There is a network with Win2K domain controller. Winbind is running on a FreeBSD server and provides authentication for e-mail, web server and other similar stuff. If Win2K domain controller reboots or goes down for some time, winbind still rejects all user authentication requests. The auth.log file constains messages like Mar 16 11:35:16 dcn popper[981]: SomeUser at earth.research.dcn (10.0.103.32): -ERR [AUTH] PAM authentication failed for user "SomeUser": authentication error (9) Mar 16 11:35:16 dcn popper[981]: [AUTH] Failed attempted login to SomeUser from host (earth.research.dcn) 10.0.103.32 Restarting winbind fixes the problem. The following is smb.conf [global] dos charset = CP866 workgroup = RESEARCH realm = RESEARCH.DCN netbios name = MASTER server string = Public file server security = DOMAIN password server = 10.0.103.5 username map = /usr/local/etc/smbusers unix extensions = No wins server = 10.0.103.5 ldap ssl = no idmap uid = 20000-30000 idmap gid = 20000-30000 template shell = /usr/local/bin/bash winbind separator = / winbind use default domain = Yes [storage] path = /data/storage read only = No create mask = 0666 directory mask = 0777 guest ok = Yes vfs objects = kavsamba5-smb-3.0.20 [homes] comment = %U's home directory path = /home/%D/%U read only = No vfs objects = kavsamba5-smb-3.0.20 [AVPBases] path = /var/db/kav/5.0/kav4mailservers/bases/ guest ok = Yes [libuploads] comment = Put here files you wish to submit to the e-library path = /data/library/uploads read only = No [backup] path = /var/backup read only = No
Can you please test with Samba 3.0.21c and see if that is still the case?
All reports are that this is fixed in 3.0.21c