[Samba] no password share
I am trying to setup a share without a password. # more /etc/samba/smb.conf [global] restrict anonymous = no domain master = no preferred master = no netbios name = JAMES workgroup = LOCKIENET server string = Samba max protocol = NT acl compatibility = winnt ldap ssl = No server signing = Auto map to guest = Bad User guest ok = yes security = share [dropbox] case sensitive = no strict locking = no msdfs proxy = no path = /mnt/storage/Shared read only = no force user = nobody force group = users guest only = yes # smbclient -L //JAMES Password: Domain=[LOCKIENET] OS=[Unix] Server=[Samba 3.0.24] Sharename Type Comment - --- dropbox Disk IPC$IPC IPC Service (Samba) Domain=[LOCKIENET] OS=[Unix] Server=[Samba 3.0.24] Server Comment ---- JAMESSamba WorkgroupMaster ---- LOCKIENET # smbclient //JAMES/dropbox Password: Domain=[LOCKIENET] OS=[Unix] Server=[Samba 3.0.24] Server not using user level security and no password supplied. tree connect failed: NT_STATUS_BAD_NETWORK_NAME -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Can Windows client detect symlinks on Samba server?
On Thu, Feb 15, 2007 at 02:38:44PM -0800, Doal Miller wrote: > Did you ever get an answer to your question of "Can Windows client > detect symlinks on a Samba server?" I'm running into that problem and > needing to detect recursive links so I don't continue to recurse on the > same directory. No, Windows clients don't see symlinks on a Samba server. Linux clients will though (using the UNIX extensions). Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Copy On Write VFS Modul
On Tue, Feb 13, 2007 at 06:04:48PM +0100, Gunther Schlegel wrote: > Hi, > > is there a VFS Modul for Samba 3 that I can use to implement a "copy on > write" feature for a specified file? Nope, but a patch would be gratefully received :-). Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba with WINS
See section 7.3.3. http://www.oreilly.com/catalog/samba/chapter/book/ch07_03.html arjan wrote: > Hello, > > Does someone knows where i can find a toturial or a How-To about Samba with > WINS beacause i do know how to make a samba pdc server, but i don't know how > to make a samba pdc with WINS > > greetz, > > Arjan > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] URGENT! Need to move Samba to another computer
On Friday 16 February 2007 23:06, [EMAIL PROTECTED] wrote: > Since 2004, I've been running Samba 2.0.7 on a Solaris 8 computer as a > member of a Windows 2003 Server domain - nothing fancy, just mapping > Unix home directories to PC users. Now I must QUICKLY move this same > Samba config to another computer, and (for the life of me!) I can't > recall the steps necessary to "join" the domain. I've read the > associated Samba 2.0.7 doc, that references the "net" command, but it > is not a command in this set of tools. Upgrading Samba now is not an > option. smbpasswd -j -r BOXYZZY If this does not do it, check your smbpasswd command as follows: smbpasswd -? - John T. > Below are the statements from my current / working smb.conf (with bogus > IP's, etc. for security). > > I hope that someone can provide the necessary procedure. > > Thanks, in advance, for your help! > > --- > [global] >interfaces = 123.456.70.59/255.255.255.0 >allow hosts = 123.456.70. .dhcp.doodah.edu localhost >deny hosts = 0.0.0.0/0 >netbios name = BOXYUNIX >security = domain >workgroup = BOXYZZY >wins server = 123.456.70.13 >name resolve order = wins hosts bcast >dns proxy = yes >encrypt passwords = yes >password server = boxy2K3a boxy2K3b >client use spnego = no >os level = 0 >preferred master = no >local master = no >domain master = no >guest account = nobody >invalid users = root bin sys uucp nuucp daemon adm lp smtp ppp listen >dead time = 15 >log level = 1 >lpq cache time = 30 > . > . > . > > > > Check Out the new free AIM(R) Mail -- 2 GB of storage and > industry-leading spam and email virus protection. -- John H Terpstra, CTO PrimaStasys Inc. Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO & Reference Guide, 2 Ed., ISBN: 0131882228 Samba-3 by Example, 2 Ed., ISBN: 0131882221X Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: ClearCase Interop problem with recent Samba versions
On Feb 16, 2007, at 12:19 PM, Volker Lendecke wrote: On Fri, Feb 16, 2007 at 05:46:08PM +, Bill Marshall wrote: I think the Vmware Physical to Virtual converter http://www.vmware.com/products/converter/ also has problems with systems that claim to host msdfs. The wizard failed with a crazy error and there wasn't a hint until I did some network traces. Just thought if it was wise to enable dfs by default. It seems to cause quite difficult to track down grief in some situations. My experience is that "host msdfs" is OK since it just sets the capability bit. "msdfs root" can cause changes in client behaviour. We saw this in netbench testing ... I can probably dig up the traces if necessary. -- James Peach | [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Can Windows client detect symlinks on Samba server?
