[Bug 1165461] Re: pam_winbind offline logon does not work in 12.04

[Jan]

Hi everyone,

the bug only occurs if you use the idmap ad backend. With backend tdb
everything works fine.

I tracked this down to the file /var/run/samba/gencache.tdb. The file
lies in a tmpfs and is cleared on every reboot.  Winbind uses it to
store the sid2uid and sid2gid mapping information in it.

An easy fix is to tell samba to store the file in an other directory.
This can be done with "lock directory = /var/cache/samba/" in smb.conf.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1165461

Title:
  pam_winbind offline logon does not work in 12.04

Status in “samba” package in Ubuntu:
  New

Bug description:
  The pam_winbind offline login does not work in 12.04 LTS with latest updates.
  My configuration.
  Client joined to domain with uidNumber set in AD.
  smb.conf with winbind offline logon = yes
  /etc/security/pam_winbind.conf with cached_login = yes
  PAM configuration is the "default" pam-auth-update configuration with winbind.

  If I am online everything works as expected. I can login with my AD account tstusr2.
  But if my notebook has no connection to the domain controller the offline login does not work anymore.
  The problem seems to be somehwere in PAM as PAM identifies the user as "unkown". See attachment auth.log.

  If I manually add my user to /etc/passwd the offline login works.
  tstusr2:*:50001:70005::/home:/bin/bash

  It can't be solution to add domain users to /etc/passwd. pam_winbind
  has to deal with it.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1165461/+subscriptions