I've been playing with joining RHEL4 (CentOS) machines to a Win2k3
Active Directory.
I've got everything pretty well squared away, except that the linux box
never seems to see changes to users' group memberships. For example, I
created a user, testuser, who initially just a member of Domain
Hello,
I have an existing Active Directory domain with a couple hundred
users. I am trying to setup our Linux (Gentoo specifically) servers
to allow seamless login integration at the console, via ssh and
possibly using smbmount.
I think I've got it pretty close, but seem to be missing
On Fri, 2007-21-09 at 00:30 +0200, Philipp Wagner wrote:
Hello,
I got a Samba setup with an samba server being part of a Windows Domain,
which is working great. I can authenticate using all domain users and so
on without any problem.
Now I added a local group named rai-additional to my
Hello,
I got a Samba setup with an samba server being part of a Windows Domain,
which is working great. I can authenticate using all domain users and so
on without any problem.
Now I added a local group named rai-additional to my samba system and
added a domain user to that group (using
, 0]
utils/net_ads.c:ads_startup(191)
Sep 12 10:10:03 gw net: ads_connect: Client not found in Kerberos database
Anyone know this error ?
Message du 11/09/07 17:19
De : Angelina Paunovic [EMAIL PROTECTED]
A : [EMAIL PROTECTED]
Copie à :
Objet : Re: [Samba] Winbind Join AD 2003
, 0] utils/net_ads.c:ads_startup(289)
ads_connect: Connexion refusée
[2007/09/10 21:09:32, 2] utils/net.c:main(988)
return code = -1
[EMAIL PROTECTED] etc]#
Anyone know this problems ? i run on Mandriva with Samba-winbind 3.0.23d
Thanks for your help
Olivier
--
To unsubscribe from this list
[EMAIL PROTECTED]
A : [EMAIL PROTECTED]
Copie à :
Objet : Re: [Samba] Winbind Join AD 2003 failled, why ?
this looks like beeing a missing /etc/hosts entry. take a look if your
machine name and ip adress are mapped somewhere (LinuxSrv to X.X.X.X).
this happens because your broadcast
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
[EMAIL PROTECTED] wrote:
Hi
thanks for your answer, i have add my server into /etc/hosts and
/etc/samba/lmhost but no change:
[2007/09/10 22:34:09, 3] libsmb/namequery.c:get_dc_list(1426)
get_dc_list: preferred server list: , *
Quoting hagai yaffe [EMAIL PROTECTED]:
obviously 3.0.14a 1.2.7 is broken
1.2.7 is so old, I'm amazed that it haven't self-destructed automatically
already!
I doubt you will find ANY software that works with this version. Upgrade.
--
Why can't programmers tell the difference between
Hello,
I am working on RHEL 3 update 4. The Kerberos version that comes with the OS
is 1.2.7. I have installed samba 3.0.14a and encountered multiple winbind
crashes.
I have done some debugging and found the cause, samba function
ads_cleanup_expired_creds calls Kerberos function
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Daniel L. Miller wrote:
I've been having a miserable time trying to get Winbind working. All of
the literature I've found seems to indicate it just works - which I'd
love - but it hasn't gone that way for me. Because I'm already using
LDAP, it
I've been having a miserable time trying to get Winbind working. All of
the literature I've found seems to indicate it just works - which I'd
love - but it hasn't gone that way for me. Because I'm already using
LDAP, it seemed to make sense to use the LDAP support for Winbind. But
Winbind
Hi,
I finally was able to to get samba/winbind to
authenticate off W2k3 Active Directory. I seen a lot
of info on the web on how to do this but I never seem
to have one site that got me through it all. Anyway,
with all the info I gathered I was able to put it all
together, get it working
Hello All
got a nasty problem that has reared its head this morning.
Windows 2003 ADS controller.
Samba 3.022
Ubuntu 6.06LTS
getent passwd returns users but not all of them.
I am missing a couple of hundred.
Also if i add a new user they do not appear in getent. however they
all show in in
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Simon Chappell wrote:
Hello All
got a nasty problem that has reared its head this morning.