Did you ever get an answer to your question of "Can Windows client detect symlinks on a Samba server?" I'm running into that problem and needing to detect recursive links so I don't continue to recurse on the same directory. Thanks, Doal Miller -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Get SID on Samba 2.2.7
I need to get the SID on a Redhad 7.3 server running samba 2.2.7. The net command isn't available, does anyone know how to possibly get the SID? -Cody -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Joining Windows Domain
I am trying to join a samba 3 server to a Windows domain. Samba is configured, but when I try to join the domain using the net command net ads join -UAdministrator%password I get net: not found Is there something I'm missing? [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] hosts allow on smb.conf
Hi, I have some query about the samba security, we are trying to setup remote map drive for vpn client, since this kind of client connection which using different IP address, the only way we can do is to set 'hosts allow' to nothing. We just want to know if this change is risky or not, our samba was setup as a DC, and client computers already join to Linux Domain. The VPN protocol is using ipsec and the samba is inside the network which has Firewall protected. Kindly please advice if any comments about that. -- B.Rgds Daniel Sung Information Technology - Shipco Transport Tel : +852 2574 3188 (General Lines) Tel : +852 2574 7274 (Direct Line) Fax : +852 2573 3936 e-mail : [EMAIL PROTECTED] *** For access to STI-Online which offers on-line schedules, bookings, documentation, shipment tracking and other e-commerce tools, please visit our website, www.shipco.com *** -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] ClearCase Interop problem with recent Samba versions
Hello Volker,
attached you'll find the level 10 logs and "snoop" output as i don't have
tcpdump installed on this sun-server (if needed i could).
thanks a lot,
christian
Mailcode: NdD2sKHg
--
"I sense much NT in you, NT leads to Blue Screen.
Blue Screen leads to downtime, downtime leads to suffering. NT is the path to
the darkside."
- Unknown Unix Jedi
> -Original Message-
> From: Volker Lendecke [mailto:[EMAIL PROTECTED] On Behalf Of
> Volker Lendecke
> Sent: Wednesday, February 14, 2007 8:52 AM
> To: Masopust, Christian
> Cc: samba@lists.samba.org
> Subject: Re: [Samba] ClearCase Interop problem with recent
> Samba versions
>
> On Wed, Feb 14, 2007 at 08:20:36AM +0100, Masopust, Christian wrote:
> > I have a SUN server running as ClearCase view-server and am
> using Samba
> > for Interop. Today I updated Samba from 3.0.21c to 3.0.24 and now I
> > cannot mount/start my views from windows!!
> >
> > MVFS error log on my windows client gives "{8 pid/tid
> 4980c58/85fdf178} MvfsFsNotification: Unsupported
> filesystem type (6)"
> >
> > Samba logs don't show any error...
> >
> > Trying other Samba-version (3.0.23a|b|c) gives the same result, only
> > switching back to 3.0.21 solves this.
> >
> > Has anyone else seen this problem? And maybe solved this?
> > Anybody know what changes have been done in filesystem
> types between 3.0.21 and 3.0.23?
> >
>
> Can you please send debug level 10 logs and tcpdumps of both
> versions?
>
> If they are large, you might either send them directly to me
> or open a bug at http://bugzilla.samba.org/ and upload them
> there.
>
> Thanks,
>
> Volker
>
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Winbind missing secondary groups depending on case & distro
Please note that the result of the "id" command (or the "groups" command as well) is different if it is run by root or by the user. As root : # id david : gives only the primary groups membership As regular user : [EMAIL PROTECTED] id: gives the full membership of all "groups in groups" managed by winbind and A.D. at least under Debian (Etch + Sarge). But it seems that winbind on some occasions doesn't use the right credentials to resolve nested groups. I have to tweak security in Active Directory to gi ve additionnal "Read Permission" rights in Active Directory in order to make it work, otherwise I only get primary groups. Or it may be our active directory that is broken. Yvan Broccard Chris Smith a écrit : On Tuesday 13 February 2007, Roger Prefontaine wrote: On the Ubuntu server, "id DOMAINNAME+David", "id DOMAINNAME+david", and "id David" only list the primary group, and "id david" lists all groups. All of these combinations produce all groups on the CentOS server. winbind use default domain = Yes May not be much help but out of curiosity I tried the same test on a Samba server that is also a member of an NT4 domain. It is running 3.0.24 plus the 6 Vista patches on a Gentoo server. I don't use the "winbind use default domain = Yes" in smb.conf, but I did test that way as well. Also I didn't change the default seperator. With the "normal" setup (winbind use default domain = No): -- id DOMAINNAME\\username - shows all groups id DOMAINNAME\\USERNAME (or any permutation with a cap in the username) - only primary group id username - returns "No such user" id USERNAME (or any permutation with a cap in the username) - returns "No such user" -- If I set "winbind use default domain = Yes" then: -- id DOMAINNAME\\username - only primary group id DOMAINNAME\\USERNAME (or any permutation with a cap in the username) - only primary group id username - shows all groups id USERNAME (or any permutation with a cap in the username) - only primary group -- Chris EDITED to add the other cases (id USERNAME). -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3 PDC with Vista clients
