[Bug 207791] Re: winbind forgets uid/name gid/name mappings in regulary periods

Adam Mielke adam at umn.edu
Fri Jan 20 19:37:17 UTC 2012 

This thread hasn't seen any activity in several months, but I discovered
it today after suffering from the same problem for the past few weeks on
Lucid.  After some trial and error I was able to resolve it.  Winbind
was unable to translate uids/gids into SIDs, but it could convert
usernames into SIDs. The fix was to modify the idmap config from this
syntax:

idmap backend = rid:FRIENDS=10000-20000

To this syntax:

idmap backend = tdb
idmap config FRIENDS : backend = rid
idmap config FRIENDS : range = 10000-20000

And voila, winbind works correctly.

Cheers,

Adam Mielke
Research Computing and Engineering
College of Liberal Arts
University of Minnesota

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/207791

Title:
  winbind forgets uid/name gid/name mappings in regulary periods

Status in “samba” package in Ubuntu:
  Confirmed
Status in “samba” package in CentOS:
  New

Bug description:
  Binary package hint: winbind

  Version 3.0.26a-1ubuntu2.3, Gutsy.

  I am memeber of a domain, wbinfo -u and wbinfo -g are displaying users+groups fine.
  nssswitch isconfigured lile that:

  passwd:         compat winbind
  group:          compat winbind
  shadow:         compat winbind

  Using getent passwd "domainuser" does succeed, id "domainuser" too.

  However, after 10 minutes (this times varies), doing a "ls -l file" does only show the uid of the user/group, the names are non persistent anymore.
  I than have to do a manual refresh with getent or id (they succeed the first time) and it works again, username + groupnames are there.
  Thats really annoying because many tools and daemons are relying on persistent users/groups, not only the uids.
  Don't know why they get lost from time to time, but it happens everytime.
  Using nscd does not help.
  My workaround for now is to have a local copy in /etc/passwd, but not shadow, to have a persistent uid/name mapping.

  smb.conf winbind parameters:

          winbind cache time = 10
          winbind refresh tickets = true
          winbind enum users = yes
          winbind enum groups = yes
          winbind use default domain = Yes
          winbind offline logon = true

  Any things i can do, tweaks, changes or something?

  kind regards

  Torsten

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/207791/+subscriptions

More information about the foundations-bugs mailing list