Synology and AD domain

Currently reading
Synology and AD domain

K

koksmen

Media
2
0
NAS
DS214
Operating system
  1. Windows
Mobile operating system
  1. Android
Hi All

i would like to ask if any one of you has any expirience in Joining Synology NAS to AD domain
i have a problem with enumerating users
i've created ca 100 000 Users in one OU

What i could see in Synology (domain/LDAP -> domain users) is only 71991 is there any limitation to number of users?
i was trying to rise the log level in SMB.conf adding log level =5 it seems its working ( i have a little more data in /var/log/samba but nothing out of the ordinary imho in the log files.
On DC i've also enabled NTDS diagnostics Ldap interface i could see some errors form my NAS but nothing that concider a problem.
i dont see antyhing on WireShark installed on DC

any ideas what maybe the issue?some limitation on Synology itself?maybe some one would know how to enable some additional logging on NAS itself?

thanks
 
Hello and welcome,

Please excuse my ignorance as I know very little about LDAP systems and my opinion is most likely flawed.

According to your system (above), you’re running a DS214. Why would you need 100K users on a LDAP on that?! Or is it that the 214 can’t ”see” the 100K OU on the main LDAP? If so what difference does it make? I mean are you having the 214 open for 100K users?

I’m just curious as I might learn something new :)
 
Good question. I don't know why not all AD users are visible in Syno. It could also be a limitation in the GUI. But if they would all try to login, maybe it would work.

But DS214 is way to 'small' imo to serve 100 000 users..
 
Last edited:
Hi Guys sorry for my late response =) i was thinking that no one will pickup the topic.

- yes 214 is too small for such amount of users , we have much bigger boxes but few years back i bought 214 for my personal use so i use it as my lab rabbit =)



1. Why? i work for a company that has a lot lot lot more users then 100 K when you join the Syno to AD its imperative to download everything to browse and add permissions for the shared files

2. i was able (rising logging level on DC to 5 on filed engeenering ) finally see logs. that Syno is browsing AD

3. i have SSH'ed to Syno using putty. i was trying to rise log level in smb.conf file in 3ways
log level = 8
debuglevel = 8
log level = 1 auth:5 winbind:5
every time after :wq! i have restarted snbd and smbd using sudo /sbin/restart smbd
then tail -f /var/log/samba/log.wb-ACME (my lab domain name )

i dont see any effect on that file tbh.
4. every time i have tested smb.conf using testparm and its seems fine

5. i have tested using sudo wbinfo -t its OK

6. using wbinfo -u gives me error

7. using wbinfo -g shows the grups but i have only 20groups comparing to 205k users

8. yes on a Synology website there is info about limits (but to my surprise i could see all of 206k user) which i can say about comp boxes... =(

see point 2 at the bottom of paragraph

How do I manage Microsoft Active Directory client services on a Synology NAS? - Synology Knowledge Center

Synology Knowledge Center offers comprehensive support, providing answers to frequently asked questions, troubleshooting steps, software tutorials, and all the technical documentation you may need.
www.synology.com www.synology.com

9 i am not linux user so its harder for me

10. i dont know if i am not pushing to hard with this and maybe its impossible. its wierd that i could see that 206 k users. even when docs saying about 100k. (i've pasted old screen)

11. i could paste more screens if you are interested =) that would be a good article how to debug syno.
 

Attachments

  • putty.PNG
    putty.PNG
    404.3 KB · Views: 35
  • users.PNG
    users.PNG
    49.5 KB · Views: 33

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Register

Log in

Already have an account? Log in here.

Similar threads

szueger
  • Question
Synology RS 812+ to RS 1221+: physical migration possible?
I was trying to say not in the incompatible list, that’s linked from the compatibility list.
Replies
6
Views
354
fredbert
fredbert
szueger
  • Question
Synology RS 812+ unresponsive after a few days uptime
Sometimes a simple reset, mode 2 can shake out the kruft that has built up over time. I would also test RAM.
Replies
5
Views
397
Telos
Telos
oRBIT
Password manager for installation on Synology NAS?
Reuse in matter or minutes. New container on the new device with docker using the existing volume. BW will...
Replies
12
Views
1,089
Rusty
Rusty
DeltaGolf
Synology Drive doesn't need VPN?
I think I'm trying to ask how is the Drive desktop agent 'safe'. I know how VPN works and why to use it. I...
Replies
8
Views
1,065
DeltaGolf
DeltaGolf
Lewis
Synology Network (NIC) Order and WoL ??
Hi, I have DS 1817+ and added in Dual 10Gbit SFP+ Synology NIC so i can have 10Gbit link to my...
Replies
0
Views
609
Lewis
Lewis
P
First Synology buy, a few questions
Welcome to the forum! No. That FS is no supported on external drives Ofc Using Hyper Backup your can do...
Replies
1
Views
721
Rusty
Rusty
D
Synology NAS and router - quickconnect and other questions
So I've set up Tailscale for everything, and I'm not sure what I will stick with. It's fine for me, but...
Replies
10
Views
2,163
jmanko16
J

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Register

Trending threads

Back
Top