I searched around and couldn't get a clear answer on a Samba 3 PDC and the ability to have a Vista "business edition" client: 1. Join the Samba 3 PDC domain for single sign-on. 2. Access Samba 3 PDC controlled shares I read that as of Samba 3.0.21 or so that NTLMv2 works well with Vista computers (which default to only NTLMv2) so they can work with Samba provided shares. This is great and I hope is true. I also read that Vista can be told to allow older Lan Manager protcol versions to talk to older samba setups which is great also -- but I'm thinking I won't need to worry about that as I'm running very recent Samba 3 on my PDC's. What I couldn't determine is if a Vista box could be joined to a Samba 3 controlled domain much the same way I know an XP pro box can be joined w/ the standard "change computer name" dialog in the "system" area of control panel. I realize Samba 3 does not do active directory as a primary domain controller which is fine -- I would like to make sure it's ok for someone planning to buy some windows desktops to go with Vista if they need to (due to XP possibly not being available), but want to be absolutely certain the new boxes can easily be joined to a samba controlled domain. If there's issues, then I will up the priority to get XP pro new boxes so we know they can join the domain. It's my understanding Samba 4 will do active directory as a PDC, but I'm guessing Samba 4 isn't ready for production use / development isn't done. Any info would be appreciated (success stories w/ recent releases of Samba 3 w/ Vista domain members) and I apologize if this has already been answered / discussed on the Samba mailing lists. Thank you. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Copy On Write VFS Modul
Hi, is there a VFS Modul for Samba 3 that I can use to implement a "copy on write" feature for a specified file? regards, Gunther -- Gunther Schlegel Manager IT Infrastructure . Riege Software International GmbH Fon: +49 (2159) 9148 0 Mollsfeld 10 Fax: +49 (2159) 9148 11 40670 MeerbuschWeb: www.riege.com GermanyE-Mail: [EMAIL PROTECTED] ------ Handelsregister: Managing Directors: Amtsgericht Neuss HRB-NR 4207 Johannes Riege & USt-ID-Nr.: DE120585842Gabriele Riege . YOU CARE FOR FREIGHT, WE CARE FOR YOU transport logistic - june 12-15, 2007 messe muenchen - hall c4, stand 429 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Problem with authentification Samba 3.0.24
Dear listmembers, a few weeks ago i've installed a server based on openSUSE 10.0 and Samba 3.0.20 in addition to two existing Windows 2003 servers. My aim is to replace the Windows servers in medium term. The Samba server uses Kerberos v5 to authentificate the users against the W2003-Server. The W2003-Server ist the primary domain controller, the other W2K3-server is the "backup domain controller". Samba is a domain member (via server = ADS). Nearly everthing works. But now my problem: The first connect to a samba share needs nearly 20 (!) seconds to be finished (via network places or via network drive - it's the same). If this connect is done, everything works fine. The logfiles show no(!) error or timeout or something like that. Have someone a clue, how i can disable the timeout at the first authentification? I've updated from 3.0.20 to 3.0.24, but nothing happens in that way. Other errors were fixed, but the timeout is the same. Thanks in advance for every hint. Regards, Michel -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbldap-populate - failed to add entry: modifications
hai. i have problem similiar that u have. when i use smbldap populate, it required auth...error code 471 provide pass for root and it says user root doesnt exist please help me -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Problem to create directories
Hi all, I have a problem with samba : I can create files, but can't create directories. The server has many shares, on seperated disks. We consider two of them : one 2Tb share and one share with more than 7Tb. Samba configuration is good, and works on many other servers, and on this one except for the large share. Permissions are correctly setted up too. I can read/write files and directories on the first one, on the 2Tb one. I can read/write files, and read directories on the large one, but can't write directories. I get theses messages on the log (with level = 5) : [2007/02/12 11:13:47, 3] smbd/process.c:switch_message(914) switch message SMBntcreateX (pid 16684) conn 0x83f6d20 [2007/02/12 11:13:47, 4] smbd/uid.c:change_to_user(176) change_to_user: Skipping user change - already user [2007/02/12 11:13:47, 5] smbd/filename.c:unix_convert(108) unix_convert called on file "ctrl1/volc1/Nouveau dossier (2)" [2007/02/12 11:13:47, 5] smbd/filename.c:unix_convert(185) unix_convert begin: name = ctrl1/volc1/Nouveau dossier (2), dirpath = ctrl1/volc1, start = Nouveau