From owner-freebsd-questions@FreeBSD.ORG  Sat Dec  4 19:17:15 2010
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 87502106566C
	for <freebsd-questions@freebsd.org>;
	Sat,  4 Dec 2010 19:17:15 +0000 (UTC)
	(envelope-from bounces@nabble.com)
Received: from kuber.nabble.com (kuber.nabble.com [216.139.236.158])
	by mx1.freebsd.org (Postfix) with ESMTP id 4CB428FC08
	for <freebsd-questions@freebsd.org>;
	Sat,  4 Dec 2010 19:17:15 +0000 (UTC)
Received: from isper.nabble.com ([192.168.236.156])
	by kuber.nabble.com with esmtp (Exim 4.63)
	(envelope-from <bounces@nabble.com>) id 1POxbe-0003sf-LB
	for freebsd-questions@freebsd.org; Sat, 04 Dec 2010 11:17:14 -0800
Message-ID: <30366636.post@talk.nabble.com>
Date: Sat, 4 Dec 2010 11:17:14 -0800 (PST)
From: Ivo Karabojkov <ivo@kit-bg.com>
To: freebsd-questions@freebsd.org
In-Reply-To: <AANLkTimTLJk=r1YU8RoWaqJt_U9gZHgVfY0W70U4uo_e@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Nabble-From: ivo@kit-bg.com
References: <30252640.post@talk.nabble.com> <30282675.post@talk.nabble.com>
	<AANLkTimTLJk=r1YU8RoWaqJt_U9gZHgVfY0W70U4uo_e@mail.gmail.com>
Subject: Re: FreeBSD samba+winbind
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Dec 2010 19:17:15 -0000


Hi!

Thanks for your reply!
Sorry, but that didn't help. I even tried installing samba 3.4 (also form
ports).
With the same configuration as Samba 3.5 there was no idmapping at all. I'll
try to raise loglevel to see what happens.

With Samba 3.5 and loglevel 10 there were no significant errors and I think
the problem is with nssd and nss_winbind.so (some specific behavior for
getting all users - getent).

Best wishes,
Ivo


Timur I. Bakeyev wrote:
> 
> Hi, Ivo!
> 
> Just a wild guess - could it be the result of moving lockdir in
> Samba3.5 port from /var/db/samba34 back to /var/db/samba ? Can you
> check, that, by renaming appropriate directory?
> 
> Regards,
> Timur.
> 
> On Mon, Nov 22, 2010 at 10:15 PM, Ivo Karabojkov <ivo@kit-bg.com> wrote:
>>
>> Perhaps I couldn't get any attention with my problem or I couldn't
>> explain it
>> in enough details.
>> As you probably read, IDMapping works OK. It seems that my problem occurs
>> in
>> nsswitch. In my /etc/nsswitch.conf I have:
>>
>> group: files winbind
>> #group_compat: nis
>> hosts: files dns
>> networks: files
>> passwd: files winbind
>> #passwd_compat: nis
>> shells: files
>> services: compat
>> services_compat: nis
>> protocols: files
>> rpc: files
>>
>> wbinfo -u / -g / -i DOMAIN_user works OK.
>> Name service switch works almost OK, since system utilities like id, pw
>> /usershow/, chown, ls resolve domain usernames <-> IDMapped UIDs OK.
>> But getent passwd and getent group return only local (system) users
>> /groups.
>> Any clue how to make this work too?
>>
>>
>>
>> Ivo Karabojkov wrote:
>>>
>>> Dear Sirs,
>>>
>>> I am having troubles with IDMapping users from Server 2003 AD to my
>>> FreeBSD 8.1 Samba 3.5.
>>> Well, most of Samba documentation should be considered outdated, I had
>>> total failure with RID backend for IDMap. The only working (so far) for
>>> me
>>> is the default: tdb.
>>> I have set nsswitch.conf, pam.d and so on correctly.
>>>
>>> And here is my problem: everything works almost fine, wbinfo shows my
>>> domain accounts, I am able to set these accounts and groups as owners of
>>> files. Commands like ls, chown, id show AD accounts correctly.
>>> pw, getent - show only local system accounts.
>>> I need Samba only for file sharing with ACLs, no PAM authentication or
>>> something more. So, technically, it works but since I can't see ALL
>>> accounts with getent I think something is wrong.
>>>
>>> IDMapped accounts are with uid and gid > 10000
>>>
>>> I think I am missing something very small and simple, so I hope someone
>>> will help me!
>>> Thanks in advance,
>>> Ivo
>>>
>>
>> --
>> View this message in context:
>> http://old.nabble.com/FreeBSD-samba%2Bwinbind-tp30252640p30282675.html
>> Sent from the freebsd-questions mailing list archive at Nabble.com.
>>
>> _______________________________________________
>> freebsd-questions@freebsd.org mailing list
>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
>> To unsubscribe, send any mail to
>> "freebsd-questions-unsubscribe@freebsd.org"
>>
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe@freebsd.org"
> 
> 

-- 
View this message in context: http://old.nabble.com/FreeBSD-samba%2Bwinbind-tp30252640p30366636.html
Sent from the freebsd-questions mailing list archive at Nabble.com.