[Samba] mount home dir after login
waht is the prefered method to mount a home directory from a MS 2003 Server when loging in with a linux-client. the linux box is authenhticated against 2003 ADS. -- _ _ _ __ _(_)___ ___ _ __ ___ ___ | |____| | ___ / _` | / __/ __| '_ ` _ \ / _ \| '_ \ / _` |/ _ \ | (_| | \__ \__ \ | | | | | (_) | | | || (_| | __/ \__, |_|___/___/_| |_| |_|\___/|_| |_(_)__,_|\___| |___/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Update Krb5.
I've supposed ... I've only one Server Dell Power edge 2500 and I don't know if Fedora support RAID controller and the others cards ... Where can I have these informations? RH Enterprise release instead? Thanks. -Original Message- From: Andrew Bartlett [mailto:[EMAIL PROTECTED] Sent: mercoledì 15 giugno 2005 5.07 To: Meli Marco Cc: 'samba@lists.samba.org' Subject: Re: [Samba] Update Krb5. On Tue, 2005-06-14 at 14:13 +0200, Meli Marco wrote: Hi, How can I update my kerberos 1.2.7-10 to 1.3.1 or later release? Where can I found rpm for RH9? You will find it easier to upgrade the whole OS to Fedora Core - Kerberos libs are a real pain to upgrade. (And yes, many have tried. And --nodeps and --force are not default options to RPM for a reason, it breaks systems) Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba not start
Does samba has the rights to write the secret file on the designated place ?? Greets, Collen João Carlos Camera Junior wrote: hi... I remaster a knoppix linux and install samba at this. In chroot mode the samba run perfectelly. When i make the CD and reboot on this, the smbd dont start. Simple Abort. The log.smbd is below: == log.smbd [2005/06/14 14:16:28, 0] smbd/server.c:main(798) smbd version 3.0.14a-Debian started. Copyright Andrew Tridgell and the Samba Team 1992-2004 [2005/06/14 14:16:28, 0] passdb/secrets.c:secrets_init(63) Failed to open /var/lib/samba/secrets.tdb [2005/06/14 14:16:28, 0] passdb/secrets.c:secrets_init(63) Failed to open /var/lib/samba/secrets.tdb [2005/06/14 14:16:28, 0] passdb/secrets.c:secrets_init(63) Failed to open /var/lib/samba/secrets.tdb [2005/06/14 14:16:28, 0] passdb/machine_sid.c:pdb_generate_sam_sid(176) pdb_generate_sam_sid: Failed to store generated machine SID. [2005/06/14 14:16:28, 0] lib/util.c:smb_panic2(1495) PANIC: Could not generate a machine SID [2005/06/14 14:16:28, 0] lib/util.c:smb_panic2(1503) BACKTRACE: 8 stack frames: #0 /usr/sbin/smbd(smb_panic2+0x111) [0x81eb301] #1 /usr/sbin/smbd(smb_panic+0x1a) [0x81eb1ea] #2 /usr/sbin/smbd(get_global_sam_sid+0x34) [0x81a4bb4] #3 /usr/sbin/smbd [0x822b745] #4 /usr/sbin/smbd(init_guest_info+0x34) [0x822b954] #5 /usr/sbin/smbd(main+0x282) [0x8265372] #6 /lib/libc.so.6(__libc_start_main+0xc6) [0x401abe36] #7 /usr/sbin/smbd [0x8079b01] HELP thanks in advanced, João Carlos Camera Junior CDZ-Tecnologia Aplicada Linux Registred User # 388936 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] pdbedit and profiles
Do you have by anny chance the entry logon path = \\some\thing in your smb.conf ?? if not, try to add -d=10 to your pdbedit line -- pdbedit -d=10 -u ya-1 -p=cybserver\\netlogon and see what the debug shows.. Laters Collen Dominic Iadicicco wrote: For a test I tried to do this: pdbedit -u ya-1 -p=cybserver\\netlogon It spewed out this : Unix username:ya-1 NT username: Account Flags:[U ] User SID: S-1-5-21-4008386108-3466510086-266964780-2002 Primary Group SID:S-1-5-21-4008386108-3466510086-266964780-2003 Full Name: Home Directory: HomeDir Drive: Logon Script: logon.bat Profile Path: \\cybserver\profile\ya-1 Domain: CYBRARYN Account desc: Workstations: Munged dial: Logon time: 0 Logoff time: Mon, 18 Jan 2038 22:14:07 GMT Kickoff time: Mon, 18 Jan 2038 22:14:07 GMT Password last set:Sat, 04 Jun 2005 11:29:34 GMT Password can change: Sat, 04 Jun 2005 11:29:34 GMT Password must change: Mon, 18 Jan 2038 22:14:07 GMT Last bad password : 0 Bad password count : 0 Logon hours : FF as you can see the profile path is not correct. and I check that the ya-1 user was a vaild smb user. I can log on to the domain with them and write to shares and use different domain resources. And as far as why it does show the NT username I dont know. On 6/14/05, Collen [EMAIL PROTECTED] wrote: What error do you get returned ?? (if none, boost your debug level in the conf) can samba read/write to the passwd backend? what does not work ? (coz here it does work).. Greets. Collen Dominic Iadicicco wrote: I am using the standard smbpasswd, I think thats a backend. On 6/13/05, Tom Skeren [EMAIL PROTECTED] wrote: Dominic Iadicicco wrote: That did not work. What passdb are you using? LDAP TDB? On 6/13/05, Collen [EMAIL PROTECTED] wrote: pdbedit -u username -p=server\\path Collen. Dominic Iadicicco wrote: Hello all, Could someone give me the command line to edit the profile path of a users? I have tried this with no results. pdbedit -u someuser -p server\\path There has to be better documentation. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Adduser failing to accept 'username$'
Hi group, For some odd reason - most likely my current level of n00bness - my useradd refuses to accept the $ in the machine name, when adding a Windows machine to my Samba 3 installation. I'm running Red Hat linux with a newly compiled version of Samba 3.0.14a. Any ideas? Best regards, Casper Helenius, Denmark -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Adduser failing to accept 'username$'
Casper Helenius wrote: Hi group, For some odd reason - most likely my current level of n00bness - my useradd refuses to accept the $ in the machine name, when adding a Windows machine to my Samba 3 installation. I'm running Red Hat linux with a newly compiled version of Samba 3.0.14a. What passdb backend are you using? Ldapsam tdbsam etc? Have you read through the Samba Guide in the documantation aprt of the web site? Regards Geoff Scott -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Adduser failing to accept 'username$'
Geoff Scott wrote: Casper Helenius wrote: Hi group, For some odd reason - most likely my current level of n00bness - my useradd refuses to accept the $ in the machine name, when adding a Windows machine to my Samba 3 installation. I'm running Red Hat linux with a newly compiled version of Samba 3.0.14a. What passdb backend are you using? Ldapsam tdbsam etc? Have you read through the Samba Guide in the documantation aprt of the web site? Regards Geoff Scott I'm currently using tdbsam - and I hve my trusty Official Samba-3 guide by the hand. I've now tried to add the machine to my linux box without the $ in the end of the name - and then adding the $ to my /etc/passwd file as well as adding my machine and my windows user to my Samba pass db, and it gets me a little further. (I think ..) While trying to add my windows xp machine to the domain, I now get an access denied instead of user not found error. Looking through the logs have given me no clue whatsoever. Any ideas to share, out there? :o) Best regards, Casper Helenius, Denmark -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] when working with admin users = inherit owner does not work anymore
This parameter will be added since samba 3.0.15pre2. inherit owner parameter not exist in 3.0.14a and above. hi thx for your reply! damn! i totally mistyped my subject line! what i meant is when working with admin users = force user = does not work anymore...i feel sorry if i confused you can you reproduce this? will inherit owner fix that? -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ldapsam, Sun JES Directory Server, Solaris 9
tir, 14.06.2005 kl. 22.57 skrev Jason Signalness: [...] The files /usr/lib/libldap.so and /usr/include/ldap.h ARE PRESENT and /usr/lib is in my LD_LIBRARY_PATH. These are not the libraries/headers from OpenLDAP, but rather from Solaris. Is this a problem? This is indeed a problem. You need the OpenLDAP libraries and headers. I don't know if they're available for Solaris in pkg form, but the source installs out of the box into /usr/local, so shouldn't conflict with the Solaris stuff. smbd only needs them for client operations; it shouldn't matter what LDAP server you use (as long as the schema is included, of course). Also, a truss on an execution of the resulting smbd indicates that smbd is looking for /opt/btifs/samba/lib/pdb/ldapsam.so, which is NOT there. I don't have an ldapsam.so anywhere on my RHAS3 Linux machine. --Tonni -- mail: [EMAIL PROTECTED] http://www.billy.demon.nl -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] YASQ
ons, 15.06.2005 kl. 04.21 skrev Joe Cipale:
Using Fedora Core 2, I have edited/created my swat file, restarted the
xinetd service,
but when I attempt to launch SWAT using local host, I get the following
message:
The connection was refused trying to contact localhost:901
ANy ideas?
You didn't change disable = no in /etc/xinetd.d/swat?
--Tonni
Tonni,
SOrry I didnt get back to you. Here is my swat config file:
service swat
{
port = 901
socket_type = stream
wait = no
only_from= 127.0.0.1
user = root
server = /usr/sbin/swat
log_on_failure += USERID
disable = yes
}
Do you notice disable above? You've told xinetd to disable Swat. Set
this to no and HUP xinetd.
Please don't reply to me privately, reply to the list - others might
gain from this.
Best,
--Tonni
--
mail: [EMAIL PROTECTED]
http://www.billy.demon.nl
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Adduser failing to accept 'username$'
If you are using Redhat AS/ES then this is probably the same problem we had. RedHat have been making changes to packages to be POSIX compliant. The problem you have is not SAMBA as such but programs it uses. In your case it is useradd. There now exists a fix for RedHat ES/AS v4. We reported this problem to RedHat about three or so months ago and they reacted with impressive speed. If you can't find the fix mail me off list and I'll hunt around on our systems for the RPM. Phil. Casper Helenius [EMAIL PROTECTED] Sent by: [EMAIL PROTECTED] 15/06/2005 08:45 To Geoff Scott [EMAIL PROTECTED] cc samba@lists.samba.org Subject Re: [Samba] Adduser failing to accept 'username$' Geoff Scott wrote: Casper Helenius wrote: Hi group, For some odd reason - most likely my current level of n00bness - my useradd refuses to accept the $ in the machine name, when adding a Windows machine to my Samba 3 installation. I'm running Red Hat linux with a newly compiled version of Samba 3.0.14a. What passdb backend are you using? Ldapsam tdbsam etc? Have you read through the Samba Guide in the documantation aprt of the web site? Regards Geoff Scott I'm currently using tdbsam - and I hve my trusty Official Samba-3 guide by the hand. I've now tried to add the machine to my linux box without the $ in the end of the name - and then adding the $ to my /etc/passwd file as well as adding my machine and my windows user to my Samba pass db, and it gets me a little further. (I think ..) While trying to add my windows xp machine to the domain, I now get an access denied instead of user not found error. Looking through the logs have given me no clue whatsoever. Any ideas to share, out there? :o) Best regards, Casper Helenius, Denmark -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Roaming Profile Question
Mark Sarria wrote: I agree this is a desktop.ini, just search for all the desktop.ini in your profile and delete it; this should stop this notepad message from popping up. Unfortunately it will happen to all new users who login; I have not found a way to get rid of that, my solution was to create a mandatory profile. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Collen Sent: Tuesday, June 14, 2005 12:34 AM To: Matt Schwartz; samba@lists.samba.org Subject: Re: [Samba] Roaming Profile Question Error's in a notepad ???... isn't this just a desktop.ini in the startup folder problem ? or is it a real error from the shell32.dll ?? (coz that might not be samba related ..) Laters. Collen Matt Schwartz wrote: I am getting a shell32.dll error with my roaming profiles. I have never seen this before and google queries haven't gotten any solutions. I am using WinXP with the current service pack. This shell32.dll error pops up in a notepad window. This is kind of annoying and I know its windows related. Anyone know how to shut it off, its driving me mad. I think, you have to to disable the option Remember each folder's view setting in Explorer - Tools - Folder Options - View and apply the change to all folders. Additional you have to search as Admin for all desktop.ini and delete them. With roaming profiles they might return... Jan Kellerhoff -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: api_pipe_bind_req: unknown auth type 9 requested.
