Samba mappings issue
I'm working a new Samba config where it appears that something is just not connecting in my config. We had this working until a DC power outage. Since then thing have not worked and I decided to remove the 3.5 version and install 4.1.14 sernet samba. I have joined the domain and that appears to be working fine. 'wbinfo -u' returns my user and group list. What is odd is that I cannot assign ownership via 'chown' to a domain user. However, if I assign ownership using the UID it works fine. My mappings appear to be correct.
[root@sltltfsee general]# wbinfo -u | grep choatej
choatej
[root@sltltfsee general]# wbinfo -i SL1\\choatej
SL1\choatej:*:16777216:16777220::/home/SL1/choatej:/bin/bash
[root@sltltfsee general]# wbinfo -n SL1\\choatej
S-1-5-21-1823944398-2898753305-4095703837-125569 SID_USER (1)
[root@sltltfsee general]# wbinfo -U 16777216
S-1-5-21-1823944398-2898753305-4095703837-125569
[root@sltltfsee general]# chown SL1\\choatej test3
chown: invalid user: `SL1\\choatej'
[root@sltltfsee general]# chown 16777216 test3
[root@sltltfsee general]# ll
total 64
drwxrwx---+ 2 root 16777216 512 Dec 29 11:45 source
drwxrwx--- 2 root 16777216 512 Dec 19 17:31 srvimages
drwxrwx---+ 3 root 16777488 32768 Dec 31 10:09 storage
drwxrwx---+ 2 root root 32768 Jan 8 10:31 temp
drwxrwx--- 2 root root 512 Jan 8 10:55 test2
drwxr-xr-x 2 16777216 root 512 Jan 12 10:20 test3
[root@sltltfsee general]#
I've cleaned up the /var/lib/samba/*.tdb files and restarted services to no avail. I'm unable to access my samba share via windows any longer and getting a 'Password incorrect' when trying to map the share.
Responses
Brett,
Not knowing a lot about your configuration, can I suggest looking at your /etc/nsswitch.conf file?
My guess is that winbind isn't configured for user/group resolution in nsswitch.conf, so lookups for unmatched UID/GIDs aren't going to your directory server.
Also, regarding "However, if I assign ownership using the UID it works fine." This isn't really indicative of anything relating to Samba configuration as you can at any time specify an arbitrary numeric UID for a file (ie. you could use a random number here and it would also work).
Hello Brett,
wbinfo -u showing the domain user doesn't necessarily mean this user is mapped successfully. How about "getent passwd", does it show this domain user? Sometimes it could be caused by uid/gid mapping issue. I would recommand you checking smb.conf for your idmap settings.
However I'm just guessing here, without logs and configuration files.
Hope it might gives you some direction of trouble-shooting. I'd like to check the logs if you put it up here.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