dossier (2) [2007/02/12 11:13:47, 5] smbd/filename.c:unix_convert(335) New file Nouveau dossier (2) [2007/02/12 11:13:47, 5] smbd/msdfs.c:is_msdfs_link(269) is_msdfs_link: ctrl1/volc1/Nouveau dossier (2) does not exist. [2007/02/12 11:13:47, 3] smbd/msdfs.c:dfs_redirect(435) dfs_redirect: Not redirecting srv-storage-6.mwprod.local/store/ctrl1/volc1/Nouveau dossier (2). [2007/02/12 11:13:47, 3] smbd/msdfs.c:dfs_redirect(439) dfs_redirect: Path converted to non-dfs path ctrl1/volc1/Nouveau dossier (2) [2007/02/12 11:13:47, 5] smbd/filename.c:unix_convert(108) unix_convert called on file "ctrl1/volc1/Nouveau dossier (2)" [2007/02/12 11:13:47, 5] smbd/filename.c:unix_convert(185) unix_convert begin: name = ctrl1/volc1/Nouveau dossier (2), dirpath = ctrl1/volc1, start = Nouveau dossier (2) [2007/02/12 11:13:47, 5] smbd/filename.c:unix_convert(335) New file Nouveau dossier (2) [2007/02/12 11:13:47, 5] smbd/open.c:open_directory(1866) open_directory: opening directory ctrl1/volc1/Nouveau dossier (2), access_mask = 0x11, share_access = 0x3 create_options = 0x1, create_disposition = 0x2 [2007/02/12 11:13:47, 3] smbd/dosmode.c:unix_mode(147) unix_mode(ctrl1/volc1/Nouveau dossier (2)) returning 0775 [2007/02/12 11:13:47, 2] smbd/open.c:open_directory(1936) open_directory: unable to create ctrl1/volc1/Nouveau dossier (2). Error was Aucun espace disponible sur le périphérique [2007/02/12 11:13:47, 3] smbd/error.c:unix_error_packet(90) unix_error_packet: error string = Aucun espace disponible sur le périphérique [2007/02/12 11:13:47, 3] smbd/error.c:error_packet(146) error packet at smbd/trans2.c(2682) cmd=162 (SMBntcreateX) NT_STATUS_DISK_FULL It returns me an error saying my disk is full, but it's an empty one ! And I can create files and filled them with data without a such error. (I also try with 777 rights permissions on root directory where I want to create a new one, with and without the sticky bit). As directory creation and write works on other shares with same config, I don't understand why I can't on this one ... Is samba limited in share's size ? Or do you have any other idea for solving this issue ? Thanks for your answers. Antoine ROCHER -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] wins server name resolution fails
Hello together! I have an problem with the wins server, based on a Gentoo distribution with Samba 3.0.24. The problem is following: After an restart of samba everything works fine, but after an undefined time period its not possible to make an nmblookup for some other computers. The samba server is also configured as wins server. an cut from the smb.conf: .. domain master = Yes local master = yes preferred master = Yes os level = 255 wins support = yes #name resolve order = lmhosts wins hosts bcast name resolve order = lmhosts wins dns proxy = yes . Here the effect: smbsrv # nmblookup -U 192.168.1.10 -R 'fileserver' querying fileserver on 192.168.1.10 192.168.1.20 fileserver<00> smbsrv # nmblookup -U 192.168.1.10 -R 'vmware' querying vmware on 192.168.1.10 192.168.1.15 vmware<00> ... But later the same questions at the same server aren't successful: smbsrv # nmblookup -U 192.168.1.10 -R 'fileserver' querying fileserver on 192.168.1.10 name_query failed to find name fileserver smbsrv # nmblookup -U 192.168.1.10 -R 'vmware' querying vmware on 192.168.1.10 name_query failed to find name vmware First question: Why can't find the wins-server some other servers after an time period? Second question: Why does samba don't make an dns lookup after mnblookup was failed? Here some interesting facts about the log.nmbd: DNS successfull: wins_process_name_query: name query for name FILESERVER<00> from IP 192.168.1.10 [2007/02/09 01:35:06, 3] nmbd/nmbd_winsserver.c:wins_process_name_query_request(1956) wins_process_name_query: name query for name FILESERVER<00> not found - doing dns lookup. [2007/02/09 01:35:06, 3] nmbd/asyncdns.c:queue_dns_query(310) added DNS query for FILESERVER<00> [2007/02/09 01:35:06, 3] nmbd/asyncdns.c:add_dns_result(43) add_dns_result: DNS gave answer for FILESERVER of 192.168.1.20 [2007/02/09 01:35:06, 3] nmbd/nmbd_namelistdb.c:add_name_to_subnet(247) add_name_to_subnet: Added netbios name FILESERVER<00> with first IP 192.168.1.20 ttl=7200 nb_flags= 4 to subnet WINS_SERVER_SUBNET [2007/02/09 01:35:06, 3] nmbd/asyncdns.c:run_dns_queue(227) DNS calling send_wins_name_query_response but later: [2007/02/09 09:13:38, 3] nmbd/nmbd_winsserver.c:wins_process_name_query_request(1892) wins_process_name_query: name query for name FILESERVER<00> from IP 192.168.1.10 [2007/02/09 09:13:38, 3] nmbd/nmbd_winsserver.c:wins_process_name_query_request(1956) wins_process_name_query: name query for name FILESERVER<00> not found - doing dns lookup. [2007/02/09 09:13:38, 3] nmbd/asyncdns.c:queue_dns_query(310) added DNS query for FILESERVER<00> [2007/02/09 09:13:40, 3] nmbd/nmbd_winsserver.c:wins_process_name_query_request(1892) wins_process_name_query: name query for name FILESERVER<00> from IP 192.168.1.10 [2007/02/09 09:13:40, 3] nmbd/nmbd_winsserver.c:wins_process_name_query_request(1956) wins_process_name_query: name query for name FILESERVER<00> not found - doing dns lookup. [2007/02/09 09:13:40, 3] nmbd/asyncdns.c:queue_dns_query(310) added DNS query for FILESERVER<00> It seems that he don't find the entry for FILESERVER in the database. Thanks a lot for an answer or an helpful idea about this problem. Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC appears to be BDC in server manager