Gerald (Jerry) Carter wrote: It means the NTLMSSP auth on the rpc bind is proba bly failing due to a misparse of the bind header. Should be fixed in 3.0.14a with windows 2003 sp1 clients, but broken with respect to OS X 10.4. The latter issue is fixed in the current SAMBA_3_0 svn tree (we think). I got it when login in into a windows 2003 SP1 server in a domain handled by a Debian stable running samba 3.0.14a but the logon was successful : rpc_server/srv_pipe.c:api_pipe_bind_req(993) api_pipe_bind_req: unknown auth type 9 requested. [2005/06/15 10:50:55, 1] smbd/service.c:make_connection_snum(642) servXXX (192.XXX) signed connect to service Profiles initially as user XXX (uid=XXX, gid=XXX) (pid 25726) [2005/06/15 10:50:58, 1] smbd/service.c:make_connection_snum(642) servXXX (192.XXX) signed connect to service netlogon initially as user XXX (uid=XXX, gid=XXX) (pid 25726) do you want more detailled logs ? cheers, jerry -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCrzTKIR7qMdg1EfYRAnhaAJ4tLwwHNqgM4tLHZbKGesQhTmdCwwCfZfGN x5yxrHmOl9SlbDniwaMeXYo= =nMPj -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Software deployment
Dominic Iadicicco schrieb: Hello all, Here's a good conversation starter. How do people deploy new software (office,adobe,java,etc...) on their client machines with AD? Why with AD? This list is about Samba, not Active Directory (which can only deploy packages in MSI format). If you meant Samba, then you may tak a look at WPKG - http://wpkg.org - it has the following features: - ability to deploy software (MSI packages and all other installers that can be installed silently) on machine boot - ability to run a script/program many times on machine boot - ability to run a script/program exactly one time (disk defragmenting etc.) on machine boot You can attach software to be installed on one machine, or on a group of machines. Moreover, you can use it not only with Samba, but also with AD (because AD can only install MSI packages; WPKG can install virtually anything that comes with a silent installer). Hope that helps. -- Tomek -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] issues with 3.0.14a domain member after 2003 dc upgrade
Dear Jerry, there was a question in a mailinglist, May 9, 2005 about unknown auth type 9, trying to use win2003 terminal server with samba 3.0.14a Covington, Chris wrote: |/[2005/05/06 08:51:39, 1] smbd/sesssetup.c:reply_spnego_kerberos(250) /|/ Username DOMAIN\user is invalid on this system /|/[2005/05/06 08:51:39, 1] smbd/sesssetup.c:reply_spnego_kerberos(250) /|/ Username DOMAIN\SERVER$ is invalid on this system /|/[2005/05/06 14:59:02, 0] rpc_server/srv_pipe.c:api_pipe_bind_req(993) /|/ api_pipe_bind_req: unknown auth type 9 requested. / I was pretty sure I fixed this in 3.0.14a. Can you send me an ethereal trace? btw...you mention kerberos settings but are using 'security = domain'. Did you mean security = ads instead? kerberos is not used in your configuration. I've got the same problem but I was not able to find any follow up on this. Was it a problem of configuration or is it fixed in some version ? As I understand it the 3.0.14a is still the latest stable, right ? thanks for your help Michael -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] couldn't find DC from other subnet
Hai , I am new to samba . I would like to setup samba as DC for my local LAN. I have configured samba-3.0.7 in Mandrake and win2k clients(within the same subnet) are able to login to this server by using NBNS protocol. But the clients from other subnet are not able to find the DC. My understanding is that, first the clients try to find the DC using NBNS and they couldn't get any response since the DC is in another network. Then the clients try to find using DNS. They are mainly looking for _ldap._tcp.dc.-msdcs.domain . I am using linux dns and I have forward reverse records for the workgroup name. I read that I need to add some SRV records in my DNS. What are all the records to be added? Any other way to solve this problem. Pls hlep me . Sarav __ Discover Yahoo! Use Yahoo! to plan a weekend, have fun online and more. Check it out! http://discover.yahoo.com/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] when working with admin users = inherit owner does not work anymore
Michael Gasch a écrit : This parameter will be added since samba 3.0.15pre2. inherit owner parameter not exist in 3.0.14a and above. hi thx for your reply! damn! i totally mistyped my subject line! what i meant is when working with admin users = force user = does not work anymore...i feel sorry if i confused you can you reproduce this? will inherit owner fix that? Hi, The inherit owner is a parameter with specify that if a admin users put a file on a share, the owner of the file is the owner of parent's directory and not the admin users. Note : for my home share, I am in the same case as you, if I put a file in a home directory, I must make a chown to the new file. -- Stéphane Purnelle [EMAIL PROTECTED] Site Web : http://www.linuxplusvalue.be -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] SMS 2003 and Samba
Hi, I was wondering if anyone has played with Microsoft's SMS 2003? I've got a Samba 3 PDC using an LDAP backend, and a Windows 2003 server running SMS 2003. The SMS 2003 setup moans that it cannot verify the service account in the domain. Its reasons are it cannot connect to the domain as either the user account does not have access to the domain or the domain controller is down. I know the PDC is up and running and I have logged in as root to prove that I have full access. I was wondering if this is a Samba compatibility issue or whether it's something else. Cheers -- Kristyan Osborne - IT Technician Longhill High School 01273 391672 / 304086 --- Computers are like airconditioners: They stop working properly if you open windows. Win95: A 32-bit patch for a 16-bit GUI shell running on top of an 8-bit operating system written for a 4-bit processor by a 2-bit company who cannot stand 1 bit of competition. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: samba Digest, Vol 30, Issue 23
Bonjour, Prenez note que je vais être absent du bureau à partir de la semaine du13 juin. Je serai de retour la semaine du 20 juin 2005. Hello. Please note that I will be out of the office the week of june 13, returning on june 20. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] pdbedit and profiles
I got me: I do have a logon path = \\some\thing in my smb.conf I am guessing that this is bad for use with pdbedit -p? On 6/15/05, Collen [EMAIL PROTECTED] wrote: Do you have by anny chance the entry logon path = \\some\thing in your smb.conf ?? if not, try to add -d=10 to your pdbedit line -- pdbedit -d=10 -u ya-1 -p=cybserver\\netlogon and see what the debug shows.. Laters Collen Dominic Iadicicco wrote: For a test I tried to do this: pdbedit -u ya-1 -p=cybserver\\netlogon It spewed out this : Unix username:ya-1 NT username: Account Flags:[U ] User SID: S-1-5-21-4008386108-3466510086-266964780-2002 Primary Group SID:S-1-5-21-4008386108-3466510086-266964780-2003 Full Name: Home Directory: HomeDir Drive: Logon Script: logon.bat Profile Path: \\cybserver\profile\ya-1 Domain: CYBRARYN Account desc: Workstations: Munged dial: Logon time: 0 Logoff time: Mon, 18 Jan 2038 22:14:07 GMT Kickoff time: Mon, 18 Jan 2038 22:14:07 GMT Password last set:Sat, 04 Jun 2005 11:29:34 GMT Password can change: Sat, 04 Jun 2005 11:29:34 GMT Password must change: Mon, 18 Jan 2038 22:14:07 GMT Last bad password : 0 Bad password count : 0 Logon hours : FF as you can see the profile path is not correct. and I check that the ya-1 user was a vaild smb user. I can log on to the domain with them and write to shares and use different domain resources. And as far as why it does show the NT username I dont know. On 6/14/05, Collen [EMAIL PROTECTED] wrote: What error do you get returned ?? (if none, boost your debug level in the conf) can samba read/write to the passwd backend? what does not work ? (coz here it does work).. Greets. Collen Dominic Iadicicco wrote: I am using the standard smbpasswd, I think thats a backend. On 6/13/05, Tom Skeren [EMAIL PROTECTED] wrote: Dominic Iadicicco wrote: That did not work. What passdb are you using? LDAP TDB? On 6/13/05, Collen [EMAIL PROTECTED] wrote: pdbedit -u username -p=server\\path Collen. Dominic Iadicicco wrote: Hello all, Could someone give me the command line to edit the profile path of a users? I have tried this with no results. pdbedit -u someuser -p server\\path There has to be better documentation. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] (no subject)
Hi all, I have the samba version 3.0.10-4 configured as a primary domain controller. I have disabled the webclient on xp workstation but I have a first slow access on the network drive.About 15 seconds. Why? Regards Michael This message was sent using IMP, the Internet Messaging Program. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Why am I getting these from the samba mailing list
Can someone tell me why I get on of these every once and a while. My emails are small. -- Forwarded message -- From: [EMAIL PROTECTED] [EMAIL PROTECTED] Date: Jun 15, 2005 8:26 AM Subject: Your message to samba awaits moderator approval To: [EMAIL PROTECTED] Your mail to 'samba' with the subject Re: [Samba] Domain logon problem with w2k client on a Samba-3 PDC Is being held until the list moderator can review it for approval. The reason it is being held: Message body is too big: 66968 bytes with a limit of 64 KB Either the message will get posted to the list, or you will receive notification of the moderator's decision. If you would like to cancel this posting, please visit the following URL: https://lists.samba.org/mailman/confirm/samba/26a8818b8d1c98680fab962ec76600c3691a6173 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Why am I getting these from the samba mailing list
Dominic Iadicicco wrote: Can someone tell me why I get on of these every once and a while. My emails are small. Perhaps because the email you sent is bigger than 64K? -- Forwarded message -- From: [EMAIL PROTECTED] [EMAIL PROTECTED] Date: Jun 15, 2005 8:26 AM Subject: Your message to samba awaits moderator approval To: [EMAIL PROTECTED] Your mail to 'samba' with the subject Re: [Samba] Domain logon problem with w2k client on a Samba-3 PDC Is being held until the list moderator can review it for approval. The reason it is being held: Message body is too big: 66968 bytes with a limit of 64 KB Either the message will get posted to the list, or you will receive notification of the moderator's decision. If you would like to cancel this posting, please visit the following URL: https://lists.samba.org/mailman/confirm/samba/26a8818b8d1c98680fab962ec76600c3691a6173 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Dreaded Can't become connected User! error
I have a dozen or more Samba 3.0x servers running, most using the tdbsam backend, but some still on the smbpasswd backend. All of the servers are RedHat, some v9, some ES3 and two are ES4. All seem to be running fine, but every one of them has their log file filled with these errors. [2005/06/10 09:09:55, 0] smbd/service.c:make_connection_snum(570) Can't become connected user! I've googled for hours and have found many many people with the same problem, and no answers. Has anyone figured this out yet? The only google responses I've found deal with invalid groups or users. I've checked all those, ran the script I found that compares groups with /etc/group and so forth. All seem to be fine, except for these errors. I believe this relates to alot of slowness I'm seeing also. When you enter a directory in Windows Exploder, it takes a long time and I see alot of the above errors fly by. Let me know what info you need and I'll gladly collect it to help resolve this. - Gary -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] winbind : wbinfo -r don't work
wbinfo -u : CHSMRDZTEST\zef CHSMRDZTEST\Administrateur CHSMRDZTEST\InvitCHSMRDZTEST\IWAM_STMA-57E4EEA39D CHSMRDZTEST\IUSR_STMA-57E4EEA39D CHSMRDZTEST\testlocal CHSMRDZTEST\krbtgt CHSMRDZTEST\proxygentoo$ CHSMRDZTEST\UC301$ CHSMRDZTEST\FLORIAN$ CHSMRDZTEST\SRVTEST$ PROXYGENTOO ~ # wbinfo -g BUILTIN\System Operators BUILTIN\Replicators BUILTIN\Guests BUILTIN\Power Users BUILTIN\Print Operators BUILTIN\Administrators BUILTIN\Account Operators BUILTIN\Backup Operators BUILTIN\Users CHSMRDZTEST\Ordinateurs du domaine CHSMRDZTEST\ContrCHSMRDZTEST\Administrateurs du schCHSMRDZTEST\Administrateurs de l'entreprise CHSMRDZTEST\CHSMRDZTEST\Admins du domaine CHSMRDZTEST\Utilisa. du domaine CHSMRDZTEST\InvitCHSMRDZTEST\PropriCHSMRDZTEST\DnsUpdateProxy CHSMRDZTEST\INTERNET PROXYGENTOO ~ # wbinfo -r zef Could not get groups for user zef Why it's don't work ? (zef is an INTERNET group member) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] when working with admin users = inherit owner does not work anymore
The inherit owner is a parameter with specify that if a admin users put a file on a share, the owner of the file is the owner of parent's directory and not the admin users. Note : for my home share, I am in the same case as you, if I put a file in a home directory, I must make a chown to the new file. thx for your reply i know the defenition of inherit owner my question is: if admin users currently break force user will they break inherit owner, too? -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] pdbedit and profiles
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dominic Iadicicco wrote: I got me: I do have a logon path = \\some\thing in my smb.conf I am guessing that this is bad for use with pdbedit -p? Didn't you say you were using an smbpasswd backend? You can't set per user profile locations in smbpasswd. Only tdbsam, ldapsam, etc cheers, jerry -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCsDG4IR7qMdg1EfYRAgfrAKCTK/mqEDlIWeQUeJZkpYKNbHY4KACgj/VI FzciV575r32A84v4u5dIfps= =E5nK -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] pdbedit and profiles
Ok that makes more sense. On 6/15/05, Gerald (Jerry) Carter [EMAIL PROTECTED] wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dominic Iadicicco wrote: I got me: I do have a logon path = \\some\thing in my smb.conf I am guessing that this is bad for use with pdbedit -p? Didn't you say you were using an smbpasswd backend? You can't set per user profile locations in smbpasswd. Only tdbsam, ldapsam, etc cheers, jerry -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCsDG4IR7qMdg1EfYRAgfrAKCTK/mqEDlIWeQUeJZkpYKNbHY4KACgj/VI FzciV575r32A84v4u5dIfps= =E5nK -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Thank You All
After over month of good running one of my windows clients crashed... BSOD on XP pro... so I reloaded the OS and fired it back up. Modified the registry and the user profile was copied back perfectly =) the only issue was outlook express didn't get the emails... but i figure that's a issue with windows not the profile share... again Thank you all for your support on this great open source program -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] cupsd
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Mark Hannessen wrote: hi list, is it possible to make samba print on a cups daemon that runs on something other then localhost? I have been searching for this for a while but haven't been able to find it yet. normal cups/samba printing (on localhost) works fine for me. current Samba releases support 'cup server' in smb.conf. cheers, jerry = Alleviating the pain of Windows(tm) --- http://www.samba.org GnuPG Key- http://www.plainjoe.org/gpg_public.asc I never saved anything for the swim back. Ethan Hawk in Gattaca -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCsDmNIR7qMdg1EfYRAkilAKC6WpUy5D+9ikr4i0jmrQykA9hOEQCgr88S 6ig7QBbgcWGUu4+A4CKX2c8= =RHDG -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] [Fwd: bugs share]
Original Message Subject: bugs share Date: Wed, 15 Jun 2005 12:04:10 +0200 From: claude georg [EMAIL PROTECTED] To: [EMAIL PROTECTED] hello, i have define a share with a create mask 644 in samba the user who create a file can read, modify , delete the file . an other user can read the file, cannot write the file ( normal) , but it can delete the file !!! have you an explication thank you CLAUDE GEORG INGETEL phone +33 (0) 06 87 32 00 81 FRANCE [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Linux 2 Linux Host Filesystem Sharing with Samba + MySQL
Hello all, I've doing some server consolidation using vmware, I've asked this question to the vmware community, and I've gotten good, yet breif answers. I thought, since it's mostly a samba related issue, this was the right place to come.. Anyway I've successfully shared out my linux host filesystem to my linux guest using samba. The linux guest will be a webserver and mysql database server. One of the mount points on the guest is /usr/local/mysql/data because I don't want the virtual disk to hold the databases. (I'm trying to keep my virtual disks under 4GB) My problem is when I try to start mysql, it complains about not being about to chown the log files, as they are part of the samba share. It there a way to have a samba share, hosted from the host machine to the guest, to have full permissions on the guest os? Someone mentioned to me, make sure that uid=XXX,gid=YYY,file_mode=ZZZ,dir_mode=TTT ( -u/-g/-f/-d) options are not provided in fstab/smbclient/... Maybe recheck smb.conf on host for unix extensions (default is YES, so if you'll not find it, it is OK). Then mount filesystem in the guest. Full uid/gid/mode should fully propagate between host guest. Just make sure that host guest use same uid gid in /etc/passwd /etc/group. But that makes no sense to me. I just need the smbclient machine to be able to have full permission on the mysql data share. Hopefully someone can help here. Thanks in advance everyone. Jimmy -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ldapsam, Sun JES Directory Server, Solaris 9
