thanks François, On Mon, May 25, 2009 at 8:56 PM, François Legal <de...@thom.fr.eu.org> wrote: > I did never setup 2 way trust, but had a hard time setting up a one way > trust. > As far as I remember, the first thing to verify (before establishing the > trust relation), is to have winbind successfully enumerate the local DC > users and groups. This implies you have to join the PDC to its own domain > (yes, this kind of surprised me at that time, but it makes some sense). For > you that would be SIMPLE PDC have to join the SIMPLE domain and REC PDC > join the REC domain (net rpc join PDC -U...)
joining to its own PDC surprises me too ... but I will try. > You should also have winbind correctly configured and able to allocate > uids/gids. Do you mean that winbind should also get info out of its own domain? > At that point, you should have wbinfo -m, wbinfo -t, wbinfo -u and wbinfo > -g return successfully and the correct information. Yes, this what I thought, but winbind is complaining that it cannot find PDC, but net lookup finds it correctly. > François -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba