From: Massimo on
Hi to all,
I have installed Samba+winbind+kerberos on a Ubuntu OS, configured authentication to our ads domain as member
I can list user and group using wbinfo, if I use getent I have the ADS user but not the ads group (only local group).
The problem is that samba does not recognize group in the filesystem and assign a wrong gid to the objects.
I tried to change winbind separator to \ or / but with no success
My samba and winbind version is 3.028a.
my smb.conf:
workgroup = domain
netbios name = Manufac
server string = Server
include = /etc/samba/dhcp.conf
encrypt passwords = true
&nbs p; realm = DOMAIN.LOCAL
password server = pdc.domain.local
security = ADS
winbind enum users = yes
winbind enum groups = yes
winbind separator= +
idmap uid = 500-100000000
idmap gid = 500-100000000
template homedir = /dev/null
template shell = /bin/true
syslog = 0
log file = /var/log/samba/log.%m
max log size = 1000
dns proxy = No
&n bsp; ldap ssl = no
panic action = /usr/share/samba/panic-action %d
invalid users = root

comment = Cartella Personale
valid users = %S
read only = No
inherit acls = Yes
hide unreadable = Yes
browseable = No

comment = Divisioni
path = /condivisioni/divisioni/
read only = No
create mask = 0777
&n bsp; directory mask = 0777
inherit acls = Yes
map acl inherit = Yes
store dos attributes = Yes
hide unreadable = Yes
my nssswitch.conf
passwd: compat winbind
group: compat windind
shadow: files

hosts: files dns
networks: files

protocols: db files
services: db files
ethers: db files
rpc: &n bsp; db files

netgroup: nis

Thank you in advance.