Windows 2003 ADS controller.
Samba 3.022
Ubuntu 6.06LTS
getent passwd returns users but not all of them.
I am missing a couple of hundred.
Also if
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ed,
# time wbinfo -U 100
S-1-22-1-100
real0m0.047s
user0m0.014s
sys 0m0.007s
# time wbinfo -U 1001
S-1-22-1-1001
real5m35.097s
user0m0.015s
sys 0m0.011s
Stop nscd if it is running. There are some problems in
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Frederic,
I'd like to have more information about the winbind offline logon.
Could I for example use pam_winbind on a linux system (domain member)
for ssh, this works fine (the PDC is samba also). What I understood is
that if I stop my PDC, I
Hi
I have PDC on samba 3.0.10 with LDAP (OpenDirectory on MacOSX). I need
configure fileserver(both NFS and SMB) in domain(samba 3.0.25a on Solaris)
Server get NSS information from LDAP(OpenDirectory) and winbind get UIDs from
NSS: idmap backend = nss
Users authentication works fine. Users can
I have winbind up and running and changed all of my users from the Windows
2003 server to the SAMBA server over the weekend, and no-one noticed.
I have run into a problem with force user, and it may just be my
understanding of how the paramter works. Following is my configuration
for the share.
Hi,
I'm testing out Samba 3.0.25c with Active Directory using the rid
idmap backend. In certain cases there seems to be a repeatable
deadlock in winbind.
I have a local user ed created with uid 100 and no user exists with
uid 1001. Here's the behavior I'm seeing with wbinfo:
# time wbinfo -U
OK I'm running on a Dell 1950 supporting Ubuntu LTS 6.0.1. I've tried to
set up the Kerberos/ADS/Samba installation with the Ubuntu server as a
member server on a 2003 ADS Domain.
Kerberos v5
Samba v 3.0.22
Originally, I would have been writing to find out why my samba shares are
Thank you. This worked wonderfully.
Jay
You probably need to remove the winbindd_idmap.tdb file and restart
winbindd. Be advised this will delete all current mappings so any
files with those UID/GID's may get different owners. The other more
complicated option is to run tdbtool on the file
On 8/23/07, Kevin Gutch [EMAIL PROTECTED] wrote:
I am trying to set up Samba joining Active Directory. I have done this
successfully before and have most of my previous files.
Here is the issue I am seeing.
I can kinit [EMAIL PROTECTED]
I cannot net ads join -U administrator
I get thus
You probably need to remove the winbindd_idmap.tdb file and restart
winbindd. Be advised this will delete all current mappings so any
files with those UID/GID's may get different owners. The other more
complicated option is to run tdbtool on the file and only delete the
bad mappings.
If you
With only a Samba PDC, with everything defined in LDAP, is there any
requirement for Winbind?
--
Daniel
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
On 8/24/07, Daniel L. Miller [EMAIL PROTECTED] wrote:
With only a Samba PDC, with everything defined in LDAP, is there any
requirement for Winbind?
We have never used it in our samba PDC/LDAP environment however with
this setup the security dialog of windows does not correctly list the
groups
On Friday 24 August 2007, Daniel L. Miller wrote:
With only a Samba PDC, with everything defined in LDAP, is there any
requirement for Winbind?
I think the only reason to use it in this case (or even with a different
passdb backend - any time when you are not authenticating against a Windows
: Thursday, August 23, 2007 7:42:40 PM
Subject: [Samba] winbind uid problem
I have installed winbind and it is working, but I need to change the
uid/gid being used by winbind since I am running into some conflicts with
UIDs.
UID 10071 is being used by my spamfilter and winbindd is also mapping one
I have a machine with a running samba 3.0.24 with winbind.
After an update to 3.0.25c I couldn't connect from win clients.
So I first tried to rejoin and got some errors about trust account problems -
sorry didn't save them.
Then I deletet the account the tried a fresh join from the machine:
I have installed winbind and it is working, but I need to change the
uid/gid being used by winbind since I am running into some conflicts with
UIDs.
