Samba - Cannot read Users from Active Directory, help please?

res5 · 04-26-2012, 06:52 AM

Hi all... I'm desperate

really... so I need your help guys

I have a Western Digital My Book World Edition II NAS storage whic is a linux box inside.
It was join in to active directory, I was able to read users from AD ,everything was fine till I had to reboot the NAS. then I wasn't able to access the shares.
As I previously known solution, I rejoined the WD NAS in to the AD.
I'm able to sucesfully join the NAS in to the AD, new computer is created, but I cannot read users from it.

When I do

~ # wbinfo -t
checking the trust secret via RPC calls failed
error code was NT_STATUS_INVALID_HANDLE (0xc0000008)
Could not check secret

~ # wbinfo -u
Error looking up domain users

[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log

[libdefaults]
default_realm = MYDOMAIN.COM
ticket_lifetime = 24000
dns_lookup_realm = false
dns_lookup_kdc = false
default_tkt_enctypes = des-cbc-md5
default_tgs_enctypes = des-cbc-md5
default_etypes = des-cbc-md5
default_etypes_des = des-cbc-md5

[realms]
MYDOMAIN.COM = {
kdc = 192.168.1.1:88
admin_server = 192.168.1.1:749
default_domain = MYDOMAIN.COM
}

[domain_realm]
.kerberos.server = MYDOMAIN.COM

[kdc]
profile = /var/kerberos/krb5kdc/kdc.conf (this file doesn't exist)

[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false

my smb.conf :

[global]

workgroup = MYDOMAIN
realm = MYDOMAIN.COM
netbios name = My-NAS
server string = My Book World Edition Network Storage
load printers = no
printing = bsd
printcap name = /dev/null
disable spoolss = yes
log file = /var/log/samba/log.smbd
max log size = 50
max xmit = 65536
dead time = 15
security = ads
auth methods = guest, sam_ignoredomain, winbind:ntdomain
encrypt passwords = yes
create mask = 0664
directory mask = 0775
local master = no
socket options = TCP_NODELAY SO_RCVBUF=65536 SO_SNDBUF=65536
use mmap = yes
use sendfile = yes
dns proxy = no
idmap uid = 10000-65000
idmap gid = 10000-65000
dont descend = /proc,/dev,/etc
admin users =
null passwords = yes
winbind uid = 10000-20000
winbind gid = 10000-20000
winbind cache time = 60
winbind enum users = yes
winbind enum groups = yes
template homedir = /dhome/%U
template shell = /bin/false
winbind use default domain = no
interfaces = eth0
map to guest = bad user
guest account = nobody
include = /usr/private/user_smb_conf/.overall_share
[Configuration]
path = /Configuration
comment = System Configuration
public = yes
browseable = yes
writable = no
guest ok = yes

What is wrong, please help ?

Thank you in advance