Bug 43253 - FreeNAS and Linux enter the domain but can not recover users
FreeNAS and Linux enter the domain but can not recover users
Status: CLOSED WORKSFORME
Product: UCS
Classification: Unclassified
Component: Samba4
UCS 4.1
amd64 FreeBSD
: P5 critical (vote)
: ---
Assigned To: Felix Botner
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2016-12-27 12:57 CET by Tácio Andrade
Modified: 2017-09-15 14:06 CEST (History)
2 users (show)

See Also:
What kind of report is it?: Bug Report
What type of bug is this?: 5: Major Usability: Impairs usability in key scenarios
Who will be affected by this bug?: 3: Will affect average number of installed domains
How will those affected feel about the bug?: 5: Blocking further progress on the daily work
User Pain: 0.429
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:


Attachments
log.winbindd in the Endian/FreeNAS (2.14 KB, text/plain)
2016-12-27 12:57 CET, Tácio Andrade
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Tácio Andrade 2016-12-27 12:57:25 CET
Created attachment 8325 [details]
log.winbindd in the Endian/FreeNAS

After configuring version 4.1-4 of FreeNAS and Endian Firewall (as well as other Linux), I am able to add them to the domain without any errors, but they can not synchronize the users.

Windows 10 can successfully log in to the domain.

The Domain Controller is Univention 4.1-4 and only has the Administrator as the user.
Comment 1 Tácio Andrade 2016-12-27 19:48:50 CET
I made the installation of 4.1-3 and this bug does not exist, both FreeNAS and Endian Firewall can recover users correctly, either using the interface or wbinfo -u/-g.

Apparently there may be some bug in the samba packages present in the repository.
Comment 2 Stefan Gohmann univentionstaff 2017-01-02 07:29:55 CET
Thanks for the report. Can you provide Samba logfiles with debug level 12?

 ucr set samba/debug/level=12
 /etc/init.d/samba restart

After trying to synchronize the users, please add /var/log/samba/log.*
Comment 3 Tácio Andrade 2017-01-03 05:03:14 CET
Sorry for the delay to respond, I had to set up the environment again because I deleted the VM after the tests went wrong to install 4.1-3.

Just to warn you what was done, I installed from the official ISO and selected the option to update the system after completing the configuration of the domain. Upon completion of the process, Univention is in version 4.1-4.

With this I applied the commands:

ucr set samba/ldap/server/require/strong/auth=no
ucr set samba/debug/level=12

And finally I added FreeNAS to the domain. After adding I tried again to use the user list command:

kinit Administrator@SAMUR.LOCAL
wbinfo -u

And no obitive success.

The complete Univention Samba log directory is attached.

https://drive.google.com/file/d/0Bzo3LmoiOqu_QVRMbHgteEN1dUE/view?usp=sharing


Sincerely, Tácio Andrade.
Comment 4 Tácio Andrade 2017-01-03 05:04:53 CET
* And I did not succeed.

Sorry for the above error.
Comment 5 Stefan Gohmann univentionstaff 2017-01-03 06:46:03 CET
Thanks.

@Felix, please have a look. Michael said that he have a FreeNAS 9.10 test VM.
Comment 6 Tácio Andrade 2017-01-09 00:49:36 CET
After updating the latest packages from early 2017 and re-testing, the bug has been resolved.
If you could close, thank you, because I do not know this tool very well.
Comment 7 Felix Botner univentionstaff 2017-02-06 15:03:15 CET
(In reply to Tácio Andrade from comment #6)
> After updating the latest packages from early 2017 and re-testing, the bug
> has been resolved.
> If you could close, thank you, because I do not know this tool very well.

Thank you, i close the bug as "worksforme"
Comment 8 Stefan Gohmann univentionstaff 2017-09-15 14:06:31 CEST
Set status of old resolved issues to closed.