On Fri, 2016-09-09 at 16:01 +0200, Joakim Tjernlund wrote: > On Fri, 2016-09-09 at 14:48 +0200, Sumit Bose wrote: > > > > On Fri, Sep 09, 2016 at 11:46:27AM +0000, Joakim Tjernlund wrote: > > > > > > > > > Trying to bring up samba with sssd-13.4 and for some reason samba fails > > > to lookup users: From smb.log I have: > > > > > > .... > > > > > > [2016/09/09 13:37:40.480053, 4, pid=15633, effective(0, 0), real(0, 0)] > > > ../source3/param/loadparm.c:3677(lp_load_ex) > > > pm_process() returned Yes > > > [2016/09/09 13:37:40.480068, 3, pid=15633, effective(0, 0), real(0, 0)] > > > ../source3/param/loadparm.c:1476(lp_add_ipc) > > > adding IPC service > > > [2016/09/09 13:37:40.480087, 5, pid=15633, effective(0, 0), real(0, 0)] > > > ../source3/lib/username.c:181(Get_Pwnam_alloc) > > > Finding user TRAN_01\jocke > > > [2016/09/09 13:37:40.480095, 5, pid=15633, effective(0, 0), real(0, 0)] > > > ../source3/lib/username.c:120(Get_Pwnam_internals) > > > Trying _Get_Pwnam(), username as lowercase is tran_01\jocke > > > [2016/09/09 13:37:40.480102, 5, pid=15633, effective(0, 0), real(0, 0)] > > > ../source3/lib/username.c:159(Get_Pwnam_internals) > > > Get_Pwnam_internals did find user [TRAN_01\jocke]! > > > [2016/09/09 13:37:40.480121, 10, pid=15633, effective(0, 0), real(0, 0)] > > > ../source3/passdb/lookup_sid.c:77(lookup_name) > > > lookup_name: TRAN_01\jocke => domain=[TRAN_01], name=[jocke] > > > [2016/09/09 13:37:40.480133, 10, pid=15633, effective(0, 0), real(0, 0)] > > > ../source3/passdb/lookup_sid.c:78(lookup_name) > > > lookup_name: flags = 0x073 > > > [2016/09/09 13:37:40.480141, 10, pid=15633, effective(0, 0), real(0, 0)] > > > ../source3/lib/util_wellknown.c:162(lookup_wellknown_name) > > > map_name_to_wellknown_sid: looking up TRAN_01\jocke > > > [2016/09/09 13:37:40.480152, 1, pid=15633, effective(0, 0), real(0, 0)] > > > ../source3/auth/token_util.c:937(create_token_from_username) > > > lookup_name_smbconf for TRAN_01\jocke failed > > > [2016/09/09 13:37:40.480160, 10, pid=15633, effective(0, 0), real(0, 0), > > > class=auth] > > > ../source3/auth/user_krb5.c:274(make_session_info_krb5) > > > failed to create local token: NT_STATUS_NO_SUCH_USER > > > [2016/09/09 13:37:40.480170, 1, pid=15633, effective(0, 0), real(0, 0)] > > > ../source3/auth/auth_generic.c:127(auth3_generate_session_info_pac) > > > Failed to map kerberos pac to server info (NT_STATUS_NO_SUCH_USER) > > > > > > > > > On older systems I have samba 3.6.25 and sssd 1.12.5 and there samba > > > works fine. > > > Is there som change I have missed when upgrading to newer samba sssd? > > > > Are you using SSSD's version of libwbclient to help samba to map SID to > > hmm, I got both (/usr/lib64/libwbclient.so.0 and > /usr/lib64/sssd/modules/libwbclient.so) > and wbinfo -n 'TRAN_01\jocke' reports: > wbinfo -n 'TRAN_01\jocke' > could not obtain winbind interface details: WBC_ERR_WINBIND_NOT_AVAILABLE > could not obtain winbind separator! > failed to call wbcLookupName: WBC_ERR_WINBIND_NOT_AVAILABLE > Could not lookup name TRAN_01\jocke > > I guess the problem is that samba uses its own libwbclient.so and winbind > is not configured?
Making samba use sssd's libwbclient.so like so: cd /usr/lib64 mv libwbclient.so.0 libwbclient.so.0.old ln -s sssd/modules/libwbclient.so.0.12.0 libwbclient.so.0 makes Samba and wbinfo work, thanks! Now I need to figure out what to do on a permanent basis, not sure what to do here, any suggestion welcome :) One thing I have noted is that on Gentoo, sssd-ad has samba as a dependency. Is samba really required to use sssd-ad? Jocke _______________________________________________ sssd-users mailing list sssd-users@lists.fedorahosted.org https://lists.fedorahosted.org/admin/lists/sssd-users@lists.fedorahosted.org