NFS mapall can't select SMB user names

[mikesm]

Hi. I am running Freenas 11.1-U5, upgraded from Freenas 9 about 3 months ago and working well. I took the system down today to reconfigure the locations of some disks in the machine to prepare to add a new volume later. The system came back up fine, but NFS sharing is not working.

I have 2 volumes that are shared via CIFS and user identities mapped in an Active Directory domain. This all works fine and wbinfo -u shows all the AD users and groups, and the windows systems can access the volumes just fine.

I have a linux machine that accesses these same volumes via NFS, and I use mapall to set all the accesses to a windows user owner and group. The linux server runs a DVR, and I want to map all the recordings to common windows user so they can be accessed by a variety of systems via CIFS. However, the NFS share on the linux system isn't writeable. When I looked at the NFS share, I can't save the share with the parameters that worked before, because mapall can't select any of the windows users, only the users registered on the freenas server.

This used to work just fine, and it worked after my cutover to Freenas 11.1-U5. But after my reboot today, it's won't save the NFS share configuration with the same settings it was running before the reboot.

Does anyone know what the issue could be?

thanks,
Mike

 

[mikesm]

PS If I go to the change permissions page on one of the volumes, no domain user names show up there either. So this is not contained to the NFS share configuration.

thx
mike

 

[anodos]

Type "testparm -s" and post output here. Do you have directory service cache disabled?

 

[mikesm]

Thanks very much for the help!

I haven't disabled the directory service cache, though I had not tried to rebuild it before. I tried that just now with no effect.

Here it is (with a couple edits for privacy):


# Global parameters
[global]
dos charset = CP437
multicast dns register = No
realm = XXX.NET
server string = FreeNAS Server
workgroup = YYY
domain master = No
lm announce = Yes
local master = No
preferred master = No
nsupdate command = /usr/local/bin/samba-nsupdate -g
client ldap sasl wrapping = plain
logging = syslog:1
max log size = 51200
kernel change notify = No
panic action = /usr/local/libexec/samba/samba-backtrace
disable spoolss = Yes
load printers = No
printcap name = /dev/null
map to guest = Bad User
obey pam restrictions = Yes
security = ADS
server role = member server
deadtime = 15
max open files = 1885304
template shell = /bin/sh
winbind cache time = 7200
winbind enum groups = Yes
winbind enum users = Yes
winbind offline logon = Yes
winbind refresh tickets = Yes
dns proxy = No
idmap config YYY: schema mode = rfc2307
idmap config YYY: range = 10000-90000000
idmap config YYY: backend = ad
idmap config *: range = 90000001-100000000
idmap config * : backend = tdb
store dos attributes = Yes
strict locking = No
directory name cache size = 0
dos filemode = Yes
acl allow execute always = Yes
ea support = Yes
create mask = 0666
directory mask = 0777


[MP3 Library]
path = "/mnt/Media/Files/MP3 Library"
veto files = /.snapshot/.windows/.mac/.zfs/
guest ok = Yes
read only = No
vfs objects = zfs_space zfsacl streams_xattr
zfsacl:acesort = dontcare
nfs4:chown = true
nfs4:acedup = merge
nfs4:mode = special


[Media]
path = "/mnt/Media"
veto files = /.snapshot/.windows/.mac/.zfs/
read only = No
vfs objects = zfs_space zfsacl
zfsacl:acesort = dontcare
nfs4:chown = true
nfs4:acedup = merge
nfs4:mode = special


[Media2]
path = "/mnt/Media22"
veto files = /.snapshot/.windows/.mac/.zfs/
read only = No
vfs objects = zfs_space zfsacl
zfsacl:acesort = dontcare
nfs4:chown = true
nfs4:acedup = merge
nfs4:mode = special

Thanks,
Mike

 

[mikesm]

Anyone have idea as to what the problem might be?

thx
mike