WINBIND module missing in AIX 7.1

Login or Register for Dates, Times and to Reply

 
Thread Tools Search this Thread
Special Forums UNIX and Linux Applications WINBIND module missing in AIX 7.1
# 1  
WINBIND module missing in AIX 7.1

I have installed following packages from perzl
samba-winbind-clients-3.6.22-1
samba-client-3.6.22-1
samba-domainjoin-gui-3.6.22-1
samba-winbind-devel-3.6.22-1
samba-3.6.22-1
samba-common-3.6.22-1
samba-winbind-krb5-locator-3.6.22-1
samba-doc-3.6.22-1
samba-swat-3.6.22-1
samba-winbind-3.6.22-1
libsmbclient-3.6.22-1
libsmbclient-devel-3.6.22-1

but I only find this files under /opt/freeware/lib/security :
Code:
# pwd
/opt/freeware/lib/security
# ls -al
total 6624
drwxr-xr-x    2 root     system          256 Sep 19 08:51 .
drwxr-xr-x   15 root     system         8192 Sep 19 08:51 ..
-rwxr-xr-x    1 root     system      3225482 Dec 10 2013  pam_smbpass.so
-rwxr-xr-x    1 root     system       155064 Dec 10 2013  pam_winbind.so

WINBIND module is missing and I have executed a find command for WINBIIND and is not located at any path.
I can join the Domain correctly and wbinfo –u works but I can not access any shares , I guess it is because I’m missing that module.
Code:
  check_ntlm_password:  Authentication for user [XXXXXX] -> [XXXXXX] FAILED with
  error NT_STATUS_NO_SUCH_USER

Moderator's Comments:
Mod Comment Please use code tags next time for your code and data. Thanks

Last edited by vbe; 09-19-2014 at 06:49 AM.. Reason: code tags
# 2  
Since you have wbinfo I dont believe its missing...
Have you configured correctly kerberos, smb.conf, methods.conf?
Have you tried the other options of wbinfo? Have you looked in the logs?
# 3  
but I execute find / -name WINBIND and I can not find anything.
methods.cfg :
Code:
WINBIND:
        program = /usr/lib/security/WINBIND

LDAP:
        program = /usr/lib/security/LDAP
        program_64 = /usr/lib/security/LDAP64

NIS:
        program = /usr/lib/security/NIS
        program_64 = /usr/lib/security/NIS_64

DCE:
        program = /usr/lib/security/DCE

PAM:
        program = /usr/lib/security/PAM

kerberos and smb.conf are correct , I have another aix 5.3 machines working fine .
I can get a ticket with kerberos:
Code:
kinit user
asks for password and then I get sucess messages :
Done!
New ticket is stored in cache file //krb5cc_root

This is my smb.conf :
Code:
[global]
        workgroup = MYDOMAIN
        realm = MYDOMAIN.COM
        server string = Samba server
        security = ADS
        log file = /var/log/samba/log.%m
        dos filetime resolution = yes
        debug level = 2
        max log size = 1000
        winbinduid = 30000-40000
        winbindgid = 30000-40000
        winbind enum users = Yes
        winbind enum groups = Yes
        winbind separator = +
        winbind use default domain = Yes
        winbind nested groups = No
        read only = No
        lock directory = /var/locks/samba
        socket options = TCP_NODELAY
        allow trusted domains = no
        panic action = "/usr/bin/sleep 90000"
        nmbd bind explicit broadcast = no

[TMP]
  comment = TMP
  path = /tmp
  valid_users = "MYDOMAIN+myuser"

When I try to access TMP share with my user I get a login window and I can not access even setting user and password.
i get this message in the log file :
Code:
[2014/09/19 12:33:30.507018,  2] auth/auth.c:319(check_ntlm_password)
  check_ntlm_password:  Authentication for user [myuser] -> [myuser] FAILED with error NT_STATUS_NO_SUCH_USER


Moderator's Comments:
Mod Comment Please use code tags next time for your code and data. Thanks

Last edited by vbe; 09-19-2014 at 09:35 AM..
# 4  
You have your answer:
Quote:
FAILED with error NT_STATUS_NO_SUCH_USER
Ive been also able to generate a ticket for a user on my aix that is not known in the AD...
Then this is client side, what about the smb.conf or it equivalent in WINDOWS? who does it allow to mount?
# 5  
sorry , I did not explain it correctly .
The ticket is created in the aix client machine with a windows user , I execute :

Code:
> kinit myuser 
Password for myuser@MYDOMAIN.COM:

I type windows passwdor and then
Code:
Done!
New ticket is stored in cache file //krb5cc_root

So aix client's kerberos configuration with windows domain controller is Ok.

what you mean for smb.conf equivalent in windows?
Samba is configured for windows authentication so the domain controller is supposed to allow access to the share.
I'm going to try to find any messages in the windows dc.
but I still do not understand if samba installation has gone Ok why can not find WINBIND module in the aix client...
# 6  
Oh I got it wrong...
try
Code:
find / -name "*winbind*" -print

because I have no more AIX smb servers since last year and cant remember all but I think there was winbind stuff but lowercase in my mind like winbindd...
# 7  
This is the output:

Code:
/etc/rc.d/init.d/winbindd
/etc/rc.d/rc2.d/Kwinbindd
/etc/rc.d/rc2.d/Swinbindd
/etc/rc.d/rc3.d/Kwinbindd
/etc/rc.d/rc3.d/Swinbindd
/opt/RPM_inst_root/var/lib/samba/winbindd_privileged
/opt/freeware/doc/samba-doc-3.6.22/htmldocs/Samba3-HOWTO/images/idmap_winbind_no_loop.png
/opt/freeware/doc/samba-doc-3.6.22/htmldocs/Samba3-HOWTO/winbind.html
/opt/freeware/doc/samba-doc-3.6.22/htmldocs/manpages/pam_winbind.8.html
/opt/freeware/doc/samba-doc-3.6.22/htmldocs/manpages/pam_winbind.conf.5.html
/opt/freeware/doc/samba-doc-3.6.22/htmldocs/manpages/winbind_krb5_locator.7.html
/opt/freeware/doc/samba-doc-3.6.22/htmldocs/manpages/winbindd.8.html
/opt/freeware/lib/krb5/plugins/libkrb5/winbind_krb5_locator.so
/opt/freeware/lib/security/pam_winbind.so
/opt/freeware/man/man5/pam_winbind.conf.5
/opt/freeware/man/man7/winbind_krb5_locator.7
/opt/freeware/man/man8/pam_winbind.8
/opt/freeware/man/man8/winbindd.8
/opt/freeware/sbin/winbindd
/opt/freeware/share/locale/ar/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/cs/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/da/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/de/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/es/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/fi/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/fr/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/hu/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/it/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/ja/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/ko/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/nb/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/nl/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/pl/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/pt_BR/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/ru/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/sv/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/zh_CN/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/locale/zh_TW/LC_MESSAGES/pam_winbind.mo
/opt/freeware/share/swat/help/Samba3-HOWTO/images/idmap_winbind_no_loop.png
/opt/freeware/share/swat/help/Samba3-HOWTO/winbind.html
/opt/freeware/share/swat/help/manpages/pam_winbind.8.html
/opt/freeware/share/swat/help/manpages/pam_winbind.conf.5.html
/opt/freeware/share/swat/help/manpages/winbind_krb5_locator.7.html
/opt/freeware/share/swat/help/manpages/winbindd.8.html
/opt/freeware/src/packages/SOURCES/winbindd.aix.init
/tmp/.winbindd
/var/lib/samba/winbindd_privileged
/var/locks/samba/winbindd_cache.tdb
/var/locks/samba/winbindd_idmap.tdb
/var/locks/samba/winbindd_privileged
/var/log/samba/cores/winbindd
/var/log/samba/log.winbindd
/var/log/samba/log.winbindd-dc-connect
/var/log/samba/log.winbindd-locator
/var/run/winbindd.pid

Moderator's Comments:
Mod Comment As has been requested before, please use CODE tags for sample input, sample output, and for code segments.

Last edited by Don Cragun; 09-22-2014 at 04:46 AM.. Reason: Add CODE tags.
Login or Register for Dates, Times and to Reply

Previous Thread | Next Thread
Thread Tools Search this Thread
Search this Thread:
Advanced Search

Test Your Knowledge in Computers #552
Difficulty: Medium
If variable i has the value 10, after x = 5 + (++i); the value of x after this code is 15.
True or False?

