[Samba] Samba nns winbind not working


i have a centos7 system, build samba from source usif samba-4.9.6.tar.gz

done provision as ad dc and all working good (i use samba a lot of time in past)

than i have problem on domain users/group, system not read them

vi /usr/local/samba/etc/smb.conf
        dns forwarder =
        netbios name = DC
        realm = TECNOGM.LAN
        server role = active directory domain controller
        workgroup = TECNOGM
        idmap_ldb:use rfc2307 = yes
        username map = /usr/local/samba/etc/user.map
        vfs objects = acl_xattr
        map acl inherit = yes
        store dos attributes = yes
        template shell = /bin/bash
        template homedir = /data/%D/users/%U

        path = /usr/local/samba/var/locks/sysvol/tecnogm.lan/scripts
        read only = No

        path = /usr/local/samba/var/locks/sysvol
        read only = No
        comment = Windows profiles
        path = /data/%D/profiles
        read only = No

        comment = Users home directories
        path = /data/%D/users
        read only = No


!root = TECNOGM\Administrator

net rpc rights grant "TECNOGM\Domain Admins" SeDiskOperatorPrivilege -U "TECNOGM\administrator"

vi /etc/pam.d/password-auth


auth        sufficient    pam_winbind.so use_first_pass

account     [default=bad success=ok user_unknown=ignore] pam_winbind.so

password    sufficient    pam_winbind.so use_authtok

vi /etc/nsswitch.conf

added winbind to group and password


the system not read domain users and groups, infact

getent passwd TECNOGM\\test

give no result