UID 10071 is being used by my spamfilter and winbindd is also mapping one
of the user IDs from the W2K3 server to 10071.
In an attempt to change
I found what may be the key to this whole thing. our domain
administrators decided to through a switch in Group policy that limited
communication to ntlmv2 only. we've had a a whole lot of admins
scratching thier heads as to how to fix it. I think I have it squared
away now.
the fix was to
Hi,
I am trying to set up Samba joining Active Directory. I have done this
successfully before and have most of my previous files.
Here is the issue I am seeing.
I can kinit [EMAIL PROTECTED]
I cannot net ads join -U administrator
I get thus message: Failed to join domain: Invalid
Greetings list,
I have a member server in a w2k3 AD domain that has been happily spinning
for a couple of years. As of yesterday morning, we've been having some
issues with it. I've had it configured correctly, and haven't touched it.
I'll provide the configs if needed.
I've kept it updated as
Hello,
I'd like to have more information about the winbind offline logon.
Could I for example use pam_winbind on a linux system (domain member)
for ssh, this works fine (the PDC is samba also). What I understood is
that if I stop my PDC, I should still be able to connect with ssh as it
uses
Hi, Jerry!
On Wed, Aug 15, 2007 at 03:41:54PM -0500, Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Wilkinson, Alex wrote:
In the Oreilly Using Samba book pg 292 it is recommended
to turn off Winbindd(8) user and group enumeration (very
expensive
On Fri, Aug 17, 2007 at 03:39:33AM +0200, Timur I. Bakeyev wrote:
BUGS
The getgrouplist() function uses the routines based on getgrent(3). If
the invoking program uses any of these routines, the group structure will
be overwritten in the call to getgrouplist().
If getgrouplist really
Hi all,
In the Oreilly Using Samba book pg 292 it is recommended to turn off
Winbindd(8) user and group enumeration (very expensive operation). However, when
doing this on FreeBSD -CURRENT the groups that users are in are not recognised.
When I enable user and group enumeration group permissions
Hi,
I have winbind joined to a Win2003 AD domain with rid idmap backend.
Almost everything's working. wbinfo -u and -g work fine, as does
getent passwd and getent group. I can also getent by ID number. The
only thing I can't do is getent by name, which is preventing logins:
[EMAIL
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
David Croft wrote:
[0]: getpwnam david.croft
could not find domain entry for domain DAVID.CROFT
winbind separator =
I bet it's this line. Remove that.
cheers, jerry
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Wilkinson, Alex wrote:
Hi all,
In the Oreilly Using Samba book pg 292 it is recommended
to turn off Winbindd(8) user and group enumeration (very
expensive operation). However, when doing this on
FreeBSD -CURRENT the groups that users are in
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
David Croft wrote:
Thanks, actually in smb.conf it was
winbind separator = \
That's the default so don't define it in smb.conf
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla -
Thanks, actually in smb.conf it was
winbind separator = \
Changing it to \\ works. testparm now whinges ERROR: the 'winbind
separator' parameter must be a single character, but everything works
all the same!
Regards,
David
On 15/08/07, Gerald (Jerry) Carter [EMAIL PROTECTED] wrote:
This is the second attempt at sending this. Apologies for any duplicates.
I've got Winbind up and running to authenticate our users against our AD
and to save kerberos tickets. I have used the winbind refresh tickets =
yes setting expecting this to renew these kerberos tickets before they
On Fri, Aug 10, 2007 at 02:23:37PM -0400, Mark Campbell wrote:
When I do a getent passwd I get the results for /etc/passwd and nothing
from AD.
That's planned. See winbind enum users / winbind enum
groups.
When I auth to the samba server the permissions set based on groups do
not work.
0n Fri, Aug 10, 2007 at 02:23:37PM -0400, Mark Campbell wrote:
when I run wbinfo -u or -g it returns users and groups from AD.
When I do a getent passwd I get the results for /etc/passwd and nothing
from AD.
