Univention Bugzilla – Bug 35403
Include samba configuration for non-UCS systems
Last modified: 2024-04-17 13:16:41 CEST
In addition to the extended documentation on integrating Ubuntu/Linux/Unix systems (http://docs.univention.de/domain-3.2.html) we should consider providing some hints on how to configure samba/winbind on these systems. If you follow the instructions in the extended documentation, you get a working integration regarding DNS, NTP, Kerberos and LDAP, but still have to configure samba somehow, if you want to use file or printer shares on this non-UCS server. After working through the integration guide mentioned above, a customer copied the smb.conf of a UCS Memberserver to his SLES 11 and Debian Wheezy. Simply joining the SLES/Debian systems into the UCS Samba domain via "net [ads|rpc] join" worked, "getent group" and "wbinfo -g" worked, but winbind failed to resolve the SIDs: > # wbinfo -Y S-1-5-21-[...]-123456 > failed to call wbcSidToGid: WBC_ERR_DOMAIN_NOT_FOUND > Could not convert sid S-1-5-21-[...]-123456 to gid > # wbinfo -G 5432 > failed to call wbcGidToSid: WBC_ERR_DOMAIN_NOT_FOUND > Could not convert gid 5432 to sid I think we should provide some basic hints or a cut down smb.conf that configures Samba/Winbind to work with an existing UCS Samba domain. Probably the nsswitch.conf needs to be adjusted, too ('winbind' instead or in addition of 'ldap' service?). Some VMs for testing are available (SLES 11, Debian Wheezy, Ubuntu Server 12.04) see also Ticket#2014052021003251
This bug hasn't seen any update for several years. I close it. If you still see a need for it, you can reopen the bug. Please add an argumentation about why it's important to take care of it.