Originally Posted by suicidaleggroll
You can check it by running "id <user>" on each machine. That will tell you the UID, primary group and GID, and all groups and GIDs the user belongs to. I imagine you'll see a discrepancy when comparing the UID and GID on your RHEL 5 machines to that your RHEL 6 machine.
Somebody else with more (read: any) winbind experience will have to comment on how to fix it.
Yep, checked a couple of users and can confirm that their UIDs are different to those in my other environments. I checked smb.conf and found that the UID and GID ranges are different to those specified in the Red hat 5 environments. I edited the smb.conf to make the uid and gid ranges the same as my other environments, restarted smb and winbind and asked a colleague to log in and he was unable to. Put it back to how it was and he was able to log in.
For your info, my uid in Red Hat 5 is 15162 and in 6 it is 16777216. The range in 5 is set as:
idmap config PFS:range = 10000 - 20000
whereas the range in 6 is:
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
When I tested manually setting the range in 6 I added another two lines beneath the authconfig end line as below:
idmap uid = 10000 - 20000
idmap gid = 10000 - 20000
Note that I did not remove the other two lines.
Just to add another level of complexity into the mix - we have 2 domain controllers, one of them is 32 bit and the other a 64 bit machine. I believe the Red Hat 5 servers are authenticating through the 32 bit machine as the version of samba on those machines will not connect to the windows 2008 server. I am wondering if that is why the Red Hat 5 servers are getting the lower uid and gid and the Red Hat 6 machine might be authenticating through the 64 bit machines and getting the higher uid and gid.
Any help would be greatly appreciated!