samba joined to AD canot see users when in the security tab on client
- by Jonathan
I've got samba joined via kerberos and winbindd to our AD network and user authentication and everything else is working great. However when I try to add users/groups to file permissions it tells me they are not found. All the users groups show up fine with getent so I'm not sure why they are not showing up.
Here is my smb.conf and I would much appreciate any help with this.
#GLOBAL PARAMETERS
[global]
socket options = TCP_NODELAY IPTOS_LOWDELAY SO_KEEPALIVE SO_RCVBUF=11264 SO_SNDBUF=11264
workgroup = [hidden]
realm = [hidden]
preferred master = no
server string = xerxes web/file server
security = ADS
encrypt passwords = yes
log level = 3
log file = /var/log/samba/%m
max log size = 50
printcap name = cups
printing = cups
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
winbind nested groups = Yes
winbind separator = +
winbind refresh tickets = yes
idmap uid = 1600-20000
idmap gid = 1600-20000
template primary group = "Domain Users"
template shell = /bin/bash
kerberos method = system keytab
nt acl support = yes
[homes]
comment = Home Direcotries
valid users = %S
read only = No
browseable = No
create mask = 0770
directory mask = 0770
force create mode = 0660
force directory mode = 2770
inherit owner = no
[test]
comment = Test
path=/mnt/test
writeable=yes
valid users = %s
create mask = 0770
directory mask = 0770
force create mode = 0660
force directory mode = 2770
inherit owner = no
[printers]
comment = All Printers
path = /var/spool/cups
browseable = no
printable = yes