Tony, That's what I needed to know! The OpenLDAP libraries and headers must be present. The Solaris libraries will not work. And when one compiles Samba on Solaris with LDAP support, one must make sure that the OpenLDAP libraries and headers are found by the compiler before the Solaris ones are found. Here's how I solved my problems: 1) Build OpenLDAP client and libraries. I didn't need slapd, so I didn't build it. ./configure --prefix=/opt/btifs/openldap --enable-slapd=no make depend make make install 2) Set up environment and build Samba export CPPFLAGS=-I/opt/btifs/openldap/include export LD_LIBRARY_PATH=/opt/btifs/openldap/lib:/usr/lib:/usr/local/lib ./configure --prefix=/opt/btifs/samba --with-ldapsam make make install Before, I thought that the Solaris LDAP libraries and header files would work. They will not. I'm up and running. Thanks for the help! -Jason Tony Earnshaw wrote: tir, 14.06.2005 kl. 22.57 skrev Jason Signalness: [...] The files /usr/lib/libldap.so and /usr/include/ldap.h ARE PRESENT and /usr/lib is in my LD_LIBRARY_PATH. These are not the libraries/headers from OpenLDAP, but rather from Solaris. Is this a problem? This is indeed a problem. You need the OpenLDAP libraries and headers. I don't know if they're available for Solaris in pkg form, but the source installs out of the box into /usr/local, so shouldn't conflict with the Solaris stuff. smbd only needs them for client operations; it shouldn't matter what LDAP server you use (as long as the schema is included, of course). Also, a truss on an execution of the resulting smbd indicates that smbd is looking for /opt/btifs/samba/lib/pdb/ldapsam.so, which is NOT there. I don't have an ldapsam.so anywhere on my RHAS3 Linux machine. --Tonni -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Roaming Profile Question
Did not try that yet, will give it a shot on my sandbox. Thanks for the tip --mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tony Earnshaw Sent: Tuesday, June 14, 2005 9:21 AM To: samba@lists.samba.org Subject: RE: [Samba] Roaming Profile Question tir, 14.06.2005 kl. 17.02 skrev Mark Sarria: I agree this is a desktop.ini, just search for all the desktop.ini in your profile and delete it; this should stop this notepad message from popping up. Unfortunately it will happen to all new users who login; I have not found a way to get rid of that, my solution was to create a mandatory profile. And 'hide files = /desktop.ini/' didn't help? --Tonni -- mail: [EMAIL PROTECTED] http://www.billy.demon.nl -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Kerberos enc type [xx] failed
Ephi, I think I had the same problem once upon a time. I haven't seen your krb5.conf, but I added the following to mine in the [libdefaults] section: default_tkt_enctypes = des-cbc-crc des-cbc-md5 default_tgs_enctypes = des-cbc-crc des-cbc-md5 That cleared up the problem. HTH. Dimitri On Tuesday June 14 2005 10:04 pm, Ephi Dror wrote: Hi Andrew, I upgraded krb5 libs to 1.3.3 and now the error became Decrypt integrity check failed. I rebooted my AD server and the SAMBA server just in case. Here is the log: [2005/06/14 18:14:30, 3, pid=17668] libads/kerberos_verify.c:ads_secrets_verify_ticket(193) ads_secrets_verify_ticket: enc type [3] failed to decrypt with error Decrypt integrity check failed [2005/06/14 18:14:30, 3, pid=17668] libads/kerberos_verify.c:ads_verify_ticket(307) ads_verify_ticket: krb5_rd_req with auth failed (Unknown code 0) Any idea? Did I forget to do something so obvious? Is it anything to do with keytab which I have noticed that if I specify use kerberos keytab = yes I get an error in net ads join that says: [2005/06/14 18:50:43, 1, pid=23237] libads/kerberos_keytab.c:ads_keytab_add_entry(236) ads_keytab_add_entry: adding entry to keytab failed (Cannot write to specified key table) [2005/06/14 18:50:43, 1, pid=23237] libads/kerberos_keytab.c:ads_keytab_create_default(418) ads_keytab_create_default: ads_keytab_add_entry failed while adding 'host'. [2005/06/14 18:50:43, 1, pid=23237] utils/net_ads.c:net_ads_join(829) Error creating host keytab! Joined 'SSN217' to realm 'LONDON.STORADINC.COM' And last, is it to do with kerberos hot fix http://support.microsoft.com/kb/833708/ Just wondering. Thanks so much in advance for any hint in this complicated area. Cheers, Ephi -Original Message- From: Ephi Dror Sent: Tuesday, June 14, 2005 10:28 AM To: 'Andrew Bartlett' Cc: Samba (samba@lists.samba.org) Subject: RE: [Samba] Kerberos enc type [xx] failed Thank you Andrew for sharing with us your expertise and give us those suggestions. We really appreciate it. Cheers, Ephi -Original Message- From: Andrew Bartlett [mailto:[EMAIL PROTECTED] Sent: Monday, June 13, 2005 10:15 PM To: Ephi Dror Cc: samba@lists.samba.org Subject: Re: [Samba] Kerberos enc type [xx] failed On Mon, 2005-06-13 at 10:09 -0700, Ephi Dror wrote: Hi All, I am getting Kerberos enc type problem that I can't explain: Just a quick background: 1. My samba version is 3.0. 6 (will switch to latest soon) 2. My Kerberos version is krb5 1.2.7. 4. Samba joined active directory that has one KDC running win2003 (not sp1) 5. I switched between different domains and join as ADS and domain many times, could it contribute to this problem? At the moment, I can't switch to latest krb5 package. What is the minimum Kerberos version required by SAMBA? MIT Kerberos 1.3.1 (or a suitably recent Heimdal) is the minimum we have maintained since Samba 3.0. Using less than this will cause issues with clients that for one reason or another do not posses 'DES' kerberos keys. Kerberos library requirements have been quite a pain in Samba 3.0. There are three basic solutions: - Upgrade your OS to one with a suitable kerberos - Upgrade the kerberos libraries on your OS - Statically link your Samba install to an upgraded kerberos. The latter option is what SerNet did/does for their Samba 3.0 packages. In Samba4, we have noted the pain that kerberos has caused in Samba 3.0, and the current plan is to ship with a built-in kerberos library. (Options for later development allow this to possibly use a system lib, but the aim is to shift the pain away from the administrator, who can't help the situation much). Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Migrating domain from Samba 3 to Windows 2003 (here's how to do it)
Ben S. wrote: Hi Jonathan, I saw your post in the linux.samba newsgroups with the above topic heading. Looking through the posts I could not see any replies. We also have a customer with the exact same requirements, and I though that I would quickly ping you to see if you had any luck with migration. Any experiences of suggestion are appreciated in advance, Ben Yes, I successfully migrated from Samba 3 to Windows 2003. I used the Active Directory Migration Tool from Microsoft; it's on the Windows Server 2003 CD (I don't remember exactly where, but look for ADMT). There are a few things that will make the ADMT fail, so be aware of them: 1) Set up a DNS server that's authoritative for your new 2003 domain (this will typically be in the first domain controller, but doesn't have to be). Then in your servers' and workstations' TCP/IP configuration, add it as the first DNS server. Also, make sure that DNS suffix for this connection is blank. This setting is in the advanced TCP/IP properties DNS tab; in 98, in the DNS tab, leave the domain blank. If it's not blank, things will fail. 2) Migrate user accounts before migrating machine accounts. You will be able to preserve SID history, so that users will have the same rights as before. Migrating from Samba to 2003, you won't be able to migrate passwords as you would if you were running an NT domain to begin with. 3) The domain administrator passwords of the old and new domain, and the local administrator passwords of the workstations MUST be the same. This is not required for user migration, but machine account migration will fail if they are not. 4) Disable any firewalls (inc. the Windows firewall) on any workstations that will be migrated. 5) ADMT supports test modes. Always test before running, and resolve any issues before proceeding! Note that a test will ALWAYS fail, because it can't actually migrate the accounts yet. You'll have to look for other errors besides these. 6) When migrating machine accounts, file security can be updated on the migrated workstations to match the new domain IF you chose to preserve SID history. This means your user profiles will also be migrated. If you manually create user accounts without migration, SID history will not be preserved and file security won't be migrated; you'll have to manually do it at the workstation after the migration. Here's a link to a post I made on the subject: http://lists.samba.org/archive/samba/2005-April/103743.html Good luck. It won't be painless, but in general, the process went smoother than I had hoped for. The first time I did it was actually a Windows NT4 to Windows 2003 domain migration, and including troubleshooting (learning the above) took about four hours for 13 workstations and one domain controller. Knowing the above, it probably would have taken only two hours. Later on, I successfully migrated a domain from Samba 3 to Windows 2003. The ADMT also seems to work for migrating to/from Small Business Server domains, which do not support trusts. -- --Jon Johnson Sutinen Consulting, Inc. www.sutinen.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] quota management
How does a samba administrator control how much space each share is allowed? Thanks, Romeo. [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] mount home dir after login
On Wed, 2005-06-15 at 08:07 +0200, Jochen Kaechelin wrote: waht is the prefered method to mount a home directory from a MS 2003 Server when loging in with a linux-client. the linux box is authenhticated against 2003 ADS. What you're probably looking for is pam_mount, which lets you mount an arbitrary directory on user login. Using pam_mount, it should be fairly trivial to mount a home directory with the same name as a user using smbmount from your Win2K3 server, and have it unmount when they log out. Graeme -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] (no subject)
On Wed, 2005-06-15 at 14:21 +0200, [EMAIL PROTECTED] wrote: Hi all, I have the samba version 3.0.10-4 configured as a primary domain controller. I have disabled the webclient on xp workstation but I have a first slow access on the network drive.About 15 seconds. Why? It could be (and this is a long shot) that the Linux box is trying to use DNS to resolve the hostname of the connecting machine, and failing. I've seen some weird, seemingly unexplainable initial timeouts on other services recently, that eventually came down to this. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3 + interactive session
Hi all, I installed a server samba 3 under debian. When I loggue with the field and that the controller is not available, I have an error message the system could not open session because the field is not available. The problem is I cannot reach my temporary itinerant profile. I have checked that the number of session in the mask were not to 0. In spite of the risks of bad recopies of the profile, I wish all the same to temporarily be able to me logguer starting from my . Is what that comes from a Windows configuration or rather from Samba? Do you want that I send my smb.conf to you ? Thank you in advance for your assistance. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] quota management
On Wed, 2005-06-15 at 11:09 -0400, Romeo Theriault wrote: How does a samba administrator control how much space each share is allowed? I would say using your OS's builtin quota tools would be the most efficient and effective way. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] quota management
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] ] On Behalf Of Romeo Theriault Sent: 15 June 2005 16:10 To: samba@lists.samba.org Subject: [Samba] quota management How does a samba administrator control how much space each share is allowed? Check out the Linux Quota man page. If you decide to use this you'll need to configure Samba at build time with the --with-quotas Thanks, Romeo. Cheers -- Kristyan Osborne - IT Technician Longhill High School 01273 391672 / 304086 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Error looking up domain users when doing wbinfo -u on PDC
Hi, I have Samba running as a PDC. When doing wbinfo -u I get Error looking up domain users. - /var/log/samba/winbindd.log says (log level 5): [2005/06/15 16:38:47, 3] nsswitch/winbindd_misc.c:winbindd_interface_version(261) [ 3875]: request interface version [2005/06/15 16:38:47, 3] nsswitch/winbindd_misc.c:winbindd_priv_pipe_dir(297) [ 3875]: request location of privileged pipe [2005/06/15 16:38:47, 5] nsswitch/winbindd.c:winbind_client_read(477) read failed on sock 20, pid 3875: EOF [2005/06/15 16:38:47, 3] nsswitch/winbindd_user.c:winbindd_list_users(587) [ 3875]: list users [2005/06/15 16:38:47, 5] nsswitch/winbindd.c:winbind_client_read(477) read failed on sock 21, pid 3875: EOF - When doing wbinfo -g I get: BUILTIN\administrators BUILTIN\print operators BUILTIN\backup operators BUILTIN\replicators - When doing wbinfo -m I get: BULTIN - getent passwd and getent group both work as expected. - Samba is according to /var/log/samba/log.nmbd successfully running as a domain master browser and local master browser for my workgroup. - The PDC is the only domain controller. I have no BDC's. - My /etc/samba/smb.conf as follows (shortened): [global] workgroup = WORKGROUP netbios name = SERVER server string = PDC server %L interfaces = eth0 lo bind interfaces only = yes map acl inherit = yes enable privileges = yes obey pam restrictions = no passdb backend = ldapsam:ldap://127.0.0.1 username map = /etc/samba/smbusers ldap ssl = no ldap delete dn = yes ldap passwd sync = yes ldap admin dn = cn=admin,dc=domain,dc=com ldap suffix = dc=domain,dc=com ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers ldap idmap suffix = ou=Idmap idmap backend = ldap:ldap://127.0.0.1 idmap uid = 1000-2 idmap gid = 1000-2 ... guest account = guest os level = 255 domain logons = yes preferred master = yes domain master = yes wins support = yes name resolve order = wins bcast hosts ... - I'm using Samba 3.0.14a (3.0.14a-3) in Debian Sarge. What could be wrong? Thanks, Mike Machuidel -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Possible new addition to Samba, looking for advice / help.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 All, Not 100% sure if this is the place to pose this, but I had an idea that wouldn't add too much bloat to Samba, but would help smaller-network admins like myself monitor what's going on on their network a bit closer. I keep top running in a ssh window on my box to keep an eye on the server. However, I'd like to have Samba information instead of ps -A... So here's the project: Alter smbstatus -b to list number of files (or shares?) open. Create a modified version of top (smbtop?) to use the output from smbstatus -b instead of ps -A. Modifying top shouldn't be too hard, even with my limited C knowledge I could probably handle that. smbstatus might be a little more difficult. Would enough other people use this, or should I bother? I will forewarn everyone that this will be the first non-hello, world coding (HTML doesn't count) that I've done since 1989. - -- Chad Vincent DermaMed Coatings Co. [EMAIL PROTECTED] Ph.330-633-8216 Fx.330-633-2461 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCsEi7zUYktMxfxasRAm3wAJ9Hf26iKkER6JlGbPXRe5j+6LYfxQCgq+dP h/NhQ9RBjhx3QQbJerPt+I4= =Bs7W -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] SMS 2003 and Samba
On Wed, Jun 15, 2005 at 12:25:15PM +0100, Kristyan Osborne wrote: Hi, I was wondering if anyone has played with Microsoft's SMS 2003? I've got a Samba 3 PDC using an LDAP backend, and a Windows 2003 server running SMS 2003. The SMS 2003 setup moans that it cannot verify the service account in the domain. Its reasons are it cannot connect to the domain as either the user account does not have access to the domain or the domain controller is down. I know the PDC is up and running and I have logged in as root to prove that I have full access. I was wondering if this is a Samba compatibility issue or whether it's something else. Can you get a network capture trace of what the SMS server is trying to do to the DC ? Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] static wins entries
The doc from http://us2.samba.org/samba/docs/man/Samba-HOWTO-Collection/NetworkBrowsing.html#id2554118 says to make static wins entries, all that has to be done is set the TTL to 0, like this MADMAN#03 0 192.168.1.2 66R We are adding to wins.dat a static wins entrie but after a few seconds it dissappears. Our samba version is 3.0.9. Thanks Emilio C. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Adding a cups printer driver
Hello, I have desperately tried to make samba able to share the printer with a Win98SE client. First I tried cupsaddsmb, but that failed. Then I walked step by step through the installation manually as explained in the documentation, and everything stopped on this point: rpcclient -Uroot% -c 'adddriver Windows NT x86\ PagePro8L:Iconlib.dll:PagePro8L.ppd:Adobeps4.drv:Adobeps4.hlp:NULL:RAW:NULL'\ -d3 coruscant added interface ip=192.168.1.20 bcast=192.168.1.255 nmask=255.255.255.0 Connecting to host=coruscant Connecting to 192.168.1.20 at port 445 Doing spnego session setup (blob length=58) got OID=1 3 6 1 4 1 311 2 2 10 got principal=NONE Got challenge flags: Got NTLMSSP neg_flags=0x608a0215 NTLMSSP: Set final flags: Got NTLMSSP neg_flags=0x60080215 NTLMSSP Sign/Seal - Initialising with flags: Got NTLMSSP neg_flags=0x60080215 lsa_io_sec_qos: length c does not match size 8 result was WERR_INVALID_PARAM This is my smb.conf: [global] workgroup = GENTOO_HOME server string = coruscant encrypt passwords = True security = user smb passwd file = /etc/samba/private/smbpasswd log file = /var/log/samba/log.%m interfaces = eth1 hosts deny = ALL hosts allow = 192.168.1.2 192.168.1.20 127.0.0.1 debug level = 2 load printers = yes browseable = yes printing = cups printcap name = cups interfaces = eth1 [print$] comment = Printer Drivers # this path holds the driver structure path = /etc/samba/drivers guest ok = no browseable = yes read only = yes write list = root [PagePro8L] comment = Minolta PagePro8L Network Printer printable = yes path = /var/spool/samba public = yes guest ok = yes printer admin = printeruser,root,ute [printers] comment = All Printer path = /var/spool/samba browseable = no public = yes writable = no printable = yes printer admin = root guest ok = yes Although I do not know in which succession the driver files should be added in the colon separated list, probably can help. The samba-version is 3.0.14a on a Gentoo-Box. Do somebody have an idea? Thanks in advance, Stefan. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] problem with large files
