Web lists-archives.com

[Samba] Ubuntu 18:04 not getting 'home' directory from DC




Hello,

I've been trying to get Ubuntu 18.04 to work with Samba AD, seems I am almost there but am unable to get home directories to mount properly.  The domain join went without a problem but because the default cifs ver changed in Ubuntu to get other Samba shares on a samba file server to mount I had to add to it's smb.conf:

client min protocol = SMB2
client min protocol = SMB3

So I can now mount shares, but home directory will not mount and build on the Ubuntu 18.04 client.  I believe the the issue is this:

On Ubuntu 16.04 client getent passwd kiarar properly gives the DC's home directory setting of:
root@CY-SALES-JM:~# getent passwd 'kiarar'
kiarar:*:10155:10001:Kiara Ratcliff:/mnt/home/kiarar:/bin/sh

On Ubuntu 18.04 client  getent passwd kiarar gives:
root@CY-SALE:~# getent passwd 'kiarar'
kiarar:*:10155:10001::/home/CY/kiarar:/bin/false

So it gets the correct UID and GID but not the login shell or home directory set in the UNIX Attributes tab.

Samba DC version 4.8.2 on Ubuntu 18.04 config:

[global]
        netbios name = CY-DC
        realm = CY.MYDOMAIN.COM
        workgroup = CY
        server role = active directory domain controller
        server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate
        idmap_ldb:use rfc2307 = yes
        idmap config CY:unix_nss_info = yes
        ldap server require strong auth = no
        allow dns updates = nonsecure and secure
        log level = 2
        ntlm auth = yes

# stops cups errors in log file
        load printers = no
        printing = bsd
        printcap name = /dev/null
        disable spoolss = yes

[netlogon]
        path = /var/lib/samba/sysvol/cy.cybernetics.com/scripts
        read only = No

[sysvol]
        path = /var/lib/samba/sysvol
        read only = No

Samba File server version 4.7.4 on Ubuntu 16.04 config:

[global]
        realm = CY.CYBERNETICS.COM
        workgroup = CY
        netbios name = cy-vault
        security = ADS
        server role = member server
        encrypt passwords = yes
        client min protocol = SMB2
        client max protocol = SMB3

        idmap config *:backend = tdb
        idmap config *:range = 2000-9999

        idmap config CY:backend = ad
        idmap config CY:schema_mode = rfc2307
        idmap config CY:range = 10000-99999
        idmap config CY : unix_nss_info = yes

        winbind trusted domains only = no
        winbind use default domain = yes

        vfs objects = acl_xattr
        map acl inherit = Yes
        store dos attributes = Yes

        username map = /etc/samba/user.map

        log level=3
        log file = /var/log/samba/log.%m
       max log size = 500

# Stops cups errors in log file
        load printers = no
        printing = bsd
        printcap name = /dev/null
        disable spoolss = yes

####### User folder for Ubuntu ##########

[home]
    comment = UNIX Home Directories
    path =  /mnt/Filestore/user-folders
    read only = no
    level2 oplocks =no
    oplocks = no
    locking = no
    strict locking = no

Any help?

Bob Thomas


--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba