Samba Winbind

[Jzero]

OS is SUSE 9.2...let me know if you need any other details.

I cannot for the life of me get this to work.
I found a nice looking tutorial but no matter what I do the command getent passwd returns only the local passwd file contents (it is supposed to return users from Active Directory as well).

net ads join succeeds.
net ads user and net ads group both return the expected information (i.e. listings of users and groups on the domain).
kinit also works so it seems that kerberos authentication is working.
wbinfo -u and wbinfo -g both return with "Error looking up domain users."
wbinfo -m only shows BUILTIN and GLADSTONE as the trusted domains.

Any advice?

Title changed in the hopes of attracting more assistance.

 

[Skunk]

Probably a stupid question but have you set samba to domain authentication instead of local?

 

[Jzero]

Originally posted by: Skunk
Probably a stupid question but have you set samba to domain authentication instead of local?

There are no stupid questions - I could easily have missed something somewhere, so ask away

In doing some poking around last night I have a feeling the problem has to do with nsswitch but I'm not 100% sure.

FWIW here is the global section of my smb.conf:

 

[lansalot]

What does your nsswitch.conf say?

 

[Jzero]

Originally posted by: lansalot
What does your nsswitch.conf say?

I tried both compat (that's the default) and files, but I didn't think it should matter so long as the winbind directive is there.

 

[Jzero]

Still not having much luck here. Everything I read simply says things like:
When you run getent passwd you should see all local users and groups, followed by all users and groups on your AD domain.

But nothing says what to do if that does not happen. All I get is the local users, so it seems that either nsswitch.conf is being ignored, or the winbind directive is failing.

 

[Skunk]

Can you post your krb5.conf?