When I auth to the samba server the permissions set based on groups do
I have a Solaris 10 box running samba. I have it joined to a windows
2003 domain. I can authenticate to the samba server. However I am not
getting group informaiton.
I have in nsswith.conf I have
passwd: files winbind
group: files winbind
winbindd is running
libnss_windbind.so
Hi Mark,
Is nscd running? If so, stop it and try again.
Please post a sanitized smb.conf if this was not the problem.
Joshua M. Miller - RHCE, VCP
Ditree Consulting
http://ditree.com/
Mark Campbell wrote:
I have a Solaris 10 box running samba. I have it joined to a windows
2003 domain.
Oops! I meant ls -l not ls -s
it looks like I typed ls -n instead of ls -l
From: Stang, Sharol
Sent: Wednesday, August 08, 2007 3:52 PM
To: 'samba@lists.samba.org'
Subject: home dir file permissions samba, winbind with ldap backend, AD
Server 2003 R2 domain
I have samba 3.0.23 running as a clustered service on RHEL5 and I am
wondering if it is okay that when I check the file permissions on the
home directories they are numerical even if I reset the permissions.
They stay in the long listing format until I restart the service and
when I check again it
Have just upgraded from 3.0.14a to 3.0.25b.
On starting winbindd it puts the following in /var/log/messages:
initialize_winbindd_cache: clearing cache and re-creating with version number
1
All the winbind UID/GID mappings are lost and it starts again from
scratch. Hence all file ownership
Hi,
after rebooting the server last weekend, we're still getting the same error
messages from winbind.
Jul 24 13:10:01 cvk027 winbindd[20648]: [2007/07/24 13:10:01, 0]
lib/util_str.c: safe_strcpy_fn(659)
Jul 24 13:10:01 cvk027 winbindd[20648]: ERROR: string overflow by 1 (256 -
255) in
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Simon Ashford wrote:
Have just upgraded from 3.0.14a to 3.0.25b.
On starting winbindd it puts the following in /var/log/messages:
initialize_winbindd_cache: clearing cache and re-creating with version
number 1
All the winbind UID/GID
I suspect you are using Ubuntu (and/or Debian), which have a bug
regarding the Winbind cache.
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/118977
On Tue, 2007-07-24 at 11:24 +0100, Simon Ashford wrote:
Have just upgraded from 3.0.14a to 3.0.25b.
On starting winbindd it puts the
Volker Lendecke schrieb:
On Wed, Jul 11, 2007 at 06:16:12PM +0200, Ralf Gross wrote:
[2007/07/11 18:06:02, 0] nsswitch/winbindd.c:request_len_recv(555)
request_len_recv: Invalid request size received: 1848
Update /lib/libnss_winbind.so with the version you just
compiled and reboot.
Ralf Gross schrieb:
One thing I also noticed with the ubuntu package: the groupnames are
only numbers. I
[EMAIL PROTECTED]:~$ /opt/samba32/bin/wbinfo -r ralfgro
2003
2004
2005
2006
2007
2008
2009
[...]
I obviously screwed the nsswitch.conf. After correcting this, I get
the group
Ralf Gross schrieb:
Now after executing 'id -a' I got a panic:
[2007/07/12 10:28:28, 3] nsswitch/winbindd_group.c:winbindd_getgrgid(886)
[ 6998]: getgrgid 2054
[2007/07/12 10:28:38, 0] libsmb/clientgen.c:cli_receive_smb_internal(136)
Receiving SMB: Server stopped responding
[2007/07/12
Hello Ralf,
could you please for debugging this raise your log level to 10
(and possibly set max log size to 0 to prevent rotation of
log files).
For the stack trace to be more meaningful, it would also be good
to have samba compiled with CFLAGS=-g (debugging symbols) and
without optimizations
Michael Adam schrieb:
could you please for debugging this raise your log level to 10
(and possibly set max log size to 0 to prevent rotation of
log files).