Hi people, im using samba 3.0.14 and when i tranfer large files to a share the files get corrupted. Any ideas? Large files = more than 10G. Tnxs in advance. This is the smb.conf: [global] workgroup = CONTENCIOSO server string = %h server (Samba %v) log file = /var/log/samba/log.%m max log size = 1000 syslog only = no security = domain encrypt passwords = yes admin users = administrator load printers = no socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 winbind uid = 1-3 winbind gid = 1-3 winbind enum users = yes winbind enum groups = yes password server = 10.2.0.11 template homedir = /home/%U template shell = /bin/false domain logons = no lm announce = yes preferred master = no domain master = no oplocks = no level2 oplocks = no [backup] comment = bacula share path = /home/backup read only = No valid users = CONTENCIOSO\administrator CONTENCIOSO\sqlagentcmdexec CONTENCIOSO\sqlservice CONTENCIOSO\sqlservice2 create mask = 0777 force create mode = 0777 security mask = 0777 force security mode = 0777 directory mask = 0777 force directory mode = 0777 directory security mask = 0777 force directory security mode = 0777 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd -r connecting to old samba not working
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Wayne Schroeder wrote: The error message is on the SERVER though... regardless of the server's error bugs or not, the new smbpasswd won't work, yet the old one does... so something in smbpasswd or it's supporting libs on the new version 3 source tree is doing something different I would imagine. On Tue, Jun 14, 2005 at 05:39:01PM -0500, Wayne Schroeder wrote: I am trying to build 3.0.14a and use it's smbpasswd binary to change passwords on a remote debian woody samba install -- the samba install on the remote debian machine is listed as '2.2.3a-15' I can use the previous smbpasswd binary from the same version on the client linux machine to smbpasswd -r and change user passwords, but the new version from 3.0.14a does not work against the 2.2.3a version. I get an error message like: [2005/06/14 16:45:17, 0] smbd/chgpasswd.c:check_oem_password(817) check_oem_password: incorrect password length (-177685840). I would be more inclined to call this a bug in 2.2.3a (on debian right) ? Since 2.2 is no longer being maintained, you could try to track this down own your own or possibly upgrade. Another method would be to start trying smbpasswd from 3.0.x releases 3.0.14a and movning backwards to see when the incompatibility was introduced. We could then look at the svn logs to try to isolate the change and come up with a workaround. cheers, jerry = Alleviating the pain of Windows(tm) --- http://www.samba.org GnuPG Key- http://www.plainjoe.org/gpg_public.asc I never saved anything for the swim back. Ethan Hawk in Gattaca -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCsE66IR7qMdg1EfYRAkWoAJ9tEL/d1NsRpWTq014PgV9/7S6H4QCg8a/0 EIR4WfoKq4b8w1/2LmMZ9hk= =rs0+ -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Adding a cups printer driver
Hello, I have desperately tried to make samba able to share the printer with a Win98SE client. First I tried cupsaddsmb, but that failed. Then I walked step by step through the installation manually as explained in the documentation, and everything stopped on this point: rpcclient -Uroot% -c 'adddriver Windows NT x86\ PagePro8L:Iconlib.dll:PagePro8L.ppd:Adobeps4.drv:Adobeps4.hlp:NULL:RAW:NULL'\ -d3 coruscant added interface ip=192.168.1.20 bcast=192.168.1.255 nmask=255.255.255.0 Connecting to host=coruscant Connecting to 192.168.1.20 at port 445 Doing spnego session setup (blob length=58) got OID=1 3 6 1 4 1 311 2 2 10 got principal=NONE Got challenge flags: Got NTLMSSP neg_flags=0x608a0215 NTLMSSP: Set final flags: Got NTLMSSP neg_flags=0x60080215 NTLMSSP Sign/Seal - Initialising with flags: Got NTLMSSP neg_flags=0x60080215 lsa_io_sec_qos: length c does not match size 8 result was WERR_INVALID_PARAM This is my smb.conf: [global] workgroup = GENTOO_HOME server string = coruscant encrypt passwords = True security = user smb passwd file = /etc/samba/private/smbpasswd log file = /var/log/samba/log.%m interfaces = eth1 hosts deny = ALL hosts allow = 192.168.1.2 192.168.1.20 127.0.0.1 debug level = 2 load printers = yes browseable = yes printing = cups printcap name = cups interfaces = eth1 [print$] comment = Printer Drivers # this path holds the driver structure path = /etc/samba/drivers guest ok = no browseable = yes read only = yes write list = root [PagePro8L] comment = Minolta PagePro8L Network Printer printable = yes path = /var/spool/samba public = yes guest ok = yes printer admin = printeruser,root,ute [printers] comment = All Printer path = /var/spool/samba browseable = no public = yes writable = no printable = yes printer admin = root guest ok = yes Although I do not know in which succession the driver files should be added in the colon separated list, probably can help. The samba-version is 3.0.14a on a Gentoo-Box. Do somebody have an idea? Thanks in advance, Stefan. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] unable to build pam_winbind on Solaris 9
Greetings, Still trying to get Samba 3.0.15pre2 built on a Solaris 9 box with PAM support. I am using gcc 3.3.2 and I have openldap-2.2.24, krb5-1.4, and Cyrus SASL 2.1.20 installed. I have found other posting by people with problems building on Solaris as well as asking about the _pam_macros.h file that seems to be missing on Solaris. Posting about problems, but not with answers. Can anyone that had gotten pam_winbind to build on Solaris shed any light? I have the following flags: LDFLAGS=-L/opt/local/openldap/lib -Wl,-R/opt/local/openldap/lib -L/opt/local/ossl/lib -R/opt/local/ossl/lib -L/usr/lib/security -R/usr/lib/security CPPFLAGS=-I/opt/local/openldap/include -I/usr/include/security and the following configure: ./configure --prefix=/opt/local/samba --with-automount --with-profile --with-acl-support --with-utmp --with-winbind --with-ads --with-ldap --with-krb5=/opt/local/kerberos5 --with-pam The make errors out with: ... Compiling nsswitch/pam_winbind.c with -fPIC nsswitch/pam_winbind.c: In function `converse': nsswitch/pam_winbind.c:71: warning: passing arg 3 of `pam_get_item' from incompatible pointer type nsswitch/pam_winbind.c:74: warning: passing arg 2 of pointer to function from incompatible pointer type nsswitch/pam_winbind.c: In function `_make_remark': nsswitch/pam_winbind.c:89: warning: assignment discards qualifiers from pointer target type nsswitch/pam_winbind.c: In function `_pam_delete': nsswitch/pam_winbind.c:292: error: parse error before void nsswitch/pam_winbind.c: In function `_winbind_read_password': nsswitch/pam_winbind.c:329: warning: passing arg 3 of `pam_get_item' from incompatible pointer type nsswitch/pam_winbind.c:362: warning: assignment discards qualifiers from pointer target type nsswitch/pam_winbind.c:370: warning: assignment discards qualifiers from pointer target type nsswitch/pam_winbind.c:376: warning: assignment discards qualifiers from pointer target type nsswitch/pam_winbind.c:434: warning: passing arg 3 of `pam_get_item' from incompatible pointer type nsswitch/pam_winbind.c: In function `pam_sm_authenticate': nsswitch/pam_winbind.c:462: warning: passing arg 2 of `pam_get_user' from incompatible pointer type nsswitch/pam_winbind.c: In function `pam_sm_acct_mgmt': nsswitch/pam_winbind.c:534: warning: passing arg 2 of `pam_get_user' from incompatible pointer type nsswitch/pam_winbind.c: In function `pam_sm_chauthtok': nsswitch/pam_winbind.c:612: warning: passing arg 2 of `pam_get_user' from incompatible pointer type nsswitch/pam_winbind.c:689: warning: passing arg 3 of `pam_get_item' from incompatible pointer type make: *** [nsswitch/pam_winbind.po] Error 1 TIA -Bob -- *** Bob Martel,System Administrator I met someone who looks a lot like you Levin College of Urban Affairs She does the things you do Cleveland State University But she is an IBM (216) 687-2214 [EMAIL PROTECTED]-Jeff Lynne *** -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Proper behavior of Interdomain Trust uid mappings
Ian Clancy wrote: I spent quite a while myself trying to figure this out. I'm not sure if what i have done is correct but in nsswitch.conf i have : passwd: files ldap winbind shadow: files ldap winbind group: files ldap winbind - Nice, that fixed the creation of sambaIdmapEntry objects in ou=IdMap That definitely needs to make its way into the howto. I had this same problem until i added winbind to the nsswitch.conf file. Can you see the users from the trusted domain when you enter 'wbinfo -u ' at the shell ? 'wbinfo -u' : 'Error looking up domain users' 'wbinfo -g' : BUILTIN\print operators BUILTIN\backup operators BUILTIN\replicator BUILTIN\account operators BUILTIN\administrators BUILTIN\guests BUILTIN\server operators BUILTIN\users 'getent passwd DOMB\\username' however works and pulls up the correct idmap info. 'wbinfo -m' : BUILTIN DOMB 'wbinfo --sequence' : BUILTIN : 1 DOMB : DISCONNECTED DOMA : 1 The problem still exists where a user has to access a share on the pdc before any of the member servers will stop popping up the password dialog. 'testparm -v' on my pdc: # Global parameters [global] dos charset = CP850 unix charset = UTF-8 display charset = LOCALE workgroup = DOMA realm = netbios name = PDC netbios aliases = netbios scope = server string = Samba Server %v interfaces = bind interfaces only = No security = USER auth methods = encrypt passwords = Yes update encrypted = No client schannel = Auto server schannel = Auto allow trusted domains = Yes hosts equiv = min password length = 5 map to guest = Never null passwords = No obey pam restrictions = No password server = * smb passwd file = /etc/samba/smbpasswd private dir = /etc/samba passdb backend = ldapsam:ldap://ldap.domain.tld algorithmic rid base = 1000 root directory = guest account = nobody enable privileges = Yes pam password change = No passwd program = passwd chat = *new*password* %n\n *new*password* %n\n *changed* passwd chat debug = No passwd chat timeout = 2 check password script = username map = password level = 0 username level = 0 unix password sync = No restrict anonymous = 0 lanman auth = Yes ntlm auth = Yes client NTLMv2 auth = Yes client lanman auth = No client plaintext auth = No preload modules = use kerberos keytab = No log level = 0 passdb:0 auth:2 winbind:5 syslog = 0 syslog only = No log file = /var/log/samba/log.%m max log size = 10 debug timestamp = Yes debug hires timestamp = No debug pid = No debug uid = No smb ports = 445 139 large readwrite = Yes max protocol = NT1 min protocol = CORE read bmpx = No read raw = Yes write raw = Yes disable netbios = No acl compatibility = defer sharing violations = Yes nt pipe support = Yes nt status support = Yes announce version = 4.9 announce as = NT max mux = 50 max xmit = 16644 name resolve order = lmhosts wins host bcast max ttl = 259200 max wins ttl = 518400 min wins ttl = 21600 time server = Yes unix extensions = Yes use spnego = Yes client signing = auto server signing = auto client use spnego = Yes change notify timeout = 60 deadtime = 10 getwd cache = Yes keepalive = 300 kernel change notify = Yes lpq cache time = 30 max smbd processes = 0 paranoid server security = Yes max disk size = 0 max open files = 1 socket options = TCP_NODELAY use mmap = Yes hostname lookups = No name cache timeout = 660 load printers = Yes printcap cache time = 0 printcap name = cups cups server = disable spoolss = No enumports command = addprinter command = deleteprinter command = show add printer wizard = Yes os2 driver map = mangling method = hash2 mangle prefix = 1 stat cache = Yes machine password timeout = 604800 add user script = /usr/local/sbin/smbldap-useradd %u delete user script = /usr/local/sbin/smbldap-userdel %u add group script = /usr/local/sbin/smbldap-groupadd -p %g delete group script = /usr/local/sbin/smbldap-groupdel %g add user to group script = /usr/local/sbin/smbldap-groupmod -m %u %gdelete user from group script = /usr/local/sbin/smbldap-groupmod -x %u %g set primary group script =
Re: [Samba] static wins entries
Emilio Casbas wrote: The doc from http://us2.samba.org/samba/docs/man/Samba-HOWTO-Collection/NetworkBrowsing.html#id2554118 says to make static wins entries, all that has to be done is set the TTL to 0, like this MADMAN#03 0 192.168.1.2 66R Emilio, Our static entry for our backup server looks like: BACKUPSERVER.COM#00 0 192.168.100.15 44R Doug -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Proper behavior of Interdomain Trust uid mappings
On Wednesday 15 June 2005 10:24, Robert Kelly wrote: Ian Clancy wrote: I spent quite a while myself trying to figure this out. I'm not sure if what i have done is correct but in nsswitch.conf i have : passwd: files ldap winbind shadow: files ldap winbind group: files ldap winbind - Nice, that fixed the creation of sambaIdmapEntry objects in ou=IdMap That definitely needs to make its way into the howto. Please provide a suggested documentation update. I am happy to receive it in text form, but do specifiy the section number it should go into. If you can get this to me within the next 48 hours it will make it into the second edition that will go to the printers early next week. - John T. I had this same problem until i added winbind to the nsswitch.conf file. Can you see the users from the trusted domain when you enter 'wbinfo -u ' at the shell ? 'wbinfo -u' : 'Error looking up domain users' 'wbinfo -g' : BUILTIN\print operators BUILTIN\backup operators BUILTIN\replicator BUILTIN\account operators BUILTIN\administrators BUILTIN\guests BUILTIN\server operators BUILTIN\users 'getent passwd DOMB\\username' however works and pulls up the correct idmap info. 'wbinfo -m' : BUILTIN DOMB 'wbinfo --sequence' : BUILTIN : 1 DOMB : DISCONNECTED DOMA : 1 The problem still exists where a user has to access a share on the pdc before any of the member servers will stop popping up the password dialog. 'testparm -v' on my pdc: # Global parameters [global] dos charset = CP850 unix charset = UTF-8 display charset = LOCALE workgroup = DOMA realm = netbios name = PDC netbios aliases = netbios scope = server string = Samba Server %v interfaces = bind interfaces only = No security = USER auth methods = encrypt passwords = Yes update encrypted = No client schannel = Auto server schannel = Auto allow trusted domains = Yes hosts equiv = min password length = 5 map to guest = Never null passwords = No obey pam restrictions = No password server = * smb passwd file = /etc/samba/smbpasswd private dir = /etc/samba passdb backend = ldapsam:ldap://ldap.domain.tld algorithmic rid base = 1000 root directory = guest account = nobody enable privileges = Yes pam password change = No passwd program = passwd chat = *new*password* %n\n *new*password* %n\n *changed* passwd chat debug = No passwd chat timeout = 2 check password script = username map = password level = 0 username level = 0 unix password sync = No restrict anonymous = 0 lanman auth = Yes ntlm auth = Yes client NTLMv2 auth = Yes client lanman auth = No client plaintext auth = No preload modules = use kerberos keytab = No log level = 0 passdb:0 auth:2 winbind:5 syslog = 0 syslog only = No log file = /var/log/samba/log.%m max log size = 10 debug timestamp = Yes debug hires timestamp = No debug pid = No debug uid = No smb ports = 445 139 large readwrite = Yes max protocol = NT1 min protocol = CORE read bmpx = No read raw = Yes write raw = Yes disable netbios = No acl compatibility = defer sharing violations = Yes nt pipe support = Yes nt status support = Yes announce version = 4.9 announce as = NT max mux = 50 max xmit = 16644 name resolve order = lmhosts wins host bcast max ttl = 259200 max wins ttl = 518400 min wins ttl = 21600 time server = Yes unix extensions = Yes use spnego = Yes client signing = auto server signing = auto client use spnego = Yes change notify timeout = 60 deadtime = 10 getwd cache = Yes keepalive = 300 kernel change notify = Yes lpq cache time = 30 max smbd processes = 0 paranoid server security = Yes max disk size = 0 max open files = 1 socket options = TCP_NODELAY use mmap = Yes hostname lookups = No name cache timeout = 660 load printers = Yes printcap cache time = 0 printcap name = cups cups server = disable spoolss = No enumports command = addprinter command = deleteprinter command = show add printer wizard = Yes os2 driver map = mangling method = hash2 mangle prefix = 1 stat cache =
[Samba] samba 3 + DNS(SRV records) + Active Directory Clients
Hai , I am new to samba. I have configured samba 3 as PDC and when I add win2k client into my DC, the client says 'unable to find 'mydomain' name , may be due to DNS Issue. I have also configured bind as dns server and I have the forward reverse records for 'mydomain'. I read that I need to add some SRV records for active directory clients(win2k/winxp). But I couldn't find any tips for this in the document. Can you pls help me what are all the records(srv) to be added in my dns(bind)? Sarav __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Adding a cups printer driver
Stefan Petersen schrieb: Hello, I have desperately tried to make samba able to share the printer with a Win98SE client. First I tried cupsaddsmb, but that failed. (...) Do somebody have an idea? using cupsaddsmb is the easiest. perhaps if you could describe why it failed (what command do you use, what postscript drivers you have etc.), we could help you. -- Tomek -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] NetBIOS needed?
