Samba419 - winbindd fails to start

byrnejb

byrnejb

Host OS: FreeBSD-14.1
Jail OS: FreeBSD-14.1
PKG: Samba419-4.19.7

I am trying to get a samba AD-DC upgraded from samba413 to samba419. The samba413 AD-DC runs on a 13.2 jail. I copied the jail to a separate host and upgraded that to 14.1. I upgraded the packages on the upgraded jail as well. samba413 is not available on 14.1 so that was upgraded to samba419.

I can get samba_server to run but it fails to get the winbindd daemon to successfully start. My attempts to debug this by running winbindd from the cli has not revealed any obvious problems. My thought is that perhaps there is a problem with my smb4.conf copied from samba413.

If someone could share with me their smb4.conf for a working samba419 AD-DC I would much appreciate it.

Thanks,
 
byrnejb said:
My thought is that perhaps there is a problem with my smb4.conf copied from samba413.
Click to expand...
I doubt that's the issue, I never had to edit mine for many years ...

byrnejb said:
If someone could share with me their smb4.conf for a working samba419 AD-DC I would much appreciate it.
Click to expand...
... but here you go (replace ${...} accordingly):
Code: 
[global]
        netbios name = ADDC
        realm = ${domain:tu}
        server role = active directory domain controller
        server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate
        workgroup = ${nt4domain}
        idmap_ldb:use rfc2307 = yes
        ntlm auth = mschapv2-and-ntlmv2-only
        nsupdate command = /usr/local/bin/nsupdate -g
        tls enabled = yes
        tls keyfile = /var/db/samba4/private/tls/key.pem
        tls certfile = /var/db/samba4/private/tls/cert.pem
        tls cafile =

[netlogon]
        path = /var/db/samba4/sysvol/${domain}/scripts
        read only = No
        vfs objects = zfsacl

[sysvol]
        path = /var/db/samba4/sysvol
        read only = No
        vfs objects = zfsacl

I'd still suggest you post relevant log messages etc ...
 
You must log in or register to reply here.
Back
Top