For the stack trace to be more meaningful, it would also be good
to have samba compiled with CFLAGS=-g (debugging symbols) and
Then, at least, can lookups for 'username' return matches for 'DOM
\username'? This would make it act more windows-like, anyways, where the
user can login using 'username', unless it conflicts with a local user.
On Fri, 2007-07-06 at 15:50 -0500, Gerald (Jerry) Carter wrote:
-BEGIN PGP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jerome Haltom wrote:
Then, at least, can lookups for 'username' return matches for 'DOM
\username'? This would make it act more windows-like, anyways, where the
user can login using 'username', unless it conflicts with a local user.
Please read
I have. This doesn't work. If I set it to yes, then looks ups for 'DOM
\user' resolve to 'user'. I want everything to resolve to 'DOM\user'.
Even lookups for 'user'.
If I set it to no, then lookups for 'DOM\user' resolve to 'DOM\user',
but lookups for 'user' do not match at all. 'user' should
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jerome Haltom wrote:
I have. This doesn't work. If I set it to yes, then looks ups for 'DOM
\user' resolve to 'user'. I want everything to resolve to 'DOM\user'.
Even lookups for 'user'.
Ahh.. my bad. I misread the original report. What you want
Michael Adam schrieb:
Assuming you have a web proxy, you can try rsync with setting
the environment variable RSYNC_PROXY to $proxy_ip:$proxy_port
(like export RSYNC_PROXY=192.168.0.1:3128 in bash).
Proxy only allows port 80 and 443, 873 is blocked.
On Mi, Jul 11, 2007 at 10:45:00 +0200, Ralf Gross wrote:
Ok, I thought there is a way to use svn+http to get the files.
Yes, svn supports svn co http://...;
But the server has to support that transport too.
I think this is not supported on svnanon.samba.org currently,
have to check.
I was
On Tuesday 10 July 2007 6:03 pm, Michael Bann wrote:
After copying over the lock files and the secrets.tdb file, I get a new
error. (I attempted to reinstall Samba and did not copy those files over
before.)
I removed the computer name...
[2007/07/10 16:51:31, 0] smbd/server.c:main(986)
Michael Adam schrieb:
I was able to get it at home and put it on a cd :)
Great!
In the meantime I compiled 3.2, but I've some problems with the
machine account. I joined the domain with the ubuntu package some
weeks ago (my desktop) and installed samba 3.2 to /opt. I tried to
copy the old
Ralf Gross schrieb:
I am interested to hear how the new version performs in your setup!
This might take some more days but I'll give feedback!
Ok, I was able to rejoin the domain.
On host wu7e003:
/opt/samba32# bin/wbinfo -t
checking the trust secret via RPC calls succeeded
/opt/samba32#
On Wed, Jul 11, 2007 at 06:16:12PM +0200, Ralf Gross wrote:
[2007/07/11 18:06:02, 0] nsswitch/winbindd.c:request_len_recv(555)
request_len_recv: Invalid request size received: 1848
Update /lib/libnss_winbind.so with the version you just
compiled and reboot.
Volker
pgp1LGHcYlhv9.pgp
In case anyone was following along, I've solved the problem. I'm not
sure what technically did it, but I upgraded Samba from 3.0.25a to
3.0.25b. Also, I used the net command that came with the package
(bin/net) which I apparently wasn't using before (doing a which net
command).
After that I
Volker Lendecke schrieb:
On Wed, Jul 11, 2007 at 06:16:12PM +0200, Ralf Gross wrote:
[2007/07/11 18:06:02, 0] nsswitch/winbindd.c:request_len_recv(555)
request_len_recv: Invalid request size received: 1848
Update /lib/libnss_winbind.so with the version you just
compiled and reboot.
I
Folks,
I am setting up a server to use cups printing and samba to communicate
with windows. Samba appeared to be working for a little while and then
for some reason stopped working. Looking at the log files I see the
following:
[2007/07/10 12:49:16, 0] smbd/server.c:main(986)
standard
Hi all:
We have an existing AD domain with about 500 windows systems in it.
