Zentyal Forum, Linux Small Business Server

Zentyal Server => Directory and Authentication => Topic started by: nickpiggott on January 22, 2018, 04:24:43 pm

Title: Zentyal 5.0 - Local usernames on PDC now prefixed with DOMAIN
Post by: nickpiggott on January 22, 2018, 04:24:43 pm
Environment
Zentyal 5.0.10
Ubtuntu 16.04
zentyal-samba 5.0.10

Summary
Since upgrading to Zentyal 5.0, AD usernames are prefixed with the DOMAIN on the PDC

Problem
On Zentyal 4.2 usernames on the PDC were the username. e.g. tomjones
On upgrade to Zental 5.0.10, usernames on the PDC are now prefixed by the domain e..g DOMAIN\tomjones

This is a known issue with Samba =>4.0.5 (https://lists.samba.org/archive/samba/2013-April/172804.html (https://lists.samba.org/archive/samba/2013-April/172804.html)). Using

Code: [Select]
winbind use default domain = yes
no longer functions on the PDC. As an example of a problem this causes, you can no longer log into the the webadmin interface using DOMAIN\username (or username). Additionally, mail routing is failing, crontabs are no long associated with user accounts. It's no longer possible to get kerberos tickets as kinit (without username specified) fails because it looks for DOMAIN\username credentials, not username.

Is this something that could be adjusted in the Zentyal packaging of Samba? It's causing significant problems when transitioning from Samba <4.0.5 to =>4.0.05