On Tue, 2009-04-07 at 15:33 -0500, Jason Ellison wrote: > CentOS 5.3 getent does not return data from the active directory (ads) > > I have installed and configured kerberos and samba so that the > server can be a member of an existing Active Directory (AD). Correct > configuration of kerbos was verified using kinit and klist. The samba > configuration was verified by using "smbclient -k -L server". winbind > was verified by using "wbinfo -g". The problem seems to be nsswitch > accessing winbindd to get group information via the "getent group" > command. I added winbind to the /etc/nsswitch.conf file like so: > > [root at nagios ~]# grep winbind /etc/nsswitch.conf > passwd: files winbind > shadow: files winbind > group: files winbind --- Try "hosts: files dns wins" "hosts: files winbind" You realy don't say if your authenticating what and where @. But I do know you did not list "the hosts:" line in nsswitch. One of those should do it. getent group_name will never work with out changing it.