10 More Discussions You Might Find Interesting

1. AIX

The Missing AIX Documentation Project

Welcome to AIX - All Intricacies eXplained List of AIX commands lacking documentation: mkinstallp (create installable packages) imfs (create FS entries in /etc/filesystems) getlvodm (get LVM information from LVCB and ODM) ldeletepv (delete phantom disks from ODM) lqueryvg (lists... (1 Reply)
Discussion started by: bakunin
1 Replies

2. AIX

Realpath [Missing Manual][AIX 7.1]

NAME realpath SYNOPSIS /usr/lib/instl/realpath --help | path DESCRIPTION Translates 'Path' into its absolute, canonical form. EXAMPLES (0 Replies)
Discussion started by: agent.kgb
0 Replies

3. AIX

Dmpdt_chrp [Missing Manual] [AIX 7.1]

NAME dmpdt_chrp SYNOPSIS /usr/lib/boot/bin/dmpdt_chrp /usr/lib/boot/bin/dmpdt_chrp /usr/lib/boot/bin/dmpdt_chrp /usr/lib/boot/bin/dmpdt_chrp DESCRIPTION Dumps OpenFirmware device tree -n dumps NVRAM variables -b dumps in some binary format -i dumps in... (0 Replies)
Discussion started by: agent.kgb
0 Replies

4. AIX

Samba 3.6.22 on AIX 7.1 with Windows AD (Kerberos and winbind)

Hi all, I have installed samba 3.6.22 on AIX 7.1 and join a windows AD with success. All seem to work fine, I have configured smb.conf, methods.cfg, kerberos, user .... the following command work fine wbinfo -u, wbinfo -g, wbinfo -i, wbinfo -s, wbinfo -S, lsuser, id... The unique... (20 Replies)
Discussion started by: PhilippeA
20 Replies

5. AIX

AIX 7.1 integrate AD with winbind

I have joined an AIX 7.1 into a 2012 AD domain sucesfully. I can get ouput from wbinfo -u but when I try to access a share I get the following error : check_ntlm_password: Authentication for user -> FAILED with error NT_STATUS_NO_SUCH_USER I have found that I'm missing... (0 Replies)
Discussion started by: laxtnog
0 Replies

6. UNIX for Advanced & Expert Users

Cannot login using WINBIND in AIX 5.3

I configured AIX5.3 to use kerberos and winbind so user can login and authenticate via AD. I was able to join my AIX server to domain and can execute wbinfo -u/g. However when I login, It says unknown user. I already edit /etc/secuirty/user and then method.cfg. On the log.winbindd it says ... (0 Replies)
Discussion started by: lhareigh890
0 Replies

7. UNIX for Advanced & Expert Users

AIX Dependent Module could not be loaded

I am encountering the above error , even after setting the environment variables correctly AFAIK. I've found sources that say LIBPATH is the shared library variable , and others that say LIB_PATH, so I set both: ========================= root@lipossrp01ga: # echo $gtm_dist ... (6 Replies)
Discussion started by: Clovis_Sangrail
6 Replies

8. AIX

Help Please - Command to view missing filesets in aix

Please anyone tell me "What is the command to view missing filesets in aix" Thanks in advance ---------- Post updated at 09:34 PM ---------- Previous update was at 05:09 PM ---------- Please anyone tell me "What is the command to view missing filesets in aix" Thanks in advance (3 Replies)
Discussion started by: sweetysiva29
3 Replies

9. AIX

Missing efix on AIX 4.3.3

Hi forum, I have two servers. Both running same version 4.3.3 TL11. On one of them efix IX85104 is installed but missing on another server. I have tried to find it and download it but it's just too old. Is there any way that I could extract/copy this efix from server where it's present... (1 Reply)
Discussion started by: phobus
1 Replies

10. Fedora

missing x11 module, how do i get it?

Hi I need to enable double buffering support for x11, this is supposed to be as simple as loading the "dbe" module but it doesn't exist on my system. The source for this module appears to be in the package libxext6, but that is already installed and only creates \usr\lib\libXext.so.6.4.0 Does... (4 Replies)
Discussion started by: Creamy Goodness
4 Replies

Featured Tech Videos