Our AD domain, EECS.AD.WSU.EDU, is different than our DNS domain:
eecs.wsu.edu. We do have the DNS mappings for AD set up properly
(actually, the domain controllers manage them), and all windows -
windows stuff works
After entering the command I get the following:
Version 3.0.10-1.4E.12.2
Roberto Lizana wrote:
what is your version of winbind??? (type winbindd --version in console).
--
To unsubscribe from this list go to the following URL and read the
instructions:
Hi,
a few months ago I tried to setup samba + winbind (debian etch,
amd64, samba 3.0.24). I followed the howto and got the authentication
running. But I had not much success with winbind. I disabled the
user/group enumeration, but this didn't change it. A simple 'ls -l' in
a directory with 10-20
Jim Kusznir schrieb:
We have an existing AD domain with about 500 windows systems in it.
Our AD domain, EECS.AD.WSU.EDU, is different than our DNS domain:
eecs.wsu.edu. We do have the DNS mappings for AD set up properly
(actually, the domain controllers manage them), and all windows -
, you could compare the
runtime of ls -l to that of ls -ln: The latter should be
much faster!
Cheers, Michael
On Di, Jul 10, 2007 at 10:08:00 +0200, Ralf Gross wrote:
Hi,
a few months ago I tried to setup samba + winbind (debian etch,
amd64, samba 3.0.24). I followed the howto and got
Michael Adam schrieb:
I assume that you are using security = ads and I assume that
your AD setup has groups with lots of members?
Yes, that's right.
This is a known problem then that has been fixed in current
samba (SAMBA_3_2 as of today): The ads version of the function
On Tue, 2007-07-10 at 23:33 +0200, Ralf Gross wrote:
I can't reach http://svnweb.samba.org/. Is there another way to get
the 3_2 release by svn/http?
Use http://viewcvs.samba.org
I will correct the howto.
--
Simo Sorce
Samba Team GPL Compliance Officer
email: [EMAIL PROTECTED]
After copying over the lock files and the secrets.tdb file, I get a new
error. (I attempted to reinstall Samba and did not copy those files over
before.)
I removed the computer name...
[2007/07/10 16:51:31, 0] smbd/server.c:main(986)
standard input is not a socket, assuming -D option
On Di, Jul 10, 2007 at 11:33:24 +0200, Ralf Gross wrote:
Michael Adam schrieb:
I assume that you are using security = ads and I assume that
your AD setup has groups with lots of members?
Yes, that's right.
There is no way to improve the performance significantly with
3.0.24
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jerome Haltom wrote:
I would like to have winbind map all of my AD users to their full
[EMAIL PROTECTED] form on the Linux domain members. I'd like lookups to be
properly canonical. Is this possible?
No. But I go have a patch pending that does
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jerome Haltom wrote:
I have a domain member system which has domain users. For instance, ISI
\jhaltom. This user is a member of a local group admin, by virtue of
being in the /etc/group file on the line for admin. If I log into the
user (using
Would it be much work to add some sort of format string policy to
smb.conf to govern this mapping?
winbind user name = [EMAIL PROTECTED]
winbind group name = [EMAIL PROTECTED]
This would ideally allow lookups for all of the various possibilities to
resolve to the single canonical name.
On Fri,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jerome Haltom wrote:
Would it be much work to add some sort of format string policy to
smb.conf to govern this mapping?
winbind user name = [EMAIL PROTECTED]
winbind group name = [EMAIL PROTECTED]
This would ideally allow lookups for all of
On Fri, 2007-07-06 at 14:40 -0500, Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jerome Haltom wrote:
Would it be much work to add some sort of format string policy to
smb.conf to govern this mapping?
winbind user name = [EMAIL PROTECTED]
winbind group
Okay, I agree then. There are a set of standard ways of representing a
user name on a domain. There is 'NT\username', there is
'[EMAIL PROTECTED]'. And there is 'username'.
Is it so bad to think that [EMAIL PROTECTED] should be desired? I desire it
because I have non-Windows related things that
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jerome Haltom wrote:
Okay, I agree then. There are a set of standard ways of representing a
user name on a domain. There is 'NT\username', there is
'[EMAIL PROTECTED]'. And there is 'username'.