On 2/11/07, Martin Brook <[EMAIL PROTECTED]> wrote: 1. I'm still getting 'access denied' when I try to add/remove machines in Server Manager, or modify user accounts in User Manager. Think I've fixed this. I didn't have everything set up correctly with regard to the root and Administrator accounts. Sorry, being a bit of a newb. Martin -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] The Samba 3 Network speed too slow
On Saturday 10 February 2007 05:14, Srini wrote: > On 2/8/07, Felipe Augusto van de Wiel <[EMAIL PROTECTED]> wrote: > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SHA1 > > > > ... snipped ... > > > > But when I transfer Windows to Samba > > > > > The speed only 150Mbits. > > > And sometime will low spped to 70~80Mbits. > > > Is it Samba limited? > > > > It shouldn't. > > > > > Or how to fix it? > > > > You probably would need to check 'socket options'. > > We have a similar problem sometimes. What should be the ideal value for > 'socket options' in Samba v3.x? > > Thanks > > Srini Remove it completely. Sockey options should not be needed with Linux kernels 2.4 or layter. Check out your networking hardware - NICs, HUBs, Switches and cables - the quality of these have a significant impact on network performance. Also, use 'ethtool' to verify that your NICs are operating at the maximum speed. - John T. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] krb5.conf "kpasswd protocol = SET_CHANGE"
Hello, I would like to know when do we need to specify "kpasswd protocol = SET_CHANGE" in krb5.com in the [realms] section when talking to windows AD domain. I usually don't use it and it works fine BUT I recently needed to use it since "net ads join ..." hanged during the last part of join domain process when it tries to use kpasswd protocol. The AD was windows2000. >From my understanding, kpasswd_protocol can be set to SET_CHANGE or RPCSEC_GSS. Is it safe to always use SET_CHANGE in krb5.conf? what kind of AD GPO or setting in the AD controls that? Any info regarding it will be highly appreciated. Cheers, Ephi -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Howto setup printing with Windows XP Clients, Cups and samba..
Hello! Honestly I still use the "printer admin" smb.conf parameter. It is deprecated, but I need only one user or group to administrate the spooler. If you'd send me a level 10 debug and your smb.conf I'd look at it on monday, since I've no DC at home. Unfortunatly the "access denied" error is a kind of "default-error message" e.g. a failed "add printer command" would also cause this error. Only hint I could give for now, is to check the unix-permissions not only the print$ share but the W32X86 and the W32X86\3 directory. If your files are successfully copied and than the error occurs, samba is probably not able to move the files from the W32X86 (the upload directory) to the "\3" directory. Regards, ~ Martin schönfeld / in-medias-res.com wrote: Hi, okay. With your help I'm a step further, but the problem itself persists. In fact something must have gone wrong, when i added PrintOP privileges to the admin user, cause it didn't have the flags I've added. Now the Admin User does have the necessary privileges: majestix-linux:~# net -U Administrator rpc rights list Administrator [2007/02/09 11:28:30, 0] param/loadparm.c:map_parameter(2698) Unknown parameter encountered: "privileges" [2007/02/09 11:28:30, 0] param/loadparm.c:lp_do_parameter(3428) Ignoring unknown parameter "privileges" Password: SeMachineAccountPrivilege SeTakeOwnershipPrivilege SeRemoteShutdownPrivilege SePrintOperatorPrivilege SeAddUsersPrivilege SeDiskOperatorPrivilege The user is in the right group to be a Domain Admin. SID of the Domain Admins group is correct. Writing to the print$ share is possible. What else could be the problem? Patrick [...] 1st Check your permissions : Enter on your windows client: Start->Run-> \\\print$ (Note the $) You should see at least the W32X86 folder you previously created in the driver section of your Samba server. Try to add a new folder - or (if exists) change into W32X86\3 and create a file (or folder) *from your windows client*. If this fails - you have a permission problem and have to solve it first. 2nd Install your driver: - Enter on your windows client: Start->Run-> \\ - Change into the "Printers and Faxes" folder - Right click -> Server Properties - Middle tab "Drivers" - Click "Add" and follow the instructions 3rd Assign your driver: - In the "printers and faxes" folder right-click on a printer - Select Properties - Tab "Advanced" - Select the driver from the drop down box - Ok Your done. Most problems with permissions will be caused because of the unix rights of your driver directories. You could try to "chmod 0777" them all "e.g. /var/drivers /var/driver/W32X86 ..." Hope that helps, Martin -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba with pam_ldap authentication
