Fixing potential BUG in TrueNAS Scale 23.10.2

L

ludocop

Cadet
Joined
Mar 22, 2024
Messages
2
I have noticed that after configuring the Active Directory services to allow access to SAMBA with both domain users and local users, upon restarting TrueNAS, it does not allow access to local users in Samba. After comparing the output of the "testparm" command when it works with both users (local and Active Directory), I have noticed that when it does not work, the following line is missing in the [GLOBAL] block:

passdb backend = tdbsam:/var/run/samba-cache/private/passdb.tdb

To fix this, I edited the file with "nano /usr/lib/python3/dist-packages/middlewared/plugins/activedirectory.py" and added the line in the script, resulting in the final outcome as follows:

AD_SMBCONF_PARAMS = {
"server role": "member server",
"kerberos method": "secrets and keytab",
"security": "ADS", "local master": False,
"domain master": False,
"preferred master": False,
"winbind cache time": 7200,
"passdb backend": "tdbsam:/var/run/samba-cache/private/passdb.tdb",
"winbind max domain connections": 10,
"client ldap sasl wrapping": "seal",
"template shell": "/bin/sh",
"template homedir": None,
"ads dns update": None,
"realm": None,
"allow trusted domains": None,
"winbind enum users": None,
"winbind enum groups": None,
"winbind use default domain": None,
"winbind nss info": None,
}

Now, after restarting TrueNAS, both local users and Active Directory users connect perfectly.
 
You must log in or register to reply here.

Similar threads

Daniel Chen
  • Locked
AD USERS lost per 2 hours
Replies
1
Views
2K
Daniel Chen
Daniel Chen
M
No AD Users/Group visible
Replies
4
Views
2K
Mugga
M
blanchet
Use Active Directory RFC2307
Replies
11
Views
2K
hydrian
H
H
  • Locked
SMB ACL issues on 9.10.1-U2
Replies
14
Views
2K
Henning Kessler
H
P
  • Locked
Samba with ADS is missing users & groups using: getent (nas4free)
Replies
1
Views
3K
cyberjock
C
Top