winbind mistakenly thinks AD accounts are expired and causes password reset request
I have winbind setup on a RHEL6.4 host. It is properly peered to my AD and seems to be working fine. Users are able to login, authentication seems valid. My AD has a trust with another AD (for purposes of this, let's call it AD2). I want users of AD2 to be able to login to the RHEL box. When the user logs in as "AD2+username", the password is validated (if I put the wrong password, it tells me that it is invalid) however the server believes that the users account has expired. The trust relationship is tested and working. I've played with a few different things, I'm not really sure where to go from here. Any help is greatly appreciated. Thanks!
|