SMB AD user IDs don't match

[bazzacad]

My FreeNAS box seemed to join my Samba AD fine.
I can ping the domain from FreeNAS.
I can ping my DC from FreenNAS & visa-versa.
I can see my domain users in the FreeNAS drop-down menus & I can list them in the shell.
But if I list the ID for a user, it doesn't match the ID on the DC.

How do I get them to match?

 

[anodos]

Switch your idmap backend under Directory Services -> Active Directory to "ad", then at the command line run the following:

Code:

service samba_server stop
rm /var/db/samba4/winbindd_cache*
net cache flush
service samba_server start

 

[bazzacad]

Thanks for the info. That sounded like it would do the trick, but it broke something.
The users no longer autocomplete in the drop-downs.

I can list all the users

But I can't get the info on a specific user:

Here are my settings:

 

[anodos]

Turn off AD monitoring. rm /etc/directoryservice/ActiveDirectory/config, then sh /etc/directoryservice/ActiveDirectory/ctl start

 

[bazzacad]

I must have screwed it up some how.
Now wbinfo -u doesn't return anything.
Here are the current settings.
I think I changed winbind NSS Info & now can't remove it.

Here are the results after the last changes:

Is there anyway to clear all of the AD settings are start over?

 

[anodos]

You need to adjust the idmap range for `ad` so that the range of ids you've allocated in AD fits in it. This is under directory services -> Active directory.

 

[bazzacad]

Thanks for the help. It's working now. I had to clear the settings again.

 

[bazzacad]

But now the system has become very laggy. I do a ll list on an empty folder and it takes 10-15 sec. to return.