From owner-freebsd-questions@FreeBSD.ORG Mon Nov 22 21:15:30 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 21B61106566C for ; Mon, 22 Nov 2010 21:15:29 +0000 (UTC) (envelope-from bounces@nabble.com) Received: from kuber.nabble.com (kuber.nabble.com [216.139.236.158]) by mx1.freebsd.org (Postfix) with ESMTP id F1F218FC08 for ; Mon, 22 Nov 2010 21:15:28 +0000 (UTC) Received: from isper.nabble.com ([192.168.236.156]) by kuber.nabble.com with esmtp (Exim 4.63) (envelope-from ) id 1PKdjU-0005QL-8p for freebsd-questions@freebsd.org; Mon, 22 Nov 2010 13:15:28 -0800 Message-ID: <30282675.post@talk.nabble.com> Date: Mon, 22 Nov 2010 13:15:28 -0800 (PST) From: Ivo Karabojkov To: freebsd-questions@freebsd.org In-Reply-To: <30252640.post@talk.nabble.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Nabble-From: ivo@kit-bg.com References: <30252640.post@talk.nabble.com> Subject: Re: FreeBSD samba+winbind X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 22 Nov 2010 21:15:30 -0000 Perhaps I couldn't get any attention with my problem or I couldn't explain it in enough details. As you probably read, IDMapping works OK. It seems that my problem occurs in nsswitch. In my /etc/nsswitch.conf I have: group: files winbind #group_compat: nis hosts: files dns networks: files passwd: files winbind #passwd_compat: nis shells: files services: compat services_compat: nis protocols: files rpc: files wbinfo -u / -g / -i DOMAIN_user works OK. Name service switch works almost OK, since system utilities like id, pw /usershow/, chown, ls resolve domain usernames <-> IDMapped UIDs OK. But getent passwd and getent group return only local (system) users /groups. Any clue how to make this work too? Ivo Karabojkov wrote: > > Dear Sirs, > > I am having troubles with IDMapping users from Server 2003 AD to my > FreeBSD 8.1 Samba 3.5. > Well, most of Samba documentation should be considered outdated, I had > total failure with RID backend for IDMap. The only working (so far) for me > is the default: tdb. > I have set nsswitch.conf, pam.d and so on correctly. > > And here is my problem: everything works almost fine, wbinfo shows my > domain accounts, I am able to set these accounts and groups as owners of > files. Commands like ls, chown, id show AD accounts correctly. > pw, getent - show only local system accounts. > I need Samba only for file sharing with ACLs, no PAM authentication or > something more. So, technically, it works but since I can't see ALL > accounts with getent I think something is wrong. > > IDMapped accounts are with uid and gid > 10000 > > I think I am missing something very small and simple, so I hope someone > will help me! > Thanks in advance, > Ivo > -- View this message in context: http://old.nabble.com/FreeBSD-samba%2Bwinbind-tp30252640p30282675.html Sent from the freebsd-questions mailing list archive at Nabble.com.