Sorry if this sounds like I'm confused. I am. I am new to Samba and Solaris. I've got Samba 3.0.10 running on Solaris 9. The only windows box I can see or access the shares from is my Windows 2003 ADC which happens to be the only box running NetBIOS in the domain. I have started up a WINS server and added the servers IP to the samba.conf file. The samba server has registered in WINS but I still can not get to the Samba server via my XP client. If I turn NetBIOS on for the client it works. Is there a way to make this work without turning on NetBIOS? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Can't join pc to domain with smbldap-tools but can with smbpasswd
I have samba with ldap setup and seems to be running, just I am having trouble having pc's join the domain. The samba/ldap server is running debian sarge (when it was testing, haven't updated since) so samba 3.0.14a-13 and slapd 2.2.23-5. Client pc is windows 2000, and various linux's. smbldap-tools 0.9.1 If I try to join the domain with no entry in the Computers group, windows says there is a bad username and the log file looks like this. [2005/06/14 19:01:12, 2] smbd/server.c:exit_server(609) Closing connections [2005/06/14 19:01:12, 2] lib/smbldap.c:smbldap_open_connection(692) smbldap_open_connection: connection opened [2005/06/14 19:01:12, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/14 19:01:12, 2] passdb/pdb_ldap.c:init_group_from_ldap(2000) init_group_from_ldap: Entry found for group: 512 [2005/06/14 19:01:12, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [root] - [root] - [root] succeeded [2005/06/14 19:01:12, 2] rpc_server/srv_samr_nt.c:_samr_lookup_domain(2580) Returning domain sid for domain LDAPDOMAIN - S-1-5-21-3007768992-1764342258-1846594437 [2005/06/14 19:01:13, 0] rpc_server/srv_samr_nt.c:_samr_create_user(2324) _samr_create_user: Running the command `/usr/local/sbin/smbldap-useradd -w ldap-test$' gave 9 [2005/06/14 19:01:13, 2] smbd/server.c:exit_server(609) Closing connections I'm not sure what the gave 9 error means or where to look it up. But the ldap-test$ entry gets created without a sambaSAMAccount objectclass. If I run smbldap-adduser -w ldap-test$ (after removing the existing ldap-test$ entry) it will create the entry but it doesn't have a sambaSAMAcount objectclass. And it won't join the domain. If I create a local user in /etc/passwd and then user smbpasswd -m -a it will create the ldap entry in Computers but it has no posix objectclass. BUT it will allow me to join the pc to the domain. The only problem then (not sure if it's related or not), is that the only user that can login is the root user used to join the pc to the domain, any other users created with smbldap-adduser -a won't authenticate. Any users created with the smbldap scripts can authenticate against any of the linux boxes setup to authenticate against ldap. [2005/06/14 21:36:27, 2] lib/smbldap.c:smbldap_open_connection(692) smbldap_open_connection: connection opened [2005/06/14 21:36:27, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: ldap-test$ [2005/06/14 21:37:07, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: windowsguy [2005/06/14 21:37:08, 1] auth/auth_util.c:make_server_info_sam(840) User windowsguy in passdb, but getpwnam() fails! [2005/06/14 21:37:08, 0] auth/auth_sam.c:check_sam_security(324) check_sam_security: make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER' [2005/06/14 21:37:08, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [windowsguy] - [windowsguy] FAILED with error NT_STATUS_NO_SUCH_USER then as root [2005/06/14 21:38:21, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/14 21:38:22, 2] passdb/pdb_ldap.c:init_group_from_ldap(2000) init_group_from_ldap: Entry found for group: 512 [2005/06/14 21:38:22, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [root] - [root] - [root] succeeded [2005/06/14 21:38:25, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/14 21:38:25, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [root] - [root] - [root] succeeded [2005/06/14 21:38:25, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/14 21:38:25, 1] smbd/service.c:make_connection_snum(642) ldap-test (192.16.240.141) connect to service profiles initially as user root (uid=0, gid=0) (pid 14108) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Can't join pc to domain with smbldap-tools but can with smbpasswd
I recommend that you follow chapter 5 of the book Samba-3 by Example. This fully documents every step in minuted detail to get your Samba/LDAP server operational. The last review (done Saturday) used smbldap-tools-0.9.1. If you experience any problems please report them to me directly. Be sure to state the section number and step number that are causing you trouble. I promise to fix anything that is causing trouble in the book. It is simply an impossible task to assist everyone on this list individually with their own custom configuration. - John T. On Wednesday 15 June 2005 11:49, Ryan Braun wrote: I have samba with ldap setup and seems to be running, just I am having trouble having pc's join the domain. The samba/ldap server is running debian sarge (when it was testing, haven't updated since) so samba 3.0.14a-13 and slapd 2.2.23-5. Client pc is windows 2000, and various linux's. smbldap-tools 0.9.1 If I try to join the domain with no entry in the Computers group, windows says there is a bad username and the log file looks like this. [2005/06/14 19:01:12, 2] smbd/server.c:exit_server(609) Closing connections [2005/06/14 19:01:12, 2] lib/smbldap.c:smbldap_open_connection(692) smbldap_open_connection: connection opened [2005/06/14 19:01:12, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/14 19:01:12, 2] passdb/pdb_ldap.c:init_group_from_ldap(2000) init_group_from_ldap: Entry found for group: 512 [2005/06/14 19:01:12, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [root] - [root] - [root] succeeded [2005/06/14 19:01:12, 2] rpc_server/srv_samr_nt.c:_samr_lookup_domain(2580) Returning domain sid for domain LDAPDOMAIN - S-1-5-21-3007768992-1764342258-1846594437 [2005/06/14 19:01:13, 0] rpc_server/srv_samr_nt.c:_samr_create_user(2324) _samr_create_user: Running the command `/usr/local/sbin/smbldap-useradd -w ldap-test$' gave 9 [2005/06/14 19:01:13, 2] smbd/server.c:exit_server(609) Closing connections I'm not sure what the gave 9 error means or where to look it up. But the ldap-test$ entry gets created without a sambaSAMAccount objectclass. If I run smbldap-adduser -w ldap-test$ (after removing the existing ldap-test$ entry) it will create the entry but it doesn't have a sambaSAMAcount objectclass. And it won't join the domain. If I create a local user in /etc/passwd and then user smbpasswd -m -a it will create the ldap entry in Computers but it has no posix objectclass. BUT it will allow me to join the pc to the domain. The only problem then (not sure if it's related or not), is that the only user that can login is the root user used to join the pc to the domain, any other users created with smbldap-adduser -a won't authenticate. Any users created with the smbldap scripts can authenticate against any of the linux boxes setup to authenticate against ldap. [2005/06/14 21:36:27, 2] lib/smbldap.c:smbldap_open_connection(692) smbldap_open_connection: connection opened [2005/06/14 21:36:27, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: ldap-test$ [2005/06/14 21:37:07, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: windowsguy [2005/06/14 21:37:08, 1] auth/auth_util.c:make_server_info_sam(840) User windowsguy in passdb, but getpwnam() fails! [2005/06/14 21:37:08, 0] auth/auth_sam.c:check_sam_security(324) check_sam_security: make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER' [2005/06/14 21:37:08, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [windowsguy] - [windowsguy] FAILED with error NT_STATUS_NO_SUCH_USER then as root [2005/06/14 21:38:21, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/14 21:38:22, 2] passdb/pdb_ldap.c:init_group_from_ldap(2000) init_group_from_ldap: Entry found for group: 512 [2005/06/14 21:38:22, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [root] - [root] - [root] succeeded [2005/06/14 21:38:25, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/14 21:38:25, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [root] - [root] - [root] succeeded [2005/06/14 21:38:25, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/14 21:38:25, 1] smbd/service.c:make_connection_snum(642) ldap-test (192.16.240.141) connect to service profiles initially as user root (uid=0, gid=0) (pid 14108) -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To
Re: [Samba] Can't join pc to domain with smbldap-tools but can with smbpasswd
On June 15, 2005 05:49 pm, Ryan Braun wrote: I have samba with ldap setup and seems to be running, just I am having trouble having pc's join the domain. The samba/ldap server is running debian sarge (when it was testing, haven't updated since) so samba 3.0.14a-13 and slapd 2.2.23-5. Client pc is windows 2000, and various linux's. smbldap-tools 0.9.1 Replying to myself here, but after I sent the message off I noticed I had an older debian package for smbldap-tools installed and the latest tarball installed. I removed the debian package and made sure the configs were setup for the proper paths to the .9.1 scripts. Now when I try to join a machine to the domain samba logs look like it works but windows still says bad username. note. changed hostname to win2k first try, creates ldap entry w/o sambaSAMAccount and windows complains about bad username when adding to domain [2005/06/15 18:17:19, 2] smbd/server.c:exit_server(609) Closing connections [2005/06/15 18:17:19, 2] lib/smbldap.c:smbldap_open_connection(692) smbldap_open_connection: connection opened [2005/06/15 18:17:19, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/15 18:17:20, 2] passdb/pdb_ldap.c:init_group_from_ldap(2000) init_group_from_ldap: Entry found for group: 512 [2005/06/15 18:17:20, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [root] - [root] - [root] succeeded [2005/06/15 18:17:20, 2] rpc_server/srv_samr_nt.c:_samr_lookup_domain(2580) Returning domain sid for domain LDAPDOMAIN - S-1-5-21-3007768992-1764342258-1846594437 [2005/06/15 18:17:20, 2] smbd/server.c:exit_server(609) Closing connections If I try to join the domain again I get (and leave the ldap entry that was created from above) [2005/06/15 18:18:30, 2] lib/smbldap.c:smbldap_open_connection(692) smbldap_open_connection: connection opened [2005/06/15 18:18:30, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/15 18:18:30, 2] passdb/pdb_ldap.c:init_group_from_ldap(2000) init_group_from_ldap: Entry found for group: 512 [2005/06/15 18:18:30, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [root] - [root] - [root] succeeded [2005/06/15 18:18:30, 2] rpc_server/srv_samr_nt.c:_samr_lookup_domain(2580) Returning domain sid for domain LDAPDOMAIN - S-1-5-21-3007768992-1764342258-1846594437 [2005/06/15 18:18:31, 0] rpc_server/srv_samr_nt.c:_samr_create_user(2324) _samr_create_user: Running the command `/usr/local/sbin/smbldap-useradd -w win2k$' gave 9 [2005/06/15 18:18:31, 2] smbd/server.c:exit_server(609) Closing connections So I guess that gave 9 message is reported because the entry already exists, but why is the sambaSAMAccount object class not being added? If I run smbldap-adduser -w ldap-test$ (after removing the existing ldap-test$ entry) it will create the entry but it doesn't have a sambaSAMAcount objectclass. And it won't join the domain. If I create a local user in /etc/passwd and then user smbpasswd -m -a it will create the ldap entry in Computers but it has no posix objectclass. BUT it will allow me to join the pc to the domain. The only problem then (not sure if it's related or not), is that the only user that can login is the root user used to join the pc to the domain, any other users created with smbldap-adduser -a won't authenticate. Any users created with the smbldap scripts can authenticate against any of the linux boxes setup to authenticate against ldap. [2005/06/14 21:36:27, 2] lib/smbldap.c:smbldap_open_connection(692) smbldap_open_connection: connection opened [2005/06/14 21:36:27, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: ldap-test$ [2005/06/14 21:37:07, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: windowsguy [2005/06/14 21:37:08, 1] auth/auth_util.c:make_server_info_sam(840) User windowsguy in passdb, but getpwnam() fails! [2005/06/14 21:37:08, 0] auth/auth_sam.c:check_sam_security(324) check_sam_security: make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER' [2005/06/14 21:37:08, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [windowsguy] - [windowsguy] FAILED with error NT_STATUS_NO_SUCH_USER then as root [2005/06/14 21:38:21, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/14 21:38:22, 2] passdb/pdb_ldap.c:init_group_from_ldap(2000) init_group_from_ldap: Entry found for group: 512 [2005/06/14 21:38:22, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [root] - [root] - [root] succeeded [2005/06/14 21:38:25, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: root [2005/06/14 21:38:25, 2]
Re: [Samba] Linux 2 Linux Host Filesystem Sharing with Samba + MySQL
Included is my smb.conf file. Any ideas? # Samba config file created using SWAT # from 0.0.0.0 (0.0.0.0) # Date: 2005/06/09 18:19:32 # Global parameters [global] workgroup = VMSHARES netbios name = HOSTER server string = Samba Host Box interfaces = 192.168.175.1/255.255.255.0 security = SHARE smb passwd file = /etc/smbpasswd enable privileges = Yes log file = /var/log/samba/log.%m max log size = 50 socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192 load printers = No dns proxy = No ldap ssl = no valid users = mintee admin users = mintee create mask = 0777 force create mode = 0777 force security mode = 0777 directory mask = 0777 force directory mode = 0777 force directory security mode = 0777 [webs] comment = Websites share path = /mnt/hd/webs_home invalid users = uucp, sync, sshd, smmsp, shutdown, rpc, root, pop, operator, nobody, news, mysql, mail, lp, hal t, gdm, games, ftp, daemon, bin, adm valid users = mintee, @users read only = No [webdb] comment = Websites Database share path = /mnt/hd/webs_data username = mintee valid users = mintee, @users read only = No James McMillan wrote: Hello all, I've doing some server consolidation using vmware, I've asked this question to the vmware community, and I've gotten good, yet breif answers. I thought, since it's mostly a samba related issue, this was the right place to come.. Anyway I've successfully shared out my linux host filesystem to my linux guest using samba. The linux guest will be a webserver and mysql database server. One of the mount points on the guest is /usr/local/mysql/data because I don't want the virtual disk to hold the databases. (I'm trying to keep my virtual disks under 4GB) My problem is when I try to start mysql, it complains about not being about to chown the log files, as they are part of the samba share. It there a way to have a samba share, hosted from the host machine to the guest, to have full permissions on the guest os? Someone mentioned to me, make sure that uid=XXX,gid=YYY,file_mode=ZZZ,dir_mode=TTT ( -u/-g/-f/-d) options are not provided in fstab/smbclient/... Maybe recheck smb.conf on host for unix extensions (default is YES, so if you'll not find it, it is OK). Then mount filesystem in the guest. Full uid/gid/mode should fully propagate between host guest. Just make sure that host guest use same uid gid in /etc/passwd /etc/group. But that makes no sense to me. I just need the smbclient machine to be able to have full permission on the mysql data share. Hopefully someone can help here. Thanks in advance everyone. Jimmy -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Solution to smbldap-tools not adding sambaSAMAccount
Well I finally managed to get my machines added to my ldap/samba domain.
The problem was that I had defined an ou each for Computers and Users. ie
dc=base,dc=org
|
-- ou = Users
|
-- ou = Computers
Now the problem was that the nss_ldap library was searching in Users only,
and apparently the samba server needs to be able to resolve the Computers
tree aswell to add the sambaSAMAccount objectclass.
Not wanting to have a mess of computer and user accounts in one tree, I added
a ou for Computers under Users. So now it looks like
dc=base,dc=org
|
- ou = Users
|
--- ou = Computers
After making that addition and changing the smb.conf entry
ldap machine suffix = ou=Computers,ou=Users
and the smbldap.conf entry
computersdn=ou=Computers,ou=Users,${suffix}
and lastly changing the search scope for nss_ldap by changing libnss-ldap.conf
(debian) (not 100% sure how each search scope works but this worked for me)
scope sub
And then just make sure that getent passwd is resolving all the way down the
Computers branch by copying an account into there just to make sure. If you
see the account when you run getent passwd you should be ok. Restart samba
aswell.
Many thanks to John H Terpstra for the excellent sidebar in Ch 5 of Samba3 by
example stating the nss_ldap resolving issue.
Ryan Braun
(Now my new problem to follow in the next message :P )
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Winbind Authentication
I having a problem with using Winbind for authentication to a Windows 2003 AD. The serving is being used as a pop3 mail server. If I run getent passwd username, nothing is returned. If I run getent passwd, I get the imformation expected. If I then run getent passwd username, I get the user information. Running getent passwd seems to keeping it working for a few minutes for most users. The users it works for changes. I have put it in a cron job to run every minute. That had help a lot. The message below is what is recorded in the messages log: Jun 15 14:10:36 sendmailrh01 dovecot(pam_unix)[19486]: check pass; user unknown Jun 15 14:10:36 sendmailrh01 dovecot(pam_unix)[19486]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= Jun 15 14:10:36 sendmailrh01 dovecot-auth[19486]: pam_krb5[19486]: error resolving user name 'dan' to uid/gid pair Jun 15 14:10:36 sendmailrh01 dovecot-auth[19486]: pam_krb5[19486]: error getting information about 'dan' Thanks, Kyle -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Adding a cups printer driver
Am Mittwoch, 15. Juni 2005 18:47 schrieb Tomasz Chmielewski: Stefan Petersen schrieb: Hello, I have desperately tried to make samba able to share the printer with a Win98SE client. First I tried cupsaddsmb, but that failed. (...) Do somebody have an idea? using cupsaddsmb is the easiest. perhaps if you could describe why it failed (what command do you use, what postscript drivers you have etc.), we could help you. -- Tomek Hello Tomek, thanks for your quick reply. These are the drivers. They are the Adobe Postscript Drivers. The files reside in /usr/share/cups/drivers. coruscant ~ # ls -la /usr/share/cups/drivers insgesamt 2249 drwxr-xr-x2 root root 240 5. Jun 17:33 . drwxr-xr-x 10 root root 248 5. Jun 13:01 .. -rw-r--r--1 root root 575573 11. Jul 2000 Adfonts.mfm -rw-r--r--1 root root 1297280 23. Apr 2002 Adobeps4.drv -rw-r--r--1 root root 233348 23. Apr 2002 Adobeps4.hlp -rw-r--r--1 root root13493 23. Apr 2002 defprtr2.ppd -rw-r--r--1 root root 118128 23. Apr 2002 Iconlib.dll -rw-r--r--1 root root57344 11. Jul 2000 Psmon.dll The command for cupsaddsmb was: cupsaddsmb -H coruscant -U root -h coruscant -v PagePro8L Password for root required to access coruscant via SAMBA: Running command: rpcclient coruscant -N -U'root%' -c 'setdriver PagePro8L PagePro8L' added interface ip=192.168.1.20 bcast=192.168.1.255 nmask=255.255.255.0 Succesfully set PagePro8L to driver PagePro8L. But unfortuanately the directory of /etc/samba/drivers, as set in smb.conf is empty. I can browse the printer on the Win98 client, but it still asks for the driver. As far as I know it should get the drivers from the server, shouldn't it? Then I have tried to add the printer manually, to see where the problem is located. The result of this try was the content of the first posting. So I have no idea how to succeed. Stefan. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Adding a cups printer driver
Stefan Petersen schrieb: These are the drivers. They are the Adobe Postscript Drivers. The files reside in /usr/share/cups/drivers. coruscant ~ # ls -la /usr/share/cups/drivers insgesamt 2249 drwxr-xr-x2 root root 240 5. Jun 17:33 . drwxr-xr-x 10 root root 248 5. Jun 13:01 .. -rw-r--r--1 root root 575573 11. Jul 2000 Adfonts.mfm -rw-r--r--1 root root 1297280 23. Apr 2002 Adobeps4.drv -rw-r--r--1 root root 233348 23. Apr 2002 Adobeps4.hlp -rw-r--r--1 root root13493 23. Apr 2002 defprtr2.ppd -rw-r--r--1 root root 118128 23. Apr 2002 Iconlib.dll -rw-r--r--1 root root57344 11. Jul 2000 Psmon.dll It looks like you're using drivers that are not recognized by cupsaddsmb. Try using small characters exclusively, if not, this is how you get those drivers: 1) google for Adobe Universal PostScript Windows Driver Installer 1.0.6 and install the driver (install some non-existing printer during the installation, for example on LPT port) 2) share your printer on a Windows machine 3) go to \\your_windows\print$ - you will find your postscript drivers there (you can find them also somewhere under %windows%, but I'm not familiar with windows 98 If you open cupsaddsmb in an editor, you will see what files does it look for (so your look pretty OK, check if it'll work with small characters). Actually I had a similar issue today, it was caused by one file with missing character made by me when I was lowering the case. The command for cupsaddsmb was: cupsaddsmb -H coruscant -U root -h coruscant -v PagePro8L Password for root required to access coruscant via SAMBA: Running command: rpcclient coruscant -N -U'root%' -c 'setdriver PagePro8L PagePro8L' added interface ip=192.168.1.20 bcast=192.168.1.255 nmask=255.255.255.0 Succesfully set PagePro8L to driver PagePro8L. Yeah this is how it looks like when it has no appropriate drivers in /usr/share/cups/drivers It would be nice if it gave some warning, though. But unfortuanately the directory of /etc/samba/drivers, as set in smb.conf is empty. I can browse the printer on the Win98 client, but it still asks for the driver. As far as I know it should get the drivers from the server, shouldn't it? yes, if cupsaddsmb works, it will give you some more output, and you will get the files copied into /etc/samba/drivers (just copying files there is not enough, it has to be registered with rpcclient, too, which is all done by cupsaddsmb). Hope this helps. -- Tomek WPKG - deploy software to your Samba clients http://wpkg.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Possible new addition to Samba, looking for advice / help.
Create a modified version of top (smbtop?) to use the output from smbstatus -b instead of ps -A. This would be interesting; and may be possible, since there are supposedly language binding (python at least) to the Samba API. But I've never been able to find any documentation. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd -r connecting to old samba not working
The only problem with that is the old servers are NOT our servers -- they are not managed by us. It's hard for us to tell people 'hey, we updated something, so now you have to'. Regardless of if it is a bug with the old version of samba, I would imagine there is some value in being backwards compatible with old versions, regardless of being maintained. The crux of the whole deal is that in the world of password changing, the old smbpassword worked against everything, now in order to get support for the new 2003 server boxes that need samba 3 to connect to them, we lose support for changing passwords on a large set of other boxes. The obvious answer to this from an operational stand point is to use the old binary / install base for changing passwords on these boxes, but I was hoping that there was some simple fix / work around that would address the backwards compatibility issue I have ran into. It seems somewhat strange that we would strive for backwards compatibility for old servers using protocols like CORE, COREPLUS, LANMAN1, LANMAN2 etc.. but not support older samba releases IMHO. Wayne Gerald (Jerry) Carter wrote: Wayne Schroeder wrote: The error message is on the SERVER though... regardless of the server's error bugs or not, the new smbpasswd won't work, yet the old one does... so something in smbpasswd or it's supporting libs on the new version 3 source tree is doing something different I would imagine. On Tue, Jun 14, 2005 at 05:39:01PM -0500, Wayne Schroeder wrote: I am trying to build 3.0.14a and use it's smbpasswd binary to change passwords on a remote debian woody samba install -- the samba install on the remote debian machine is listed as '2.2.3a-15' I can use the previous smbpasswd binary from the same version on the client linux machine to smbpasswd -r and change user passwords, but the new version from 3.0.14a does not work against the 2.2.3a version. I get an error message like: [2005/06/14 16:45:17, 0] smbd/chgpasswd.c:check_oem_password(817) check_oem_password: incorrect password length (-177685840). I would be more inclined to call this a bug in 2.2.3a (on debian right) ? Since 2.2 is no longer being maintained, you could try to track this down own your own or possibly upgrade. Another method would be to start trying smbpasswd from 3.0.x releases 3.0.14a and movning backwards to see when the incompatibility was introduced. We could then look at the svn logs to try to isolate the change and come up with a workaround. cheers, jerry = Alleviating the pain of Windows(tm) --- http://www.samba.org GnuPG Key- http://www.plainjoe.org/gpg_public.asc I never saved anything for the swim back. Ethan Hawk in Gattaca -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Best Practices for rookie
I am interested in setting up Samba file services for our location and I am looking to find a Best Practices approach and configuration for use with an Active Directory controller. I have had some luck in setup Samba with local accounts, but Linux will be used increasingly in the months to come and I would like to build a file server that will validate file system access against AD domain groups. I am familiar with Samba, but not so familiar with Kerberos and winbind. I have read through some Samba documentation and found some valuable information, but I feel like I am missing a few pieces to my puzzle. What is the process for setting up this service? Are there some sample configs out there? Thanks Kelly -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba 3 + DNS(SRV records) + Active Directory Clients
Hi, having a valid working internal dns is nice to have and gives you the second chance to name resolution ( depends on configure issues ) but the prime lookup in the most times is the wins service, as its looked normally first by the win clients, and many applications i.e. old outlook versions. So configure samba as wins server or use an existing one ( win 2000 server and up ) But i guess this may not be your only problem so show us your samba conf and decribe your network layout. You will find adding info in the samba faqs and in your samba logs Regards saravanan ganapathy schrieb: Hai , I am new to samba. I have configured samba 3 as PDC and when I add win2k client into my DC, the client says 'unable to find 'mydomain' name , may be due to DNS Issue. I have also configured bind as dns server and I have the forward reverse records for 'mydomain'. I read that I need to add some SRV records for active directory clients(win2k/winxp). But I couldn't find any tips for this in the document. Can you pls help me what are all the records(srv) to be added in my dns(bind)? Sarav __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com -- Mit freundlichen Gruessen Best Regards Robert Schetterer robert_at_schetterer.org Munich / Bavaria / Germany https://www.schetterer.org \** \* gnupgp \* public key: \* https://www.schetterer.org/public.key \** -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd -r connecting to old samba not working
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Wayne Schroeder wrote: | The only problem with that is the old servers are | NOT our servers -- they are not managed by us. It's | hard for us to tell people 'hey, we updated something, | so now you have to'. Regardless of if it is a bug | with the old version of samba, I would imagine there | is some value in being backwards compatible with old | versions, regardless of being maintained. The crux of | the whole deal is that in the world of password | changing, the old smbpassword worked against everything, | now in order to get support for the new 2003 server | boxes that need samba 3 to connect to them, we lose | support for changing passwords on a large set of other | boxes. The obvious answer to this from an operational | stand point is to use the old binary / install base | for changing passwords on these boxes, but I was hoping | that there was some simple fix / work around that would | address the backwards compatibility issue I have ran | into. It seems somewhat strange that we would | strive for backwards compatibility for old servers using | protocols like CORE, COREPLUS, LANMAN1, LANMAN2 etc.. | but not support older samba releases IMHO. Wayne, First off, any breakage was not intentional. Second, I gave you instructions for helping us track it down. What I said about 2.2.x is that we will not issue a patch for it. I will be happy to issue a patch for smbpasswd to fix any incompatibilities with older Samba version if possible. But it requires that you do some things to help me out Here they are again: | Another method would be to start trying smbpasswd | from 3.0.x releases 3.0.14a and moving backwards to | see when the incompatibility was introduced. We could | then look at the svn logs to try to isolate the change | and come up with a workaround. cheers, jerry = Alleviating the pain of Windows(tm) --- http://www.samba.org GnuPG Key- http://www.plainjoe.org/gpg_public.asc I never saved anything for the swim back. Ethan Hawk in Gattaca -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCsJ3LIR7qMdg1EfYRAjh7AJ9L6SIE6zJa5oGF6hAJyEkc2oN4mACgwVTZ uzTz4x5jHNVN5dr51IQhGW0= =P9j6 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Best Practices for rookie
On Wednesday 15 June 2005 15:36, Fortin, Kelly wrote: I am interested in setting up Samba file services for our location and I am looking to find a Best Practices approach and configuration for use with an Active Directory controller. I have had some luck in setup Samba with local accounts, but Linux will be used increasingly in the months to come and I would like to build a file server that will validate file system access against AD domain groups. I am familiar with Samba, but not so familiar with Kerberos and winbind. I have read through some Samba documentation and found some valuable information, but I feel like I am missing a few pieces to my puzzle. What is the process for setting up this service? Are there some sample configs out there? Chapter 7, Samba-3 by Example. http://www.samba.org/samba/docs/Samba-Guide.pdf Let me know if that information is does not meet the need. - John T. -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: samba Digest, Vol 30, Issue 24
Bonjour, Prenez note que je vais être absent du bureau à partir de la semaine du13 juin. Je serai de retour la semaine du 20 juin 2005. Hello. Please note that I will be out of the office the week of june 13, returning on june 20. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd -r connecting to old samba not working
Gerald (Jerry) Carter wrote: Wayne, First off, any breakage was not intentional. Second, I gave you instructions for helping us track it down. What I said about 2.2.x is that we will not issue a patch for it. I will be happy to issue a patch for smbpasswd to fix any incompatibilities with older Samba version if possible. But it requires that you do some things to help me out Here they are again: | Another method would be to start trying smbpasswd | from 3.0.x releases 3.0.14a and moving backwards to | see when the incompatibility was introduced. We could | then look at the svn logs to try to isolate the change | and come up with a workaround. I should have been more clear .. the last message was generally directed at those suggesting that I should just upgrade the old samba installs instead of isolating the change / making a potential work around (or fix, if it is deemed as such) in the new code. I will gladly assist in isolating where the problem was introduced, and I am sure that no change / breakage was intentional and did not intend to imply that if it sounded as such. I will post more information as it becomes available, thanks again. Wayne -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Best Practices for rookie
On Wednesday June 15 2005 5:36 pm, Fortin, Kelly wrote: I am interested in setting up Samba file services for our location and I am looking to find a Best Practices approach and configuration for use with an Active Directory controller. I have had some luck in setup Samba with local accounts, but Linux will be used increasingly in the months to come and I would like to build a file server that will validate file system access against AD domain groups. I am familiar with Samba, but not so familiar with Kerberos and winbind. I have read through some Samba documentation and found some valuable information, but I feel like I am missing a few pieces to my puzzle. What is the process for setting up this service? Are there some sample configs out there? Thanks Kelly Of course, there's Samba-By-Example (http://www.samba.org/samba/docs/man/Samba-Guide/), which is excellent (many thanks to John T. Co.). I've also had success with this: http://www.wlug.org.nz/ActiveDirectorySamba Regards, Dimitri -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbpasswd -a -m
I am trying to configure Samba 2.2x with Win2K.
I need that samba shares a directory in the Linux server and the users Windows
access that without authentication.
I created the UNIX users (etc/passwd).
dic00037$:*:504:65533:DIC00037:/dev/null:/bin/false
dic00024$:*:505:65533:DIC00024:/dev/null:/bin/false
dic00021$:*:506:65533:DIC00021:/dev/null:/bin/false
I creates the Samba users.
smbpasswd -a -m dic00037
smbpasswd -a -m dic00024
smbpasswd -a -m dic00021
I'm trying to access by Windows with \\150.10.10.70, show me [homes] but I
cannot access the folder.
Any suggestion?
Regards
Jaime
Attached additional information:
peumo:/etc/samba # smbclient -L \\localhost -U%
added interface ip=127.0.0.1 bcast=127.255.255.255 nmask=255.0.0.0
added interface ip=150.10.10.70 bcast=150.10.255.255 nmask=255.255.0.0
Domain=[SANTIAGO] OS=[Unix] Server=[Samba 2.2.5-UL]
Sharename Type Comment
- ---
homes Disk ComparteLinux
IPC$ IPC IPC Service (Servidor Samba Linux)
ADMIN$ Disk IPC Service (Servidor Samba Linux)
Server Comment
----
CAPRE-SANTIAGO
PEUMOServidor Samba Linux
WorkgroupMaster
----
SANTIAGO CAPRE-SANTIAGO
/etc/samba/smb.conf
[global]
workgroup = SANTIAGO
netbios name = peumo
server string = Servidor Samba Linux
unix extensions = yes
security = share
encrypt passwords = yes
load printers = no
socket options = IPTOS_LOWDELAY TCP_NODELAY
hosts allow = 150.10.12. localhost
interfaces = 127.0.0.1/8 150.10.10.70/16
bind interfaces only = yes
password server = CAPRE-SANTIAGO
username map = /etc/samba/smbusers
smb passwd file = /etc/samba/smbpasswd
log level = 1
large readwrite = yes
max log size = 1000
auto services = homes
log file = /var/log/samba/%m.log
veto files = /*.eml/*.nws/riched20.dll/*.{*}/
local master = yes
[homes]
path= /home/compartelinux
comment = ComparteLinux
volume = Disco-Linux
browseable = yes
writeable = yes
guest ok = yes
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] No builtin nor plugin backend for ldapsam found
Hello! i have some problems with my passdb backend and openladp-samba server. Logs, starting smb.conf: [2005/06/14 00:00:30, 0] smbd/server.c:main(798) smbd version 3.0.14a started. Copyright Andrew Tridgell and the Samba Team 1992-2004 [2005/06/14 00:00:30, 0] passdb/pdb_interface.c:make_pdb_methods_name(721) No builtin nor plugin backend for ldapsam found [2005/06/14 00:00:30, 1] passdb/pdb_interface.c:make_pdb_context_list(825) Loading ldapsam:ldap://localhost/ failed! Do I need one more package or packages? I installed the BerkeleyDB and the -devel , db packages my entry in the smb.conf with openldaplinking for passdb is: passdb backend = ldapsam:ldap://127.0.0.1 There is another problem as for the openldap backend and smb. My samba shares work for me, if I comment out passdb backend = ldapsam:ldap://127.0.0.1;. They don't work for me, if the passdbline is inside! BTW, do I need a passdb backend for an openldapserver anyway or is there enough to edit the slapd.conf database lbm and the path to database: directory /var/lib/ldap? I have two sambas: samba 3.0.7 built from rpm packages and compilied samba 3.0.14a. The backend error do only appeare in samba 3.0.14a, not in the rpm 3.0.7. My system is: openldap 2.2.26, samaba 3.0.14a and 3.0.7., SuSE 9.2. Best regards Andreas -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Errormessage at start of samba
Paul Gienger schrieb If you are just looking to use the 'standard' ldap backend, change your option to ldap instead of ldapsam. This is the one that new installations should be going for. What's the standard ldap backend and how to? only: database lbm and database dierctory path in the slapd.conf? same result as before: passdb backend = ldap:ldap://127.0.0.1 instead of : passdb backend = ldapsam:ldap://127.0.0.1 Many Thanks Andreas To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd -a -m
Jaime Amigo Pinilla wrote:
I am trying to configure Samba 2.2x with Win2K.
I need that samba shares a directory in the Linux server and the users Windows access that without authentication.
I created the UNIX users (etc/passwd).
dic00037$:*:504:65533:DIC00037:/dev/null:/bin/false
dic00024$:*:505:65533:DIC00024:/dev/null:/bin/false
dic00021$:*:506:65533:DIC00021:/dev/null:/bin/false
I creates the Samba users.
smbpasswd -a -m dic00037
smbpasswd -a -m dic00024
smbpasswd -a -m dic00021
The above creates machine accounts which is unnecessary. This will not
help. You need to read the docs about guest users. Another easy way is
to create 1 samba user account and have everyone mount the drive using
that account. Not very secure but that doesn't seem to be a concern for
you.
I'm trying to access by Windows with \\150.10.10.70, show me [homes] but I cannot access the folder.
Any suggestion?
Regards
Jaime
Attached additional information:
peumo:/etc/samba # smbclient -L \\localhost -U%
added interface ip=127.0.0.1 bcast=127.255.255.255 nmask=255.0.0.0
added interface ip=150.10.10.70 bcast=150.10.255.255 nmask=255.255.0.0
Domain=[SANTIAGO] OS=[Unix] Server=[Samba 2.2.5-UL]
Sharename Type Comment
- ---
homes Disk ComparteLinux
IPC$ IPC IPC Service (Servidor Samba Linux)
ADMIN$ Disk IPC Service (Servidor Samba Linux)
Server Comment
----
CAPRE-SANTIAGO
PEUMOServidor Samba Linux
WorkgroupMaster
----
SANTIAGO CAPRE-SANTIAGO
/etc/samba/smb.conf
[global]
workgroup = SANTIAGO
netbios name = peumo
server string = Servidor Samba Linux
unix extensions = yes
security = share
encrypt passwords = yes
load printers = no
socket options = IPTOS_LOWDELAY TCP_NODELAY
hosts allow = 150.10.12. localhost
interfaces = 127.0.0.1/8 150.10.10.70/16
bind interfaces only = yes
password server = CAPRE-SANTIAGO
username map = /etc/samba/smbusers
smb passwd file = /etc/samba/smbpasswd
log level = 1
large readwrite = yes
max log size = 1000
auto services = homes
log file = /var/log/samba/%m.log
veto files = /*.eml/*.nws/riched20.dll/*.{*}/
local master = yes
[homes]
path= /home/compartelinux
comment = ComparteLinux
volume = Disco-Linux
browseable = yes
writeable = yes
guest ok = yes
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] smbpasswd -a -m
Not quite sure what you want, but it sounds like you want to access your
home share, without providing credentials?
--mark
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Jaime Amigo Pinilla
Sent: Wednesday, June 15, 2005 2:43 PM
To: samba@lists.samba.org
Subject: [Samba] smbpasswd -a -m
I am trying to configure Samba 2.2x with Win2K.
I need that samba shares a directory in the Linux server and the users
Windows access that without authentication.
I created the UNIX users (etc/passwd).
dic00037$:*:504:65533:DIC00037:/dev/null:/bin/false
dic00024$:*:505:65533:DIC00024:/dev/null:/bin/false
dic00021$:*:506:65533:DIC00021:/dev/null:/bin/false
I creates the Samba users.
smbpasswd -a -m dic00037
smbpasswd -a -m dic00024
smbpasswd -a -m dic00021
I'm trying to access by Windows with \\150.10.10.70, show me [homes] but I
cannot access the folder.
Any suggestion?
Regards
Jaime
Attached additional information:
peumo:/etc/samba # smbclient -L \\localhost -U%
added interface ip=127.0.0.1 bcast=127.255.255.255 nmask=255.0.0.0
added interface ip=150.10.10.70 bcast=150.10.255.255 nmask=255.255.0.0
Domain=[SANTIAGO] OS=[Unix] Server=[Samba 2.2.5-UL]
Sharename Type Comment
- ---
homes Disk ComparteLinux
IPC$ IPC IPC Service (Servidor Samba Linux)
ADMIN$ Disk IPC Service (Servidor Samba Linux)
Server Comment
----
CAPRE-SANTIAGO
PEUMOServidor Samba Linux
WorkgroupMaster
----
SANTIAGO CAPRE-SANTIAGO
/etc/samba/smb.conf
[global]
workgroup = SANTIAGO
netbios name = peumo
server string = Servidor Samba Linux
unix extensions = yes
security = share
encrypt passwords = yes
load printers = no
socket options = IPTOS_LOWDELAY TCP_NODELAY
hosts allow = 150.10.12. localhost
interfaces = 127.0.0.1/8 150.10.10.70/16
bind interfaces only = yes
password server = CAPRE-SANTIAGO
username map = /etc/samba/smbusers
smb passwd file = /etc/samba/smbpasswd
log level = 1
large readwrite = yes
max log size = 1000
auto services = homes
log file = /var/log/samba/%m.log
veto files = /*.eml/*.nws/riched20.dll/*.{*}/
local master = yes
[homes]
path= /home/compartelinux
comment = ComparteLinux
volume = Disco-Linux
browseable = yes
writeable = yes
guest ok = yes
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] No builtin nor plugin backend for ldapsam found
Andreas Bauer wrote: Hello! i have some problems with my passdb backend and openladp-samba server. Logs, starting smb.conf: [2005/06/14 00:00:30, 0] smbd/server.c:main(798) smbd version 3.0.14a started. Copyright Andrew Tridgell and the Samba Team 1992-2004 [2005/06/14 00:00:30, 0] passdb/pdb_interface.c:make_pdb_methods_name(721) No builtin nor plugin backend for ldapsam found [2005/06/14 00:00:30, 1] passdb/pdb_interface.c:make_pdb_context_list(825) Loading ldapsam:ldap://localhost/ failed! Do I need one more package or packages? I installed the BerkeleyDB and the -devel , db packages my entry in the smb.conf with openldaplinking for passdb is: passdb backend = ldapsam:ldap://127.0.0.1 There is another problem as for the openldap backend and smb. My samba shares work for me, if I comment out passdb backend = ldapsam:ldap://127.0.0.1;. They don't work for me, if the passdbline is inside! BTW, do I need a passdb backend for an openldapserver anyway or is there enough to edit the slapd.conf database lbm and the path to database: directory /var/lib/ldap? I have two sambas: samba 3.0.7 built from rpm packages and compilied samba 3.0.14a. What options did you specify whith ./configure when you compiled 3.0.14a? Methinks you did NOT specify the --with-ldap options. The backend error do only appeare in samba 3.0.14a, not in the rpm 3.0.7. My system is: openldap 2.2.26, samaba 3.0.14a and 3.0.7., SuSE 9.2. Best regards Andreas -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Solution to smbldap-tools not adding sambaSAMAccount
ons, 15.06.2005 kl. 21.53 skrev Ryan Braun:
Now the problem was that the nss_ldap library was searching in Users only,
and apparently the samba server needs to be able to resolve the Computers
tree aswell to add the sambaSAMAccount objectclass.
rant
I don't want to upset you unduly, but nss has nothing to do with this
and it's not necessary to have the computers dn under the users dn to
make things work. It's all those /@¥{# idealx scripts and peoples'
basic ignorance of how LDAP works at all that fsck up the otherwise
brilliant Samba daemon, ldapsam and command line utilities.How on earth
something so banal as the idealx scripts can have been packaged together
with these brilliant utilities stupefies me.
At my site (3.0.14a) I have masses (5) of different user dns in
different places in my tree, goodness knows how many group dns and a
single computers dn way down deep in the tree, far apart from the users.
The basic Samba utilities (smbd, ldapsam, smbpasswd, pdbedit) can cope
with all of these just fine. But I don't use the idealx scripts, I use
my own awk script to make the initial custom posixAccounts (have to have
masses of special stuff that the idealx scripts have never heard of) and
shell scripts for administering the rest of the Samba stuff.
It's the way the Samba people treat LDAP, as if it were a breeding
ground for morons. LDAP is a never-empty Pandora's box, that is there
for a totally different purpose than that to which the samba people
allude. It is the basis of a network-wide authentication system that
should be installed and understood long before one has even begun to
think about Samba or any other service whatsoever. I realize that the
Samba people have attempted to, and largely attained, the aim of
supplying an out-of-the box solution for averagely intelligent
Windows-minded people (the Samba people have written this themselves),
but it would perhaps be as well if they drew peoples' attention to the
importance of, and wealth of possibilities of, LDAP as a basic sovereign
multi-OS, multi-vendor service on which Samba is dependent, rather than
the idea they convey at the moment that it is some kind of an add-on
purely present to satisfy samba's needs.
/rant
(Now my new problem to follow in the next message :P )
Well, that was my problem.
Best,
--Tonni
--
mail: [EMAIL PROTECTED]
http://www.billy.demon.nl
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 2GB File on AIX 5.2
Hi Carlos, Thanks for your reply. As I stated in originated e-mail, I can transfer files larger than 6GB to the file system, so I don't think it is the file system problem. If the case is file system problem, do you have any idea how I can fix the problem. LihP On 6/15/05, João Carlos Camera Junior [EMAIL PROTECTED] wrote: the file system can´t read files larger than 2GB. João Carlos Camera Junior CDZ-Tecnologia Aplicada Linux Registred User # 388936 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] nmbd fails to recognize network change locked on old DMB
After setting up a working SAMBA test server, attempts to move it to production failed. The plan was to replace an old file server upgrading to 3.7 OpenBSD and SAMBA 3.0.14a. The test server worked in a test environment, but when moved to the production network replacing the existing server, SAMBA failed. The failure centers around SAMBA's inability to recognize that it has changed networks with different IPs. It reports the old DHCP server as Master Browser and fails to elect itself browser even though the server it is subordinate to no longer exists. I have done away with the cache, read multiple pages of documentation, tweaked the smb.conf file all to no avail. i found one older listserver article that mentioned files /var/samba/cache/browser.log and cache.log but I could not find those files. When I query SAMBA with the tools it reports old network stuff (addresses and browser) as if it has a history file and it is not going to change regardless of the new environment. ie SAMBA fails. Details: Old environment: About 2.2 OpenBSD with a really old SAMBA. i386 Pentium PC Server 4 workstations 1 3com Office Connect Firewal/Gateway(does DHCP) to cable modem and Internet. 192.168.200. network addressing Comments: Solid as a rock never a problem. Boss wants a new PC with XP. Admittedly old workstation giving problems. Test Environment: 3.7 OpenBSD and 3.0.14a SAMBA i386 Server Duron processor 1 new Dell PC workstation running XP i386 Diskless (runs off CD) Dell PC as an internet gateway,DHCP server 1 Windows 98 PC (that I never attempted to have join the domain) 1 Windows 95 workstation 10.10.11. network addressing Obtained CD's for OpenBSD 3.7 and installed i386 binary to test server. FTP downloaded SAMBA 3.0.14a and made the install from scratch. Installed the XP workstation and got it working with SAMBA. The Windows 95 workstation was also able to join the domain. All is fine. Moved the test server and XP workstation to production environment. Changed ip addressing from 10.10.11 to 192.168.200 and booted up the server and XP workstation. This is where things went whacky. Both machines were set for DHCP client. No serious errors were reported, but nothing worked. The SAMBA logs for the workstation reported connection denied from 192.168.200.47 the nmbd.log said There is already a domain master browser at IP 10.10.11.130 for workgroup chaz.com registered on subnet UNICAST_SUBNET. Packet send failed to 10.10.11.130.. I have rebooted. Eliminateed cache and reduced time to live in my SAMBA server configuration. What I need is a startup parameter for nmbd that says FLUSH and RESET UNICAST_SUBNET? Looking at the man pages for smbd, smb.conf, nmbd I do not find any such parameter. I have done away with DHCP on the XP and server boxes and static addressed them with table in hosts file. We can ping each other by name or address fine. SAMBA will not get off the UNICAST_SUBNET error. In researching the problem on one of the SAMBA listservers someone wrote that if you want to know what SAMBA was doing look at /var/samba/cache/browser... and another file with the same path(not sure i have the names correct, I tossed the slip of paper when they were not found). I looked around and could not find those files. Not much of anything on the net about UNICAST_SUBNET. I assume that this might be an internal SAMBA dataname or field. I do not have any desire to go to the source code. It seems to me that in an election for master browser server, if there aren't any other candidates, the one surviving candidate should win. Is this a SAMBA bug? Am I just ignorant? Had the Linux gateway bid and received Master Browser Status in the test environment (apparently so)? Did OpenBSD bow in humble, memorial reverence to Linux and prevent SAMBA from doing its job? Will someone give me a parameter to tweak or a file I can whack? I would rather not rebuild SAMBA again. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: No builtin nor plugin backend for ldapsam found
TMSIII wrote: What options did you specify whith ./configure when you compiled 3.0.14a? Methinks you did NOT specify the --with-ldap options. I compiled 3.0.14a with the option: --with-ldapsam. But I think it doesn't matter from samba version 3.0 and later, if you take this compileoption? Thanks a lot Andreas To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Solution to smbldap-tools not adding sambaSAMAccount
Tony Earnshaw wrote:
ons, 15.06.2005 kl. 21.53 skrev Ryan Braun:
Now the problem was that the nss_ldap library was searching in Users
only, and apparently the samba server needs to be able to resolve the
Computers tree aswell to add the sambaSAMAccount objectclass.
rant
I don't want to upset you unduly, but nss has nothing to do with this
and it's not necessary to have the computers dn under the users dn to
make things work. It's all those /@¥{# idealx scripts and peoples'
basic ignorance of how LDAP works at all that fsck up the otherwise
brilliant Samba daemon, ldapsam and command line utilities.How on
earth something so banal as the idealx scripts can have been packaged
together with these brilliant utilities stupefies me.
Bullshit Tony. Utter bullshit. You spread FUD about the smbldap tools.
The smbldap tools now handle user accounts (which includes computer
accounts) in multiple ou's but nss has to know where the base starts
that's the problem. The solution supplied by Ryan is fine.
At my site (3.0.14a) I have masses (5) of different user dns in
different places in my tree,
And how have you configured nss? Do you point it at a common root for those
accounts?
goodness knows how many group dns and a
single computers dn way down deep in the tree, far apart from the
users.
So does Adam Tuano Williams. But we don't hear him ranting on this list
every five seconds about how crap the smbldap tools scripts are. He has
designed his own schema for morrison industries. Written his own scripts.
He is more competant than you, yet we don't hear him cramming his own
opinion down other peoples throats. In fact I've noticed traffic on this
list go down since you came onto it. If you want to know anything about how
cyrus, or xfs, or quite a few other useful things work you can find it on
Adam's site.
Not everyone gets an erection about how good GQ is either. Even if it is
that good.
It's the way the Samba people treat LDAP, as if it were a breeding
ground for morons. LDAP is a never-empty Pandora's box,
It is if you are only using it for samba.
It is the basis of a network-wide authentication system that
should be installed and understood long before one has even begun to
think about Samba or any other service whatsoever.
And who has time to do that?
I realize that the
Samba people have attempted to, and largely attained, the aim of
supplying an out-of-the box solution for averagely intelligent
Windows-minded people (the Samba people have written this
themselves), but it would perhaps be as well if they drew peoples'
attention to the importance of, and wealth of possibilities of, LDAP
as a basic sovereign multi-OS, multi-vendor service on which Samba is
dependent, rather than the idea they convey at the moment that it is
some kind of an add-on purely present to satisfy samba's needs.
/rant
Yudda, yudda, yudda. So it goes every fortnight. Smbldap tools are crap.
You are far more intelligent than anyone else. Yet have we seen you post an
alternative toolset? Nope. When you are challenged to do something about
your claims you withdraw and say things about how disjointed your user
management scripts are, and that you wouldn't post them onto the web. Etc,
etc
I for one, am sick and tired of it. Please stop it.
Geoff
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba, OS X Tiger 10.4 plain text password, username null-padded?
Our samba server is running Solaris 9 and Samba 3.0.2.a . For reasons *outside the scope of this question* we are using plaintext passwords and authenticating via our NFS server. (I know this isn't a great idea, but that's not the question) With Panther, plaintext passwords worked fine. Snooping, I see the plain text password and username go through. With Tiger, we first had to apply this small fix to the client to enable plain text passwords: http://docs.info.apple.com/article.html?artnum=301580 Once this was done, snooping an smbclient connection, I see the plain text password and the username but they are null-padded. Authentication works. But when Tiger attempts to mount an smb share via the GUI, I see the password NOT null-padded and the username PADDED, and this fails. Can anyone comment on this? I realize that the sane thing to do is switch to encrypted passwords, but if we don't want to do that right now for whatever reason, are there any other suggestions? Has anyone else seen this behavior? Am I correct in calling this a Tiger bug? thanks Betsy -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Samba, OS X Tiger 10.4 plain text password, username null-padded?
On 6/15/05, Elizabeth Schwartz [EMAIL PROTECTED] wrote: Our samba server is running Solaris 9 and Samba 3.0.2.a . For reasons *outside the scope of this question* we are using plaintext passwords and authenticating via our NFS server (that should be NIS server, sorry!) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Samba, OS X Tiger 10.4 plain text password, username null-padded?
