Web lists-archives.com

Re: [Samba] winbind causing huge timeouts/delays since 4.8




Am 24.02.2019 um 16:42 schrieb Rowland Penny via samba <samba@xxxxxxxxxxxxxxx>:
> On Sun, 24 Feb 2019 15:58:39 +0100 Ralph Böhme <slow@xxxxxxxxx> wrote:
>> Another thing that a customer has just been bitten by, was a subtle
>> bug in winbindd's idmap cache that resulted in all xid2sid requests
>> going through the idmap backend, iow winbindd issued LDAP requests.
>> With a few thousand users, things came to a grinding halt.
>> 
>> https://bugzilla.samba.org/show_bug.cgi?id=13802
>> 
>> Patch just landed upstream.
> 
> That is the bug I was referring to and probably (amongst all the other
> cruft) what was causing the OP's problem.

Unlikely.

> However, this has nothing to
> do with using the 'ad' backend with Active Directory. We keep dancing
> around this problem, saying things like 'we need to fix this', we
> have been saying this since Samba 4 was released.

Which problem? Fix what? Been saying what?

> Windows Uses the SID-RID to identify the user and the domain it
> comes from, surely we can find a way to do this for Samba, we are
> half way there with the 'rid' backend.

I'm not really what "there" implies for you, but it seems idmap_autorid is eventually the backend that takes you "there". :)

-slow
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba