Expected AD setup

customer42

Cadet
Joined
Oct 21, 2020
Messages
7
Hi All,

After much pain, I finally got freenas working with the domain.. wbinfo shows the expected users and groups ..

however, what is the expected interaction model?

there does not seem to be a way automatically create a dataset with AD users home directories. .. or create seamless integration with ad usernames/passwords ..
nor do I see ad users/groups in the acl rules ..

is this correct? or not working as expected?

I would expect my groups and users to be populated into the acl rules at worst .. maybe even been able to access their home directories when logging into a machine with their ad credentials..

is the expectation to manually add each user and recreate all of the groups?
 
Joined
Jan 7, 2015
Messages
1,150
I remember it taking some time for AD users/groups to populate.
 

customer42

Cadet
Joined
Oct 21, 2020
Messages
7
how long do you figure it should take? in my case sbino -g /-u shows all of the users (status is connected to ad).. I can create a test smb share and use my ad credentials to log in .. I see the "test" share.. but I do not have permission to actually get into it.

In the set up.. the only users and groups listed are the standard linux ones.

should my domain users/groups not show up there?

From what I can tell its working... but i just dont see any way to assign permissions to it ...

for example ..
i created a data set called home
selected the "home" checkbox
mounted it with smb
I see /mnt/zroot/home/DOMAIN/myuser
permissions are domain\user and domain\domain users

as far as I can tell everything is actually working..

I just don't see any AD users / groups and such in the ACL..

thats why Im confused lol.. it should be working ..
 
Last edited:
Joined
Jan 7, 2015
Messages
1,150
In the set up.. the only users and groups listed are the standard linux ones.

This is where it takes about 10 seconds for all the users/choices to populate. Leave the dialog open a few seconds and they show up.
 
Joined
Jan 7, 2015
Messages
1,150
I just don't see any AD users / groups and such in the ACL.

Here too. If memory serves these dialogs take several seconds to populate AD users and groups, especially if there are lots.
 

customer42

Cadet
Joined
Oct 21, 2020
Messages
7
the users never show up in SMB/acls, AD .. or the users area.. its been 30 mins and i only have 40 users and a few groups .. as per the documentation the ad time out was changed to 60

my guess is there is something else .
 
Last edited:
Top