Elizabeth Schwartz wrote: Once this was done, snooping an smbclient connection, I see the plain text password and the username but they are null-padded. Authentication works. But when Tiger attempts to mount an smb share via the GUI, I see the password NOT null-padded and the username PADDED, and this fails. thanks Betsy This list deals with the samba server side. The smbmount stuff for linux is kernel code and so is dealt with on another list. But whatever Apple have done to the code you need to ask Apple. Don't expect any response though. Yours, longtime Mac user. Geoff -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Update Krb5.
On Wed, 2005-06-15 at 08:58 +0200, Meli Marco wrote: I've supposed ... I've only one Server Dell Power edge 2500 and I don't know if Fedora support RAID controller and the others cards ... Where can I have these informations? RH Enterprise release instead? For long-term installs, the RHEL or the rebuilds (White-box, CentOS etc) are a good upgrade, from what I understand. The only way to know that it will work is to test it, but assuming that testing on identical hardware is not practical in your environment, try just booting the installer. If the upgrade wants to start, and has found the partitions etc, then you would be fairly safe to assume it will work once installed as well. Your other option is of course a fresh install, and migrate your samba config across, but I know that's doubly painful. Whatever you do, keep good backups! Others may have more real-word advice, but that's how I would do it. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Kerberos enc type [xx] failed
On Wed, 2005-06-15 at 10:46 -0400, Dimitri Yioulos wrote: Ephi, I think I had the same problem once upon a time. I haven't seen your krb5.conf, but I added the following to mine in the [libdefaults] section: default_tkt_enctypes = des-cbc-crc des-cbc-md5 default_tgs_enctypes = des-cbc-crc des-cbc-md5 This is generally a bad idea. We want to use all the available enc types, not a restricted subset. I think Jerry had some further advise on this, but the jist of it was 'don't touch' :-) Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba, OS X Tiger 10.4 plain text password, username null-padded?
On 6/15/05, Geoff Scott [EMAIL PROTECTED] wrote: This list deals with the samba server side. The smbmount stuff for linux is kernel code and so is dealt with on another list. But whatever Apple have done to the code you need to ask Apple. Don't expect any response though. Er... ok. No linux in this picture though, Samba server on Solaris and OS X Tiger client. I'm wondering if this is a bug in OS X, or in Samba, and/or if anyone else has seen this and gotten Samba to work with OS X and plaintext passwords Maybe we're the last ones still using plaintext passwords thanks Betsy -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba BDC for Backup
Hiu Yen Onn wrote: Hiu Yen Onn wrote: hi, i have no experience in configure any of the BDC before. just curious to ask, if i have configured a BDC, then if any fail down of my PDC, does BDC will take turn automatically??? stupid question but, i didnt know it... sorry another question 1. I have a master ldap tree for my PDC, likewise my BDC also having a slave ldap tree, do i need to replicate the master ldap to the slave ldap? 2. How about the sid number??? does PDC sid have to be similar to the BDC sid??? what is sid? what does is working for??? dun understand... pls enlighten.. thanks.. do i need to configure a NIS master and NIS slave for my pdc, and bdc??? if not, i am wondering how can a user in pdc can be appeared to a bdc??? pls advise thanks -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Samba, OS X Tiger 10.4 plain text password, username null-padded?
Elizabeth Schwartz wrote: On 6/15/05, Geoff Scott [EMAIL PROTECTED] wrote: This list deals with the samba server side. The smbmount stuff for linux is kernel code and so is dealt with on another list. But whatever Apple have done to the code you need to ask Apple. Don't expect any response though. Er... ok. No linux in this picture though, Yep I know. My point is that this list only deals with the Samba server. Samba server on Solaris and OS X Tiger client. I'm wondering if this is a bug in OS X, or in Samba, and/or if anyone else has seen this and gotten Samba to work with OS X and plaintext passwords IIRC you said you could connect with smbclient but not with finder? Then this is a finder problem. Maybe we're the last ones still using plaintext passwords thanks Betsy And the other part of it was that you would get more help pertinent to your problem from Apple. There have been quite a few problems that people have had and asked about on this list to do with upgrading to Tiger. Apple makes quite a few changes to code that the upstream developers in many FOSS projects seem to find unuseable for the main project, and that they are not party to. Because your problem seems to stem from Tiger I am being helpful in (unhelpfully) suggesting that you ask Apple. Regards Geoff Scott -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Samba, OS X Tiger 10.4 plain text password, username null-padded?
Oh we have asked Apple, thanks! We've got an Apple engineer coming onsite tomorrow, even, and I'll report back on what he says (so far he's just asked about us using authenticated passwords) Hope this might help others, at any rate. If anyone can shed some light on how null-padding is *supposed* to work with plaintext passwords, I'd be grateful. I've googled around a bit and found some docs for NTLM and NTLM2 auth but I'm still a bit foggy about the whole thing. Probably we'll end up switching to encrypted passwords and deal with the other issues that had us using plaintext in the first place, but I *would* like to understand how this all should be working. And, if anyone else has gotten Tiger to *work* with plaintext please do let us know. thanks Betsy Betsy Schwartzemail: [EMAIL PROTECTED] Unix Systems Administrator,CRG voice: 617-495-5947 Harvard Graduate School of Design fax:617-496-5866 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] question regarding smbutil
Hello, I'm trying to use smbutil with the user/pass/host argument. I have no problem using it this way smbutil -v view //[EMAIL PROTECTED] Password: *** but if I try this way smbutil -v view //user:[EMAIL PROTECTED] it prompts me for a password when I already specific it in my command line. Am I using the right syntax? Please let me know. Thanks. Tom -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbd eating up 80+% of cpu on simple transactions :(
First, my apologies for being a samba newbie... its not that I'm new to samba, its just that it has always just worked for me and so I'm very new to trying to debug it... after having used it for 5 years. I have a new server - its a Xeon 2.8GHz. I have mounted on it a VTrak 12110 RAID system with a 1.5T partition on it. I've installed FC3 out of the box. I've configured samba pretty much as I have always configured samba on my previous RH7.3 and FC1 boxes.The problem is that requests for files are often deathly slow (from 15s to 2 minutes) and when I make such an access, I can see on top the the cpu usage for the machine goes up to over 80% - being used by an smbd process. Even when there are no requests going on, there is just a window open on the client, the associated smbd process sometime use from 16 to 40% of the cpu. NFS mounts of the same drives do not have this problem. This is being used as a file server for a WindowsXP office. Right now I only have 3 real users on this system, so its pretty light. I've seen some discussion on this list (re: Horrendously slow...). I've tried yum update to the samba 3.0.10 rpms. Now I've downloaded and installed the srpms for 3.0.14a. The behaviour is still there. I've tried to enable wins on the samba server with no change. I admit that there is a lot of reading I can do to try to further my understanding of how to figure this out... and I'm doing so. Its just that never having taken this leap before I'm struggling a bit with where to start. Does this problem sound familiar to anyone? Does anyone have some suggestions for first avenues to investigate? Incidentally - the problem could be in the RAID drive - its new and unproven. Any advice welcome - I'm pretty frustrated at the moment. I'm attaching my smb.conf file... what else can I provide? Thanks, Don # This is the main Samba configuration file. You should read the # smb.conf(5) manual page in order to understand the options listed # here. Samba has a huge number of configurable options (perhaps too # many!) most of which are not shown in this example # # Any line which starts with a ; (semi-colon) or a # (hash) # is a comment and is ignored. In this example we will use a # # for commentry and a ; for parts of the config file that you # may wish to enable # # NOTE: Whenever you modify this file you should run the command testparm # to check that you have not made any basic syntactic errors. # #=== Global Settings = [global] log level = 10 # DON #netbios aliases = fs3 workfs netbios aliases = fs3 work2fs # workgroup = NT-Domain-Name or Workgroup-Name workgroup = MYGROUP # server string is the equivalent of the NT Description field server string = Samba Server # This option is important for security. It allows you to restrict # connections to machines which are on your local network. The # following example restricts access to two C class networks and # the loopback interface. For more examples of the syntax see # the smb.conf man page ; hosts allow = 192.168.1. 192.168.2. 127. # if you want to automatically load your printer list rather # than setting them up individually then you'll need this printcap name = /etc/printcap load printers = yes # It should not be necessary to spell out the print system type unless # yours is non-standard. Currently supported print systems include: # bsd, sysv, plp, lprng, aix, hpux, qnx ; printing = cups # This option tells cups that the data has already been rasterized cups options = raw # Uncomment this if you want a guest account, you must add this to /etc/passwd # otherwise the user nobody is used ; guest account = pcguest # this tells Samba to use a separate log file for each machine # that connects log file = /var/log/samba/%m.log # all log information in one file # log file = /var/log/samba/smbd.log # Put a capping on the size of the log files (in Kb). max log size = 50 # Security mode. Most people will want user level security. See # security_level.txt for details. # Use password server option only with security = server ; password server = NT-Server-Name # Password Level allows matching of _n_ characters of the password for # all combinations of upper and lower case. ; password level = 8 ; username level = 8 # You may wish to use password encryption. Please read # ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation. # Do not enable this option unless you have read those documents ; encrypt passwords = yes ; smb passwd file = /etc/samba/smbpasswd smb passwd file = /usr/local/samba/private/smbpasswd # The following are needed to allow password changing from Windows to # update the Linux system password also. # NOTE: Use these with 'encrypt passwords' and 'smb passwd file' above. # NOTE2: You do NOT need these to allow workstations to change only #
Re: [Samba] Samba, OS X Tiger 10.4 plain text password, username null-padded?
I have instruction on how to setup Mac OSX client to authenticate to LDAP server, I can forward it to you if you like. --mark - Original Message - From: Elizabeth Schwartz [EMAIL PROTECTED] To: Geoff Scott [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Wednesday, June 15, 2005 6:02 PM Subject: Re: [Samba] Samba, OS X Tiger 10.4 plain text password,username null-padded? On 6/15/05, Geoff Scott [EMAIL PROTECTED] wrote: This list deals with the samba server side. The smbmount stuff for linux is kernel code and so is dealt with on another list. But whatever Apple have done to the code you need to ask Apple. Don't expect any response though. Er... ok. No linux in this picture though, Samba server on Solaris and OS X Tiger client. I'm wondering if this is a bug in OS X, or in Samba, and/or if anyone else has seen this and gotten Samba to work with OS X and plaintext passwords Maybe we're the last ones still using plaintext passwords thanks Betsy -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba 3 + DNS(SRV records) + Active Directory Clients
Hai , My network layout as follows Samba Server - 192.168.50.5 (255.255.255.0) My Clients are in 192.168.50.0 , 192.168.51.0 192.168.52.0 network. My win2k Clients which are in 50.0 network able to join into PDC. But clients which are in other networks couldn't join. No broadcasts allowed between the networks. In this case, what would be the best configuration to bring my win2k clients into samba PDC? My smb.conf as follows netbios name = pdc workgroup = sarav.net server string = Samba Server %v log file = /var/log/samba/log.%m max log size = 50 security = user encrypt passwords = yes smb passwd file = /etc/samba/smbpasswd socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 local master = yes os level = 65 domain master = yes preferred master = yes domain logons = yes logon script = %m.bat logon path = \\%L\Profiles\%u passdb backend = smbpasswd guest dns proxy = no [netlogon] comment = Network Logon Service path = /var/lib/samba/netlogon guest ok = yes writable = no [Profiles] path = /var/lib/samba/profiles browseable = no guest ok = yes writable = yes Please suggest me a solution for my problem. Sarav --- Robert Schetterer [EMAIL PROTECTED] wrote: Hi, having a valid working internal dns is nice to have and gives you the second chance to name resolution ( depends on configure issues ) but the prime lookup in the most times is the wins service, as its looked normally first by the win clients, and many applications i.e. old outlook versions. So configure samba as wins server or use an existing one ( win 2000 server and up ) But i guess this may not be your only problem so show us your samba conf and decribe your network layout. You will find adding info in the samba faqs and in your samba logs Regards saravanan ganapathy schrieb: Hai , I am new to samba. I have configured samba 3 as PDC and when I add win2k client into my DC, the client says 'unable to find 'mydomain' name , may be due to DNS Issue. I have also configured bind as dns server and I have the forward reverse records for 'mydomain'. I read that I need to add some SRV records for active directory clients(win2k/winxp). But I couldn't find any tips for this in the document. Can you pls help me what are all the records(srv) to be added in my dns(bind)? Sarav __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com -- Mit freundlichen Gruessen Best Regards Robert Schetterer robert_at_schetterer.org Munich / Bavaria / Germany https://www.schetterer.org \** \* gnupgp \* public key: \* https://www.schetterer.org/public.key \** begin:vcard fn:Robert Schetterer n:Schetterer;Robert adr:;;;Munich;Bavaria;;Germany email;internet:[EMAIL PROTECTED] url:https://www.schetterer.org version:2.1 end:vcard __ Discover Yahoo! Have fun online with music videos, cool games, IM and more. Check it out! http://discover.yahoo.com/online.html -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] pdbedit and profiles
I had the same issue. To resolve, I had to convert from smbpasswd to tdbsam for my passdb backend (wasn't running LDAP). This is because smbpasswd does NOT support the extended parameters you see in pdbedit. Then I was able to change the parameters. tdbsam is a better passdb backend than smbpasswd (more configurable), it just won't let you use a text editor on the file. ;-) From a post by John Terpstra ( http://lists.samba.org/archive/samba/2003-October/075558.html ): If you have your accounts in smbpasswd and you want to migrate them to tdbsam: In smb.conf: passdb backend = smbpasswd, tdbsam Execute: pdbedit -i smbpasswd -e tdbsam And so on. After migration you can delete the backend that you no longer need to use from the passdb backend parameter line. --Jonathan Johnson Dominic Iadicicco wrote: For a test I tried to do this: pdbedit -u ya-1 -p=cybserver\\netlogon It spewed out this : Unix username:ya-1 NT username: Account Flags:[U ] User SID: S-1-5-21-4008386108-3466510086-266964780-2002 Primary Group SID:S-1-5-21-4008386108-3466510086-266964780-2003 Full Name: Home Directory: HomeDir Drive: Logon Script: logon.bat Profile Path: \\cybserver\profile\ya-1 Domain: CYBRARYN Account desc: Workstations: Munged dial: Logon time: 0 Logoff time: Mon, 18 Jan 2038 22:14:07 GMT Kickoff time: Mon, 18 Jan 2038 22:14:07 GMT Password last set:Sat, 04 Jun 2005 11:29:34 GMT Password can change: Sat, 04 Jun 2005 11:29:34 GMT Password must change: Mon, 18 Jan 2038 22:14:07 GMT Last bad password : 0 Bad password count : 0 Logon hours : FF as you can see the profile path is not correct. and I check that the ya-1 user was a vaild smb user. I can log on to the domain with them and write to shares and use different domain resources. And as far as why it does show the NT username I dont know. On 6/14/05, Collen [EMAIL PROTECTED] wrote: What error do you get returned ?? (if none, boost your debug level in the conf) can samba read/write to the passwd backend? what does not work ? (coz here it does work).. Greets. Collen Dominic Iadicicco wrote: I am using the standard smbpasswd, I think thats a backend. On 6/13/05, Tom Skeren [EMAIL PROTECTED] wrote: Dominic Iadicicco wrote: That did not work. What passdb are you using? LDAP TDB? On 6/13/05, Collen [EMAIL PROTECTED] wrote: pdbedit -u username -p=server\\path Collen. Dominic Iadicicco wrote: Hello all, Could someone give me the command line to edit the profile path of a users? I have tried this with no results. pdbedit -u someuser -p server\\path There has to be better documentation. -- --Jon Johnson Sutinen Consulting, Inc. www.sutinen.com (360) 270-9317 cell -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
svn commit: samba r7604 - in branches/SAMBA_4_0/source/build/pidl: .
Author: jelmer Date: 2005-06-15 10:11:33 + (Wed, 15 Jun 2005) New Revision: 7604 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=7604 Log: Bunch of small pidl updates. Mostly removing unused functions, cleanups and more flexibility (all output options now take an optional filename). Added: branches/SAMBA_4_0/source/build/pidl/ejs.pm Removed: branches/SAMBA_4_0/source/build/pidl/esp.pm Modified: branches/SAMBA_4_0/source/build/pidl/README branches/SAMBA_4_0/source/build/pidl/ndr.pm branches/SAMBA_4_0/source/build/pidl/ndr_client.pm branches/SAMBA_4_0/source/build/pidl/ndr_header.pm branches/SAMBA_4_0/source/build/pidl/ndr_parser.pm branches/SAMBA_4_0/source/build/pidl/pidl.pl Changeset: Sorry, the patch is too large (1291 lines) to include; please use WebSVN to see it! WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=7604