Hi everybody, We have a Fedora Core 1 samba server and would like to authenticate it to an LDAP server using PAM. I installed nss_ldap, configured /etc/ldap.conf to match my settings and /etc/nsswitch.conf to use ldap. My /etc/pam.d/samba is like this : #%PAM-1.0 auth required pam_nologin.so authsufficient /lib/security/pam_ldap.so use_first_pass authrequired/lib/security/pam_unix_auth.so account sufficient /lib/security/pam_ldap.so account required/lib/security/pam_unix_acct.so passwordsufficient /lib/security/pam_ldap.so passwordrequired/lib/security/pam_unix_passwd.so use_first_pass md5 shadow session required/lib/security/pam_unix_session.so When I connect to samba using smbclient, I always get the following error : tree connect failed: NT_STATUS_WRONG_PASSWORD But I can see using tcpdump that ldap request on my username and ldap reply are correct. Also when I use a local samba account I can access my share just fine. Does anybody met this problem already ? Or can anyone tell me how to put pam into debug mode so that I can narrow the problem ? Right now a connection attempt doesn't create any log entry :-( Thanks Bastien -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] sambaSamAccount and posixAccount cohabitation
Hi all,
I'm new on this list and I'm french, so my english could be worst !;)
My question is about sambaSamAccount and posixAccount objectClasses.
I want the user "test" be mapped to user root (uid=0, gid=0) when logged
into pam over ldap mechanism (such as ssh)
And I want the same user "test" be mapped to user test (uid=1003,
gid=513) when logged to Samba server.
The user test looks like :
userPassword={SHA}...
sambaNTPassword=219AF2CFBB1146232E95BB289D4B4907
sambaPrimaryGroupSID=S-1-5-21-3332956327-150401671-1105301019-513
...*
gidNumber=513
uidNumber=1003*
uid=syvo
objectClass=top
objectClass=person
objectClass=organizationalPerson
objectClass=inetOrgPerson
objectClass=posixAccount
objectClass=sambaSamAccount
cn=syvo
Is it possible to map this user to root when it's logging to unix and
map this same user to gid=513,uid=1003 when it's logging to samba ?
Without making a second account...
Maybe the solution is on the smb.conf file; maybe I can force this user
to be mapped to gid=513,uid=1003 when it logs to Samba ? or, on the
opposite, maybe I can force user gid=513,uid=1003 to be mapped to root
(gid=0,uid=0) when it logs to unix mechanism ?
I hope i'm on the right list for this question and I hope my english is
sufficient to understand my query,
Thanks in advance :)
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba with WINS
Hello, Does someone knows where i can find a toturial or a How-To about Samba with WINS beacause i do know how to make a samba pdc server, but i don't know how to make a samba pdc with WINS greetz, Arjan -- View this message in context: http://www.nabble.com/Samba-with-WINS-tf3199625.html#a8883492 Sent from the Samba - General mailing list archive at Nabble.com. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Vista can't use samba hosted printer drivers
Hi, > Is anyone else seeing Vista (final) will not "connect" to > a samba-hosted printer? I'm getting error 0x0057 We have seen slightly different behaviour with point and print on a Windows Vista Home Basic Laptop. Older printers such as HP 4050 series laserjet and HP LaserJet 1200 install and print correctly. Newer printers such as the Kyocera FS-C5016N colour laser and FS-1118MFP multi-function laser give the 0x0057 error. I remember that these Kyocera drivers would not install on XP as a non-administrator user. This could be overcome by installing as administrator [which installed the driver] and then clicking on the printer on the samba server as an ordinary user. Alternatively changing XP group policy by disabling "Users can only Point and Print to machines in their Forest" also allowed ordinary users to install the printers from scratch. Doug -- |--| | Dr Doug Chappell | | Information Technology Officer, Computer Support | | School of Molecular and Microbial Biosciences| | The University of Sydney, 2006 NSW AUSTRALIA | | [EMAIL PROTECTED] | |--| | Phone: 61 2 9351 2505 | Fax: 61 2 9351 4726| |61 2 9351 2499 | | |--| -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba Single Folder everyone can access
Hello everyone, I am fairly new to Samba. I have it installed and with SWAT. I have successfully added a couple test unix accounts and a couple test samba accounts. I can successfully connect to the samba file server via Windows ONLY when my Windows username is the same as the test unix/samba account name and I must supply a password. What I want is to have a PUBLIC account/folder on the SAMBA server of which ANYONE, regardless of Windows user account name, to connect to, WITH a single generic password. So basically whether someone plugs into our network with Windows name "BOB" and someone with Windows name "SUSAN" they can both connect to the public folder on the server and push in the correct password. Can someone help me or point me in the right direction for this? Thank you! -- View this message in context: http://www.nabble.com/Samba-Single-Folder-everyone-can-access-tf3196835.html#a8876877 Sent from the Samba - General mailing list archive at Nabble.com. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Connection from WinXP 64 Bit to Samba server broken?
