[Comm] Ввод в домен на базе Win 2003 рабочей станции под управлением Simply Linux

Mad-Max-Traveller на yandex.ru Mad-Max-Traveller на yandex.ru
Пт Авг 27 04:52:09 UTC 2010 

  23.08.2010 19:57, Michael Shigorin пишет:
> Поищите на http://search.altlinux.org по фразе "net ads join", e.g.
> http://lists.altlinux.org/pipermail/community/2007-October/620149.htm

Спасибо Михаил. Кое что найти удалось, но проблема осталась.

Информация взята от сюда:

http://forum.altlinux.org/index.php?topic=376.0;wap2


Что бы авторизация шла через winbind необходимо привести 
/etc/pam.d/gdm к виду:
#%PAM-1.0
#auth     required    pam_env.so
#auth     include    system-auth
#auth     required    pam_nologin.so
#account  include    system-auth
#password include    system-auth
#session  include    system-auth
#session  optional     pam_console.so
auth     include        system-auth-winbind
auth     required       pam_nologin.so
account  include        system-auth-winbind
password include        system-auth-winbind
session  include        system-auth-winbind
session  optional       pam_console.so

А /etc/pam.d/system-auth-winbind к виду:

#%PAM-1.0
auth        required    pam_securetty.so
auth        required    pam_nologin.so
#auth        sufficient    pam_winbind.so
auth        sufficient    pam_winbind.so krb5_auth 
krb5_ccache_type=FILE cached_login
auth        include        system-auth-use_first_pass
account        sufficient    pam_winbind.so
account        include        system-auth
password    sufficient    pam_winbind.so
password    include        system-auth-use_first_pass
# We use pam_mkhomedir to create home dirs for incoming domain users
# Note used umask, it will result in rwxr-x--x access rights
#session        required    pam_mkhomedir.so skel=/etc/skel/ umask=0026
session        required    pam_mkhomedir.so skel=/etc/skel/ umask=0077
session        include        system-auth

Но доменным пользователем зайти так и не удалось.
В логах вижу следующее:

/messages

Aug 27 10:55:00 wslinux winbind: Winbind startup succeeded
Aug 27 10:55:00 wslinux winbindd[6986]: [2010/08/27 10:55:00, 0] 
nsswitch/winbindd_cache.c:initialize_winbindd_cache(2229)
Aug 27 10:55:00 wslinux winbindd[6986]:   initialize_winbindd_cache: 
clearing cache and re-creating with version number 1
Aug 27 10:55:00 wslinux winbindd[7041]: [2010/08/27 10:55:00, 0] 
nsswitch/idmap.c:idmap_init(772)
Aug 27 10:55:00 wslinux winbindd[7041]:   ERROR: Initialization failed 
for alloc backend tdb, deferred!
Aug 27 10:55:00 wslinux winbindd[7041]: [2010/08/27 10:55:00, 0] 
nsswitch/idmap.c:idmap_alloc_init(820)
Aug 27 10:55:00 wslinux winbindd[7041]:   ERROR: Initialization failed 
for alloc backend, deferred!
Aug 27 10:55:01 wslinux smbd[6959]: [2010/08/27 10:55:00, 0] 
auth/auth_util.c:create_builtin_administrators(844)
Aug 27 10:55:01 wslinux smbd[6959]:   create_builtin_administrators: 
Failed to create Administrators
Aug 27 10:55:01 wslinux winbindd[7041]: [2010/08/27 10:55:00, 0] 
nsswitch/idmap.c:idmap_alloc_init(820)
Aug 27 10:55:01 wslinux winbindd[7041]:   ERROR: Initialization failed 
for alloc backend, deferred!
Aug 27 10:55:01 wslinux smbd[6959]: [2010/08/27 10:55:00, 0] 
auth/auth_util.c:create_builtin_users(810)
Aug 27 10:55:01 wslinux smbd[6959]:   create_builtin_users: Failed to 
create Users
Aug 27 10:55:04 wslinux winbindd[6986]: [2010/08/27 10:55:04, 0] 
lib/util_sid.c:string_to_sid(242)
Aug 27 10:55:04 wslinux winbindd[6986]:   string_to_sid: Sid S-0-0 is 
not in a valid format.
Aug 27 10:55:04 wslinux winbindd[7041]: [2010/08/27 10:55:04, 0] 
nsswitch/idmap.c:idmap_alloc_init(820)
Aug 27 10:55:04 wslinux winbindd[7041]:   ERROR: Initialization failed 
for alloc backend, deferred!
Aug 27 10:55:05 wslinux nss_wins[6959]: [2010/08/27 10:55:04, 0] 
auth/auth_util.c:create_builtin_administrators(844)
Aug 27 10:55:05 wslinux nss_wins[6959]:   
create_builtin_administrators: Failed to create Administrators
Aug 27 10:55:05 wslinux winbindd[7041]: [2010/08/27 10:55:04, 0] 
nsswitch/idmap.c:idmap_alloc_init(820)
Aug 27 10:55:05 wslinux winbindd[7041]:   ERROR: Initialization failed 
for alloc backend, deferred!
Aug 27 10:55:05 wslinux nss_wins[6959]: [2010/08/27 10:55:04, 0] 
auth/auth_util.c:create_builtin_users(810)
Aug 27 10:55:05 wslinux nss_wins[6959]:   create_builtin_users: Failed 
to create Users
Aug 27 10:55:14 wslinux gdm-binary[6501]: WARNING: .\235.. 
.\203.........\201.\214 .....\202...\200...........\202.\214 
.......\214.........\202.....\217
Aug 27 10:55:22 wslinux kernel: [   50.760115] [drm] Num pipes: 1
Aug 27 10:56:12 wslinux kernel: [   99.964427] agpgart-intel 
0000:00:00.0: AGP 3.0 bridge
Aug 27 10:56:12 wslinux kernel: [   99.964451] agpgart-intel 
0000:00:00.0: putting AGP V3 device into 8x mode
Aug 27 10:56:12 wslinux kernel: [   99.964494] pci 0000:01:00.0: 
putting AGP V3 device into 8x mode
Aug 27 10:56:12 wslinux kernel: [   99.964516] [drm] Loading R300 
Microcode
Aug 27 10:56:12 wslinux kernel: [   99.964554] [drm] Num pipes: 1
Aug 27 10:56:23 wslinux gdm-binary[6501]: WARNING: .\235.. 
.\203.........\201.\214 .....\202...\200...........\202.\214 
.......\214.........\202.....\217

