[Bug 364105] Re: Regression in Winbind: Cannot map SID-UID when using read-only idmap-backend ad, rfc2307 uids
I tried to reproduce the issue, and now GID-conversion curiously fails as well. Anyway, created the upstream bug: https://bugzilla.samba.org/show_bug.cgi?id=6322 ** Bug watch added: Samba Bugzilla #6322 https://bugzilla.samba.org/show_bug.cgi?id=6322 -- Regression in Winbind: Cannot map SID-UID when using read-only idmap-backend ad, rfc2307 uids https://bugs.launchpad.net/bugs/364105 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 364105] Re: Regression in Winbind: Cannot map SID-UID when using read-only idmap-backend ad, rfc2307 uids
s/map/resolve/ winbind 2:3.3.2-1ubuntu3 cannot resolve SID-UID. The mapping is there in the AD, automatically created by the user-add script. However, the new new version does not return UIDs any more. GIDs continue to work. AD is and was alway readonly. To my knowledge Samba has only recently gained the feature of stacking idmapings, where you layer a writable idmap over the readonly AD-map to handle the case where Samba wants to create a new mapping. When Samba 3.3.2 failed to work as before, I consulted the documentation and found the suggestion that I should layer a writable idmap over the AD-map. I tried to do that, but without success. Samba still fails to resovle UIDs from AD, but instead of complaining it silently allocates a new (and wrong) mapping in the writable backend. As far as I can remember (its been a couple of week since I found the issue), what works is: name - SID (wbinfo -n) SID - name (wbinfo -s) SID - GID (wbinfo -Y) GID - SID (wbinfo -G) What does not work: SID - UID (wbinfo -S) UID - SID (wbinfo -U) And yes, I used SIDs that do represent User-Objects and that have a UID-Attribute in AD. -- Regression in Winbind: Cannot map SID-UID when using read-only idmap-backend ad, rfc2307 uids https://bugs.launchpad.net/bugs/364105 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 364105] [NEW] Regression in Winbind: Cannot map SID-UID when using read-only idmap-backend ad, rfc2307 uids
Public bug reported: Binary package hint: winbind works: 2:3.2.3-1ubuntu3.4 broken: 2:3.3.2-1ubuntu3 Probably upstream issue. Winbind specific parts of smb.conf: workgroup = DOMAIN security = ADS realm = DOMAIN.FQDN password server = * winbind separator = \\ winbind enum users = yes winbind enum groups = yes idmap backend = ad idmap config DOMAIN : schema_mode = rfc2307 winbind nss info = template winbind use default domain = yes winbind offline logon = yes idmap uid = 1100-4 idmap gid = 1100-4 template shell = /bin/bash template homedir = /home/%u Details: The following mappings work: User-Name-SID, Group-Name-SID, SID-GID What doesn't work: SID-UID The Samba-Docs suggest adding a writable idmap-backend. That doesn't help, since Samba ends up allocating mappings for all UIDs in the writable backend instead of using the ones in AD. ** Affects: samba (Ubuntu) Importance: Undecided Status: New -- Regression in Winbind: Cannot map SID-UID when using read-only idmap-backend ad, rfc2307 uids https://bugs.launchpad.net/bugs/364105 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 282751] Re: Winbind package does not provide PAM configuration
Adapted from krb5 ** Attachment added: winbind http://launchpadlibrarian.net/24965981/winbind -- Winbind package does not provide PAM configuration https://bugs.launchpad.net/bugs/282751 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