Is it so bad to think that [EMAIL PROTECTED] should
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gerald (Jerry) Carter wrote:
Nope. You haven't looked at how much trouble this would
be in the code. For example, Lookupsid() *always* returns
the sAMAcountName but LookupName() will resolve a UPN to
the same SID.
So The conversion is
I have sat the parameter in smb.conf:
winbind rpc only = Yes
Testparm says:
Unknown parameter encountered: winbind rpc only
Ignoring unknown parameter winbind rpc only
The man-page for smb.conf do document it. Is that wrong?
Samba 3.0.25b.
--
Thorkil Olesen,
Hanstholm, Denmark.
--
To
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Thorkil,
I have sat the parameter in smb.conf:
winbind rpc only = Yes
Testparm says:
Unknown parameter encountered: winbind rpc only
Ignoring unknown parameter winbind rpc only
The man-page for smb.conf do document it. Is
that wrong?
Hello,
I have set up winbind to authenticate linux pc's to a windows 2003 AD.
The authentication works, but the performance is not good (takes over 5 minutes)
PRELIMINARY
---
OS: ubuntu 7.04
Samba: 3.0.24
AD: windows 2003
ANALYSIS
-
After analyzing the log.winbindd file in log
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
SERGEYS Filip wrote:
3) Per group list all members of that group - BOTTLENECK
[2007/06/25 17:18:02, 10] nsswitch/winbindd_cache.c:lookup_groupmem(1665)
lookup_groupmem: [Cached] - doing backend query for info for domain
[2007/06/25
--- Jerome Haltom [EMAIL PROTECTED] wrote:
I'm having the hardest time trying to come up with the optimal
configuration with NSS Winbind support. I want it to work right
offline.
That is, name lookups shouldn't take 30 minutes to time out or lock
the
system up. And if the name lookup is for
I have installed Samba (from Binary) 3.0.25a on AIX 5.3
I'm trying to configure Winbind
I believe I need to copy winbind file to /usr/lib/security and modify
usr/lib/security/methods.cfg with ;-
add WINBIND:
programs=/usr/lib/security/WINBIND.
nmbd, smbd and winbindd all running
Original message
Date: Fri, 15 Jun 2007 23:23:03 +0100
From: Info [EMAIL PROTECTED]
Subject: [Samba] winbind AIX
To: samba@lists.samba.org
I have installed Samba (from Binary) 3.0.25a on AIX 5.3
I'm trying to configure Winbind
I believe I need to copy winbind file to /usr/lib/security
Hello,
I am using samba 3.14a on RedHat es3.
About every day the winbind panics.
this is the winbind log:
ads_try_connect: trying ldap server '11.9.13.235' port 389
[2007/06/13 06:59:26.581501, 3, pid=18850] libads/ldap.c:ads_connect(285)
Connected to LDAP server 11.9.13.235
[2007/06/13
I'm having the hardest time trying to come up with the optimal
configuration with NSS Winbind support. I want it to work right offline.
That is, name lookups shouldn't take 30 minutes to time out or lock the
system up. And if the name lookup is for a local name, I want Winbind to
be 100% out of
On Thu, 2007-06-14 at 19:18 -0500, Jerome Haltom wrote:
I'm having the hardest time trying to come up with the optimal
configuration with NSS Winbind support. I want it to work right offline.
That is, name lookups shouldn't take 30 minutes to time out or lock the
system up. And if the name
Hi!
I'm not sure if this is the right place for winbind related questions,
but i did not find any WB related mailing lists.
I have a minor problem with my winbind setup. I'm using winbind+samba to
authenticate users from my win2k3 PDC, and everything works fine. Only
problem is, whenever a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gregorics Tamás wrote:
I know this happens because in my pam configuration pam_winbind is front
of pam_unix, but is there a way to eliminate these entries? (i guess if
i replace the order pam_unix will be the one creating the same lines for
my
901 - 1000 of 2426 matches
Mail list logo