hi andreas, i just can tell you that we migrated from debian (samba 3.0.14 orig debian) to SLES10 (samba 3.0.22 orig novell) last weekend to make winxp64 work with our samba DCs. before that you could join the domain but not authenticate. i know that almost all of your samba versions are >3.0.20 which contain the fix for 64bit. we use "security = domain" w/out specifying a password server on our member servers (SLES9/ SLES10). which versions are your DCs running? can you connect to the IPC$ share of any DC? can you login to winxp64 on the domain? micha Andreas Haumer wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi! One of our users upgraded her Windows client from Windows XP 32 Bit to windows XP 64 bit and can not connect to any samba server in the network since, with one exception: there is one server, running samba-3.0.20b, which works. With other servers, running various samba versions up to samba-3.0.23c, the Windows client can not connect anymore (there are about 10 samba servers in the network) Windows just says "can not access" and "the request is not supported" (this is a rough translation, the original messages are in german) In the samba logfiles I see the following error (example logs from server "CDROMSRV" at aaa.bbb.ccc.27): [...] [2007/02/02 15:00:32, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(660) Doing spnego session setup [2007/02/02 15:00:32, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(691) NativeOS=[Windows XP 3790 Service Pack 1] NativeLanMan=[] PrimaryDomain=[Windows XP 5.2] [2007/02/02 15:00:32, 3] smbd/sesssetup.c:reply_spnego_negotiate(551) Got OID 1 3 6 1 4 1 311 2 2 10 [2007/02/02 15:00:32, 3] smbd/sesssetup.c:reply_spnego_negotiate(554) Got secblob of size 40 [2007/02/02 15:00:32, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(63) Got NTLMSSP neg_flags=0xe2088297 [2007/02/02 15:00:32, 3] lib/util_sock.c:open_socket_out(874) Connecting to aaa.bbb.ccc.1 at port 445 [2007/02/02 15:00:32, 3] auth/auth_server.c:server_cryptkey(75) connected to password server SRVL12 [2007/02/02 15:00:32, 3] auth/auth_server.c:server_cryptkey(100) got session [2007/02/02 15:00:32, 3] auth/auth_server.c:server_cryptkey(133) password server OK [2007/02/02 15:00:32, 3] auth/auth_server.c:auth_get_challenge_server(183) using password server validation [2007/02/02 15:00:32, 3] smbd/process.c:timeout_processing(1359) timeout_processing: End of file from client (client has disconnected). [2007/02/02 15:00:32, 3] smbd/sec_ctx.c:set_sec_ctx(241) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2007/02/02 15:00:32, 3] smbd/connection.c:yield_connection(69) Yielding connection to [2007/02/02 15:00:32, 3] smbd/server.c:exit_server_common(675) Server exit (normal exit) This looks like the client just closes the connection before it even authenticates. This is consistent with the network traffic dump I took (the client in question has address aaa.bbb.ccc.125): [...] 112.287218 aaa.bbb.ccc.125aaa.bbb.ccc.27 TCP jvserver > netbios-ssn [SYN] Seq=0 Len=0 MSS=1460 112.287241 aaa.bbb.ccc.27 aaa.bbb.ccc.125TCP netbios-ssn > jvserver [SYN, ACK] Seq=0 Ack=1 Win=5840 Len=0 MSS=1460 112.287346 aaa.bbb.ccc.125aaa.bbb.ccc.27 NBSS Session request, to CDROMSRV<20> from PCI1HAG<00> 112.287362 aaa.bbb.ccc.27 aaa.bbb.ccc.125TCP netbios-ssn > jvserver [ACK] Seq=1 Ack=73 Win=5840 Len=0 112.305943 aaa.bbb.ccc.27 aaa.bbb.ccc.125NBSS Positive session response 112.306197 aaa.bbb.ccc.125aaa.bbb.ccc.27 SMB Negotiate Protocol Request 112.307402 aaa.bbb.ccc.27 aaa.bbb.ccc.125SMB Negotiate Protocol Response 112.307753 aaa.bbb.ccc.125aaa.bbb.ccc.27 SMB Session Setup AndX Request, NTLMSSP_NEGOTIATE 112.324275 aaa.bbb.ccc.27 aaa.bbb.ccc.125SMB Session Setup AndX Response, NTLMSSP_CHALLENGE, Error: STATUS_MORE_PROCESSING_REQUIRED 112.325025 aaa.bbb.ccc.125aaa.bbb.ccc.27 SMB Session Setup AndX Request, NTLMSSP_NEGOTIATE 112.339736 aaa.bbb.ccc.27 aaa.bbb.ccc.125SMB Session Setup AndX Response, NTLMSSP_CHALLENGE, Error: STATUS_MORE_PROCESSING_REQUIRED 112.340073 aaa.bbb.ccc.125aaa.bbb.ccc.27 TCP jvserver > netbios-ssn [FIN, ACK] Seq=678 Ack=716 Win=63797 Len=0 112.341426 aaa.bbb.ccc.27 aaa.bbb.ccc.125TCP netbios-ssn > jvserver [FIN, ACK] Seq=716 Ack=679 Win=8576 Len=0 112.341539 aaa.bbb.ccc.125aaa.bbb.ccc.27 TCP jvserver > netbios-ssn [ACK] Seq=679 Ack=717 Win=63797 Len=0 [...] Before the upgrade to WinXP 64 bit, the client had no problems to connect to any of the samba servers in the network. Also all other (about 100) windows clients (running WinXP and Win2K, all 32 Bit) do not show any problems with any samba server. The one server which still works with the 64Bit WinXP wor
