:x:1080:
> 
> I checked on another server, which still not updated:
> 
> wbinfo --group-info "LOCAL\Field_G"
> LOCAL\field_g:*:11845:LOCAL\temp.writter1,LOCAL\user1,LOCAL\user2,LOCAL\user3,
> LOCAL\user4
> 
> It's very strange - that now on updated server gid is 1080 instead of
> 11846
> 
> I tried to delete this server from AD and rejoin back with command:
> net ads join -U administrator
> 
> But have the same output.
> 
> Best regards,
> Dmitriy
> 
> 

You posted this was your smb.conf on a Unix domain member:

[global]
        realm = LOCAL.COM
        workgroup = LOCAL
        security = ADS
        idmap config LOCAL : backend = rid
        idmap config LOCAL : range = 10000-1999999
        idmap config * : range = 10000-1999999

Try changing it to this:

[global]
   realm = LOCAL.COM
   workgroup = LOCAL
   security = ADS

   winbind use default domain = yes

   idmap config *:backend = tdb
   idmap config *:range = 2000-9999
   idmap config LOCAL : backend = rid
   idmap config LOCAL : range = 10000-1999999

   vfs objects = acl_xattr
   map acl inherit = Yes
   store dos attributes = Yes

Run 'net cache flush' and then restart smbd, nmbd and winbind

finally run 'getent group db_g'

Rowland

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba