http://bugzilla.novell.com/show_bug.cgi?id=627165 http://bugzilla.novell.com/show_bug.cgi?id=627165#c0 Summary: winbind fails to resolve usernames if 'wins server' is defined in smb.conf Classification: openSUSE Product: openSUSE 11.2 Version: Final Platform: x86 OS/Version: openSUSE 11.2 Status: NEW Severity: Critical Priority: P5 - None Component: Samba AssignedTo: samba-maintainers@SuSE.de ReportedBy: kmgramm@code3pse.com QAContact: samba-maintainers@SuSE.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.8) Gecko/20100723 SUSE/3.6.8-1.1 Firefox/3.6.8 I've got over 15 11.2 machines running in two different Windows 2k3 domains. All machines run samba/winbind to link them to our Windows network and all use an identical smb.conf [global] section. workgroup = WORKGROUP server string = "" realm = WORKGROUP.EXMAPLE.COM security = ADS encrypt passwords = yes password server = server01 server02 usershare allow guests = no map to guest = Bad User wins server = server01 server02 wins support = no name resolve order = wins bcast prefered master = no idmap backend = rid:WORKGROUP=20000-30000 idmap uid = 20000-30000 idmap gid = 20000-30000 winbind use default domain = yes winbind enum users = yes winbind enum groups = yes winbind refresh tickets = yes template homedir = /home/%D/%U template shell = /bin/bash I've used this basic configuration for years with no problem. That is until the samba 3.4.3 update. Ever since then I've noticed that after a while (ie. 5-10 minutes) winbind "forgets" the username list and will fail to resolve AD usernames. It is most noticeable when logged into the GUI and the screensaver locks. I can not get the system to accept my password until I drop to a terminal screen and restart winbind. Then I can jump back to the desktop and successfully unlock the screen. Also the following problems will randomly pop-up: - I sometimes get 'I have no name' when I open a terminal window. - If I run getent passwd, only local accounts are shown - net ads testjoing will return 'No logon servers' - net ads status will also show 'No logon servers' All are cured by restarting winbind. I increased the logging for samba and noticed that it appears to be having issues resolving name with WINS: - Cache entry with key = NBT/SERVER01.WORKGROUP.EXAMPLE.COM#00 couldn't be found no entry for server01.workgroup.example.com#00 found - resolve_wins: Attempting wins lookup for name server01.workgroup.example.com<0x0> - name_resolve_bcast: Attempting bcast lookup for name server01.workgroup.example.com<0x0> To test things out, I created a completely separate third AD network with two server and a single 11.2 box. This time I didn't use my standard smb.conf file; I allowed the yast wizards to attach the test box to my test domain. It ran for days with no dropped usernames and/or net ads errors. Then I started adding some of my missing global options. Once I got to 'wins server =', my test machine started acting just like all of the other ones. After 5-10 minutes it would forget usernames, testjoin would show 'No logon server', etc... Removed 'wins sever' and the system starts behaving. Reproducible: Always Steps to Reproduce: 1. Load default machine 2. Join it to a AD network 3. Add wins server = X.X.X.X option to Global section of smb.conf 4. Restart winbind 5. Wait 5-10 minutes 6. Try to resolve AD usernames Actual Results: System can't find usernames Expected Results: System successfully resolve usernames. All machines are 32 bit. I didn't try out any x64 based machines. The problem exits in 11.3. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.