/log.winbind

   Copyright Andrew Tridgell and the Samba Team 1992-2009
[2010/08/27 10:55:00, 0] 
nsswitch/winbindd_cache.c:initialize_winbindd_cache(2229)
   initialize_winbindd_cache: clearing cache and re-creating with 
version number 1
[2010/08/27 10:55:04, 0] lib/util_sid.c:string_to_sid(242)
   string_to_sid: Sid S-0-0 is not in a valid format.
[2010/08/27 11:00:18, 0] lib/util_sid.c:string_to_sid(242)
   string_to_sid: Sid S-0-0 is not in a valid format.
[2010/08/27 11:05:31, 0] lib/util_sid.c:string_to_sid(242)
   string_to_sid: Sid S-0-0 is not in a valid format.
[2010/08/27 11:10:31, 0] lib/util_sid.c:string_to_sid(242)
   string_to_sid: Sid S-0-0 is not in a valid format.
[2010/08/27 11:15:32, 0] lib/util_sid.c:string_to_sid(242)
   string_to_sid: Sid S-0-0 is not in a valid format.

/log.winbind-idmap

[2010/08/27 10:55:04, 1] nsswitch/idmap_tdb.c:idmap_tdb_alloc_init(397)
   idmap uid range missing or invalid
   idmap will be unable to map foreign SIDs
[2010/08/27 10:55:04, 0] nsswitch/idmap.c:idmap_alloc_init(820)
   ERROR: Initialization failed for alloc backend, deferred!
[2010/08/27 10:55:04, 1] nsswitch/idmap_tdb.c:idmap_tdb_alloc_init(397)
   idmap uid range missing or invalid
   idmap will be unable to map foreign SIDs
[2010/08/27 10:55:04, 0] nsswitch/idmap.c:idmap_alloc_init(820)
   ERROR: Initialization failed for alloc backend, deferred!

По ошибкам погуглил, пока внятного ничего не нашел.
----------- следующая часть -----------
Вложение в формате HTML было удалено...
URL: <http://lists.altlinux.org/pipermail/community/attachments/20100827/dbe817b3/attachment.html>

Подробная информация о списке рассылки community