How to get winbind to show the domain in user and group listings

Posted on 2009-04-28
Last Modified: 2013-12-02
On an old file server which has samba 3.0.7-2 and authenticates against a NT4 domain controller showing the owners of files causes the domain to be displayed so you can easily see that it cones from the windows domain and is not a native unix group. Also :-
[root@file2 samba]# wbinfo -g
BUILTIN/System Operators
BUILTIN/Power Users
BUILTIN/Print Operators
BUILTIN/Account Operators
BUILTIN/Backup Operators

I have setup a new server and configured it to authenticate against a SBS 2003R2 server and this is all working fine however the domain is not showing. For example :-

[root@file3 shares]# wbinfo -g
wins users
domain computers
domain controllers
schema admins

I have added the winbind separator and restarted winbind and samba but it is still not showing. Am I missing something?

# testparm

Load smb config files from /etc/samba/smb.conf

Processing section "[homes]"

Processing section "[printers]"

Processing section "[dump]"

Loaded services file OK.


Press enter to see a dump of your service definitions


        workgroup = TEST

        realm = TEST.LOCAL

        security = ADS

        password server = testsrv.test.local

        idmap uid = 16777216-33554431

        idmap gid = 16777216-33554431

        winbind separator = /

        winbind enum users = Yes

        winbind enum groups = Yes

        winbind use default domain = Yes

        cups options = raw


        comment = Home Directories

        read only = No

        browseable = No


        comment = All Printers

        path = /var/spool/samba

        printable = Yes

        browseable = No


        comment = General area for MIS use

        path = /shares/dump

        valid users = @TEST/mis

        force group = TEST/mis

        read only = No

        force create mode = 0665

        force directory mode = 0774

Open in new window

Question by:grblades
    LVL 76

    Accepted Solution

    Just try to alter:
    winbind use default domain = Yes
    winbind use default domain = no

    using the yes option, the user do not need to provide the AD domain when loging in, but when listing the domain is likely omitted.
    LVL 36

    Author Closing Comment

    Thanks that was exactly the problem.

    Featured Post

    Shouldn't all users have the same email signature?

    You wouldn't let your users design their own business cards, would you? So, why do you let them design their own email signatures? Think of the damage they could be doing to your brand reputation! Choose the easy way to manage set up and add email signatures for all users.

    Join & Write a Comment

    Using 'screen' for session sharing, The Simple Edition Step 1: user starts session with command: screen Step 2: other user (logged in with same user account) connects with command: screen -x Done. Both users are connected to the same CLI sessio…
    It’s 2016. Password authentication should be dead — or at least close to dying. But, unfortunately, it has not traversed Quagga stage yet. Using password authentication is like laundering hotel guest linens with a washboard — it’s Passé.
    Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
    Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:

    755 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    24 Experts available now in Live!

    Get 1:1 Help Now