Single user can't access SMB shares

chartley21

Cadet
Joined
May 13, 2019
Messages
4
I have a problem where a single domain user cannot browse our primary TrueNAS file server. It’s only happening to one user account. He has no problem accessing our secondary and tertiary servers. The problem occurs no matter which desktop PC we log him into, so it seems to be only related to his account and only to the primary TrueNAS.


It appears that the employee's SID is incorrect in the winbind mapping. Compare the results below. The first three are for the wonky account and the next three are for a known good account:



Command: wbinfo --user-info KPFF\\kylea
Result: KPFF\kylea:*:30395:20513::/home/KPFF/kylea:/bin/sh

Result: Command: wbinfo -U 30395
S-1-22-1-30395 <--------------This appears to be wrong.

Result: Command: wbinfo -s S-1-5-21-57989841-1425521274-1801674531-10395
KPFF\kylea 1




Command: wbinfo -i KPFF\\chartley
Result: KPFF\chartley:*:25289:20513::/home/KPFF/chartley:/bin/sh

Command: wbinfo -U 25289
Result: S-1-5-21-57989841-1425521274-1801674531-5289 <--------------This is correct.

Command: wbinfo -s S-1-5-21-57989841-1425521274-1801674531-5289
Result: KPFF\chartley 1




If I examine the bad account using net usersidlist, everything looks fine.

net usersidlist | grep -A 20 kylea
KPFF\kylea
S-1-5-21-57989841-1425521274-1801674531-10395
S-1-1-0
S-1-5-2
S-1-5-11
S-1-5-21-57989841-1425521274-1801674531-513
S-1-5-21-57989841-1425521274-1801674531-1925
S-1-5-21-57989841-1425521274-1801674531-1915
S-1-5-21-57989841-1425521274-1801674531-10282
S-1-5-21-57989841-1425521274-1801674531-7130
S-1-5-21-57989841-1425521274-1801674531-13282
S-1-5-21-2558331283-2322614646-3279769513-1556
S-1-5-21-2558331283-2322614646-3279769513-1478
S-1-5-32-545



Any ideas?
 
Top