passwd Command Reports User Unknown When Changing AD User Password In Samba ADS Configuration (Doc ID 1990795.1)

Last updated on JULY 29, 2016

Applies to:

Solaris Operating System - Version 10 1/13 U11 and later
Information in this document applies to any platform.

Symptoms

Unable to change passwords on the Solaris system using Samba's Winbind for AD integration.

Trying to change the password for a AD user with Solaris "passwd" command fails :

$ passwd
passwd: Changing password for <AD-user>
passwd: User unknown: <AD-user>

Assumption about the configuration that can result in the error:


The system is configured so that AD users can login.

Specifically:

1) /etc/samba/smb.conf contains
    
     security = ADS
    
     idmap options are present
    

2) Using /etc/pam.conf-winbind as /etc/pam.conf


3) /etc/nsswitch.conf contains winbind in passwd and group

passwd: files winbind
group:  files winbind
hosts:  files dns

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms