CIFS server in workgroup mode thinks it's in AD mode?
871080Jun 23 2011 — edited Jan 13 2012I'm having a problem with Sol11E, Windows XP clients. Workgroup mode (I don't have AD). All the basics have been done:
join -w <workgroup>
add entry to pam.conf
re-add passwd after pam entry and verify ID is in /var/smb/smbpasswd
The only user I can map a network drive with is "root". If I try to connect with another user I see in /var/adm/messages:
Jun 23 14:46:06 atlantis idmap[9798]: [ID 523480 daemon.notice] AD lookup of winname testuser@ failed, error code -9961
the default idmap rules:
root@atlantis:/var/smb# idmap list
add winuser:Administrator@atlantis unixuser:root
add winuser:* unixuser:*
if I try to explicitly add a user to a group I get:
root@atlantis:/var# smbadm add-member -m jas administrators
failed to add jas: unable to obtain SID
I've also tried the above syntax with the workgroup name and the local machine name. Looking at a local user I'm trying to get to access the share:
# idmap show -c uid:6669 sid
uid:6669 -> sid:S-1-5-21-2162247676-2800373599-3747790410-7669
Error: No AD servers
Failed Method: Name Rule
Rule: add winname:*@ unixuser:*
I've also seen this in the messages file:
Jun 23 14:07:31 atlantis smbd[9704]: [ID 817528 daemon.error] smb_lgrp_iterate: local account has non-local SID
Jun 23 14:07:31 atlantis smbd[9704]: [ID 859989 daemon.error] smb_lgrp_getsid: local group (1) is mapped to a non-local SID
It almost seems like it thinks it's in "AD" mode... but I it's been added to a workgroup and was never in AD mode.
# smbadm list
[*] [PANGEASYS]
Somehow the root map to "Administrator" works fine, but the user maps do not.
Any thoughts?