Getent Group or Passwd is showing only local users.

Latest response

The Getent Group or Passwd command does not return domain users. The wbinfo command works perfect, and bring the users over from the domain. Can someone point me in the direction of why this would not be working?

Responses

Hi,

How does /etc/nsswitch.conf look like for:

passwd: shadow: group:

Regards,

Dusan Baljevic (amateur radio VK2COT)

This is probably because by default only local users are shown, for performance reasons I suppose. Unless your environment is huge, it probably should be ok to change this. I don't know what you are using, but here is an example.

E.g.: We use sssd to connect to an LDAP, as can be seen from /etc/nsswitch.conf:

passwd:     files sss
shadow:     files sss
(...)

In order to get getent to show all users/group, I can add "enumerate=true" to the relevant section;

[domain/OURDOMAIN]
ldap_uri = ldap://ldapserver.example.com/
(...)
enumerate = true

Then restart the daemon

systemctl restart sssd
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.