Questions tagged [winbind]
35 questions
4
votes
1 answer
Prompt Windows AD user to reset password upon login to Linux
I have a Red Hat Enterprise Linux VM which has been integrated with Windows AD using Kerberos and Winbind. It all works, bar one feature. In AD, I can reset the users password and select the option 'User must change password on next logon'. When I…
Wokawidget
- 41
- 2
4
votes
0 answers
Linux Authentication Flow (NSS -> PAM -> AD)
I am a new system administrator at an organization looking to understand the process flow of authentication in regards to how NSS, PAM and WINBIND work together. We've been having winbind related problems, and I'd like to try and improve our…
azurepancake
- 201
- 2
- 7
4
votes
0 answers
Give domain users permissions on cifs shares?
I am using CentOS 6.5 - users authenticate using winbind, all are domain users except for root.
/home is mapped to a cifs share on a windows server in /etc/fstab with this line: \\server\home$ /home cifs credentials=/root/samba.txt,_netdev 0 0
Under…
Matt F
- 41
- 3
3
votes
0 answers
pam_winbind is logging passwords
Occasionally, a systemd unit using a pam module that uses pam_winbind logs a users password.
Systemd unit log:
Mar 25 15:47:41 display-server node[5969]: pam_succeed_if(grooming:auth): requirement "user ingroup marketing department" not met by user…
gnarly-line
- 41
- 4
3
votes
0 answers
Using alernative openLDAP UID to authenticate to Active Directory
I'm using Winbind to authenticate users to Active Directory. Everything is working perfectly when the usernames match. The problem is that many of the users have different usernames for Windows and Linux (grandfathered accounts and engineers are…
Jeight
- 2,555
- 3
- 19
- 28
3
votes
1 answer
Active Directory UID Mapping to Specific Unix UIDs
I really don't understand the translation of Active Directory UIDs Mapping to Unix UIDs. When a person logs in with their AD credentials how does winbind understand that it needs to map that AD UID to a specific Unix UID, which is tied to a home…
user157289
- 33
- 3
3
votes
1 answer
WBC_ERR_DOMAIN_NOT_FOUND only for a specific account
Platform: RHEL 5.10
Version: Samba 3.6.6-0.136
Only on a single VM, one of my co-workers is able to log into the VM using his AD credentials without issue, whereas my account appears to have trouble locating user information:
[root@ncxxxlwb05 ~]#…
Bratchley
- 16,684
- 13
- 64
- 103
2
votes
1 answer
Cannot logon to Ubuntu server using trusted domain AD credentials
I've got an AD domain joined Ubuntu 22.04 server. I need to be able to logon to it using credentials from a trusted domain that is attached to the AD domain that the server is a member of. Logon is not working using the trusted domain credentials.…
Redeye
- 23
- 2
2
votes
0 answers
Samba can't fetch domain SID after joining AD domain
This is my scenario:
I have a CentOS 7.5 server which must act as a file server and allow AD-integrated authentication for Samba access, without the need to create local users with smbpasswd.
Samba Version 4.7.1
SSSD Version 1.16.0
What I've done so…
Reinaldo Gomes
- 71
- 1
- 6
2
votes
1 answer
Connecting to Active Directory (possibly with winbind)
I'm trying to figure out how to integrate Linux environment authentication system to Windows server 2012, and I found a way using winbind.
I've searched Google and there are several pages that introduce how to do it from synchronizing the time to…
owcred601
- 35
- 1
- 7
2
votes
0 answers
Fedora 25 NetBios/wins issues
I am trying to set up local hostname resolution on my Fedora machine.
I have installed samba-winbind samba-winbind-clients pam_krb5 and then went through the procedure shown on: https://www.server-world.info/en/note?os=Fedora_25&p=samba&f=3
I have…
Crunchy234
- 151
- 3
2
votes
1 answer
Winbind / AD - changed user account issue
So here's an odd one. We've had a user for years who happens to have a user id by local convention that matches a system account. So of course, I changed the users user ID in AD to avoid issues and security problems. However, having done so, some…
Scott Lockwood
- 41
- 7
2
votes
1 answer
How to specify Linux home directory and shell on a Samba Active Directory server?
This question relates to SAMBA version 4 when used as an Active Directory Domain Controller.
I have everything set up to allow domain users to log in to Linux. However, I have been searching for ages and cannot find how to set a users home directory…
starfry
- 7,302
- 6
- 47
- 69
2
votes
1 answer
What role does krb5.conf actually play when joining a Linux machine to AD via Samba/winbind?
I'm working on a project for a standardized Linux image for our organization. This image will be domain joined, and I've written a script to fire on boot that will guide the IST person doing the Linux machine setup through the join.
Pretty much…
1
vote
0 answers
Unable to use AD group names in pam_winbind.conf after recent updates
Since updating my CentOS 7 and RHEL 7 systems I am no longer able to use AD group names in my pam_winbind.conf. I am only able to use SIDS.
The package version samba-winbind-4.10.4-11.el7_8:0. I am unable to find any information indicating this was…
SeeJayEmm
- 441
- 1
- 4
- 11