Samba4 + Winbind Funcionando porem com Erro idmap (Ubuntu Server)

1. Samba4 + Winbind Funcionando porem com Erro idmap (Ubuntu Server)

TULIO CRUVINEL GOMES
tuliocgomes

(usa Ubuntu)

Enviado em 19/03/2018 - 16:43h

Boa tarde,

Estou com um problema, tenho configurado um Samba4 com winbind, porem mesmo funcionando, autenticando e compartilhando, o samba ainda apresenta erro:



root@FTCSRV01:/home/tuliocgomes# /etc/init.d/samba-ad-dc restart
[ ok ] Restarting samba-ad-dc (via systemctl): samba-ad-dc.service.
root@FTCSRV01:/home/tuliocgomes# /etc/init.d/samba-ad-dc status
● samba-ad-dc.service - LSB: start Samba daemons for the AD DC
Loaded: loaded (/etc/init.d/samba-ad-dc; bad; vendor preset: enabled)
Active: active (running) since Seg 2018-03-19 16:32:51 -03; 1s ago
Docs: man:systemd-sysv-generator(8)
Process: 4565 ExecStop=/etc/init.d/samba-ad-dc stop (code=exited, status=0/SUCCESS)
Process: 4578 ExecStart=/etc/init.d/samba-ad-dc start (code=exited, status=0/SUCCESS)
Tasks: 19
Memory: 160.9M
CPU: 4.539s
CGroup: /system.slice/samba-ad-dc.service
├─4592 /usr/sbin/samba -D
├─4610 /usr/sbin/samba -D
├─4611 /usr/sbin/samba -D
├─4612 /usr/sbin/smbd -D --option=server role check:inhibit=yes --foreground
├─4613 /usr/sbin/samba -D
├─4614 /usr/sbin/samba -D
├─4615 /usr/sbin/samba -D
├─4616 /usr/sbin/samba -D
├─4617 /usr/sbin/samba -D
├─4618 /usr/sbin/samba -D
├─4619 /usr/sbin/samba -D
├─4620 /usr/sbin/samba -D
├─4621 /usr/sbin/samba -D
├─4622 /usr/sbin/samba -D
├─4623 /usr/sbin/winbindd -D --option=server role check:inhibit=yes --foreground
├─4624 /usr/bin/python2.7 /usr/sbin/samba_dnsupdate
├─4626 /usr/sbin/smbd -D --option=server role check:inhibit=yes --foreground
├─4628 /usr/sbin/winbindd -D --option=server role check:inhibit=yes --foreground
└─4629 /usr/sbin/smbd -D --option=server role check:inhibit=yes --foreground

Mar 19 16:32:52 FTCSRV01 samba[4622]: [2018/03/19 16:32:52.246647, 0] ../lib/util/util_runcmd.c:328(samba_runcmd_io_handler)
Mar 19 16:32:52 FTCSRV01 samba[4622]: /usr/sbin/samba_dnsupdate: WARNING: The "idmap backend" option is deprecated
Mar 19 16:32:52 FTCSRV01 samba[4622]: [2018/03/19 16:32:52.246820, 0] ../lib/util/util_runcmd.c:328(samba_runcmd_io_handler)
Mar 19 16:32:52 FTCSRV01 samba[4622]: /usr/sbin/samba_dnsupdate: WARNING: The "idmap uid" option is deprecated
Mar 19 16:32:52 FTCSRV01 samba[4622]: [2018/03/19 16:32:52.246895, 0] ../lib/util/util_runcmd.c:328(samba_runcmd_io_handler)
Mar 19 16:32:52 FTCSRV01 samba[4622]: /usr/sbin/samba_dnsupdate: WARNING: The "idmap gid" option is deprecated
Mar 19 16:32:52 FTCSRV01 smbd[4612]: [2018/03/19 16:32:52.505885, 0] ../lib/util/become_daemon.c:124(daemon_ready)
Mar 19 16:32:52 FTCSRV01 smbd[4612]: STATUS=daemon 'smbd' finished starting up and ready to serve connections
Mar 19 16:32:52 FTCSRV01 winbindd[4623]: [2018/03/19 16:32:52.507399, 0] ../lib/util/become_daemon.c:124(daemon_ready)
Mar 19 16:32:52 FTCSRV01 winbindd[4623]: STATUS=daemon 'winbindd' finished starting up and ready to serve connections


Como nmbd e winbind, não encontram erro:


root@FTCSRV01:/home/tuliocgomes# /etc/init.d/nmbd status
● nmbd.service - LSB: start Samba NetBIOS nameserver (nmbd)
Loaded: loaded (/etc/init.d/nmbd; bad; vendor preset: enabled)
Active: active (exited) since Seg 2018-03-19 16:34:15 -03; 2s ago
Docs: man:systemd-sysv-generator(8)
Process: 4684 ExecStop=/etc/init.d/nmbd stop (code=exited, status=0/SUCCESS)
Process: 4693 ExecStart=/etc/init.d/nmbd start (code=exited, status=0/SUCCESS)

Mar 19 16:34:15 FTCSRV01 systemd[1]: Starting LSB: start Samba NetBIOS nameserver (nmbd)...
Mar 19 16:34:15 FTCSRV01 systemd[1]: Started LSB: start Samba NetBIOS nameserver (nmbd).

root@FTCSRV01:/home/tuliocgomes# systemctl status winbind
● winbind.service - LSB: start Winbind daemon
Loaded: loaded (/etc/init.d/winbind; bad; vendor preset: enabled)
Active: active (exited) since Seg 2018-03-19 16:34:55 -03; 1s ago
Docs: man:systemd-sysv-generator(8)
Process: 4741 ExecStop=/etc/init.d/winbind stop (code=exited, status=0/SUCCESS)
Process: 4750 ExecStart=/etc/init.d/winbind start (code=exited, status=0/SUCCESS)

Mar 19 16:34:54 FTCSRV01 systemd[1]: Starting LSB: start Winbind daemon...
Mar 19 16:34:55 FTCSRV01 systemd[1]: Started LSB: start Winbind daemon.


Efetuando o testparm, ocorre o seguinte:
root@FTCSRV01:/home/tuliocgomes# testparm
Load smb config files from /etc/samba/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
WARNING: The "idmap backend" option is deprecated
WARNING: The "idmap uid" option is deprecated
WARNING: The "idmap gid" option is deprecated
Processing section "[netlogon]"
Processing section "[sysvol]"
Processing section "[LAB46]"
Loaded services file OK.
Server role: ROLE_ACTIVE_DIRECTORY_DC

Press enter to see a dump of your service definitions

# Global parameters
[global]
workgroup = FTC175
realm = FTC175.COM
server role = active directory domain controller
passdb backend = samba_dsdb
map untrusted to domain = Yes
log file = /var/log/samba/%m.log
idmap uid = 10000 - 20000
idmap gid = 10000 - 20000
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
winbind nested groups = No
winbind refresh tickets = Yes
dns forwarder = 172.16.0.1
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate
rpc_server:tcpip = no
rpc_daemon:spoolssd = embedded
rpc_server:spoolss = embedded
rpc_server:winreg = embedded
rpc_server:ntsvcs = embedded
rpc_server:eventlog = embedded
rpc_server:srvsvc = embedded
rpc_server:svcctl = embedded
rpc_server:default = external
winbindd:use external pipes = true
idmap config fatec175 : range = 10000 - 20000
idmap config fatec175 : backend = rid
idmap config * : range = 10000 - 20000
idmap_ldb:use rfc2307 = yes
idmap config * : backend = tdb
map archive = No
map readonly = no
store dos attributes = Yes
vfs objects = dfs_samba4 acl_xattr


[netlogon]
path = /var/lib/samba/sysvol/fatec175.com/scripts
read only = No


[sysvol]
path = /var/lib/samba/sysvol
read only = No


[LAB46]
path = /mnt/sdb5/LAB46
read only = No


Mesmo acopanhando o tutorial, tenho duvidas a respeito desse idmap, é um erro simples?

WARNING: The "idmap backend" option is deprecated
WARNING: The "idmap uid" option is deprecated
WARNING: The "idmap gid" option is deprecated


Vou deixar abaixo o meu smb.conf
# Global parameters
[global]
#security = ADS
workgroup = FTC175
realm = FTC175.COM
netbios name = FTCSRV01
dns forwarder = 172.16.0.1
server role = active directory domain controller
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate
idmap_ldb:use rfc2307 = yes

#Logs
log file = /var/log/samba/%m.log
log level = 1
#username map = /usr/local/samba/etc/user.map

#WINBIND CONFIGS
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
winbind refresh tickets = Yes
winbind nested groups = No
idmap backend = tdb
idmap uid = 10000 - 20000
idmap gid = 10000 - 20000
idmap config FTC175 : backend = rid
idmap config FTC175 : range = 10000 - 20000
map untrusted to domain = Yes
passdb backend = tdbsam


[netlogon]
path = /var/lib/samba/sysvol/ftc175.com/scripts
read only = No

[sysvol]
path = /var/lib/samba/sysvol
read only = No

[LAB46]
path = /mnt/sdb5/LAB46
read only = no



O retorno de um wbinfo -u:
root@FTCSRV01:/home/tuliocgomes# wbinfo -u
FTC175\administrator
FTC175\dns-ftcsrv01
FTC175\tulio.gomes
FTC175\krbtgt
FTC175\guest


Desculpe por todo esse inconveniente, mesmo lendo varios tutoriais e a 1 semana nesse erro, ainda nao consegui solucionar.

Muito obrigado e fico no aguardo.


  






Patrocínio

Site hospedado pelo provedor RedeHost.
Linux banner

Destaques

Artigos

Dicas

Tópicos

Top 10 do mês

Scripts