maphew
December 22nd, 2005, 06:30 PM
Hi, I'm having troubles getting winbind and active directory working completely. I've followed the wiki howto https://wiki.ubuntu.com/ActiveDirectoryWinbindHowto . The error in auth.log is:
Dec 22 12:52:08 ubuntu-srv sshd[24922]: Invalid user MYDOMAIN+mwilkie from 123.123.123.123
Dec 22 12:52:17 ubuntu-srv pam_winbind[24924]: request failed: NT_STATUS_NOT_SUPPORTED, PAM error was 4, NT error was NT_STATUS_NOT_SUPPORTED
Dec 22 12:52:17 ubuntu-srv pam_winbind[24924]: internal module error (retval = 4, user = `MYDOMAIN+mwilkie')
Dec 22 12:52:17 ubuntu-srv sshd[24924]: (pam_unix) check pass; user unknown
Dec 22 12:52:17 ubuntu-srv sshd[24924]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=geomatt.mydomain.ca
Dec 22 12:52:19 ubuntu-srv sshd[24922]: error: PAM: Authentication failure for illegal user MYDOMAIN+mwilkie from geomatt.mydomain.ca
Dec 22 12:52:19 ubuntu-srv sshd[24922]: Failed keyboard-interactive/pam for invalid user MYDOMAIN+mwilkie from 123.123.123.123 port 1704 ssh2
I can retrieve active directory users and groups using 'wbinfo' and 'getent group'. 'getent passwd' returns no errors, but doesn't list any AD users either (because none have logged in yet?).
The 'kinit' test does not work. Though it did 3 months ago when I first started setting this up, with ubuntu 5.04. I dist-upgraded to 5.10. The error from kinit is:
kinit(v5): Cannot resolve network address for KDC in requested realm while getting initial credentials
your help in troubleshooting this matter would be much appreciated. Thank you.
Dec 22 12:52:08 ubuntu-srv sshd[24922]: Invalid user MYDOMAIN+mwilkie from 123.123.123.123
Dec 22 12:52:17 ubuntu-srv pam_winbind[24924]: request failed: NT_STATUS_NOT_SUPPORTED, PAM error was 4, NT error was NT_STATUS_NOT_SUPPORTED
Dec 22 12:52:17 ubuntu-srv pam_winbind[24924]: internal module error (retval = 4, user = `MYDOMAIN+mwilkie')
Dec 22 12:52:17 ubuntu-srv sshd[24924]: (pam_unix) check pass; user unknown
Dec 22 12:52:17 ubuntu-srv sshd[24924]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=geomatt.mydomain.ca
Dec 22 12:52:19 ubuntu-srv sshd[24922]: error: PAM: Authentication failure for illegal user MYDOMAIN+mwilkie from geomatt.mydomain.ca
Dec 22 12:52:19 ubuntu-srv sshd[24922]: Failed keyboard-interactive/pam for invalid user MYDOMAIN+mwilkie from 123.123.123.123 port 1704 ssh2
I can retrieve active directory users and groups using 'wbinfo' and 'getent group'. 'getent passwd' returns no errors, but doesn't list any AD users either (because none have logged in yet?).
The 'kinit' test does not work. Though it did 3 months ago when I first started setting this up, with ubuntu 5.04. I dist-upgraded to 5.10. The error from kinit is:
kinit(v5): Cannot resolve network address for KDC in requested realm while getting initial credentials
your help in troubleshooting this matter would be much appreciated. Thank you.