Re: [Samba] Samba members in NT4.0 to AD upgrade
hi, i never did this (so far), but: > 1. Are there any gotchas with this scenario or will > the Samba clients > just keep working as NT4-esque clients. if you use mixed-mode (incl. PDC emulator) you should be able to continue running samba with security = domain > 2. Is it possible to "upgrade" a Samba member server > to be an Active > Directory client whilst retaining the user entries for > file shares etc. > (i.e. so the SIDs still match). a member server does not contain a SID-backend. do you mean SID2UID-mappings? which IDMAP backend do you use? may be you can post your results after you migrated successfully?!?! micha Leon Stringer wrote: Hi, I've got an NT4.0 domain that I'm planning to upgrade to Active Directory. I've got a couple of Samba member servers in the domain, various versions above 3.0. So I have two questions: 1. Are there any gotchas with this scenario or will the Samba clients just keep working as NT4-esque clients. 2. Is it possible to "upgrade" a Samba member server to be an Active Directory client whilst retaining the user entries for file shares etc. (i.e. so the SIDs still match). Thanks in advance for any help, Leon... ___ Now you can scan emails quickly with a reading pane. Get the new Yahoo! Mail. http://uk.docs.yahoo.com/nowyoucan.html -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Connection dropped when copying large files to a SambaServer
hi, just to tell you that we had the same issue 2 years ago and my colleague blamed samba for this. in fact it turned out to be a SCSI HW problem on the system. all stress test on the local storage succeeded but when samba came into the game it broke the system. that's why we thought it's related to samba, which wasn't true... micha Michelle Dupuis wrote: Not hijacking the thread here...just adding more info as I have the same issue. I run Samba 3.0.23c (on FC6 64 bit), and am backing up from a Windows box to my Samba share. Sometimes it works great; other times the samba share locks up (I need to restart the smb service); and last week samba caused a kernel panic. I can sometimes get 65GB onto the share before it locks up. I can backup to the share using NFS (using Windows Services for Unix) without issue, but not to Samba. My relevant smb.conf settings are: reset on zero vc = yes read raw = yes socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 Strangely, smb logs NO errors! Trying to browse to the share from any windows client times out. But, after an smb restart everything is fine again. -MD- -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Felipe Augusto van de Wiel Sent: Monday, February 05, 2007 9:05 AM To: samba@lists.samba.org Subject: Re: [Samba] Connection dropped when copying large files to a SambaServer -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 01/30/2007 02:44 PM, mactek - Manuel Teixeira wrote: Hi all I have a CentOS 4.4 Kernel 2.6.9-11.EL Samba (smbd -V) 3.0.10-1.4E.9 As a side note, you _really_ should install a newer version of Samba, the last stable release is 3.0.23d. I've been using this server as a small file server recently i needed to do a backup (ntbackup to file) and the backup fails randomly, the largest backup file i managed was about 3GBytes I tried copying large files and randomly the connection is lost I tried with a ping at the same time and the replies don't get interrupted so it seems to me it is a samba issue I have the latest versions (except the kernel) or so the updater tells me If you are talking about samba then, no, definetely you don't have the latest version. Could you please post your smb.conf so the list can take a look at it? Good tips would include to check the oplocks and the socket options. thanks all Manuel Teixeira Kind regards, - -- Felipe Augusto van de Wiel <[EMAIL PROTECTED]> Coordenadoria de Tecnologia da Informação (CTI) - SEDU/PARANACIDADE http://www.paranacidade.org.br/ Phone: (+55 41 3350 3300) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFxzl6Cj65ZxU4gPQRAiyiAJ9yLZrnR2fPG4Dk5Km3ATVEIgnw+ACgphJk LhmgDczhEI+NjnEJzmozc2g= =lgWl -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] application 'allway sync' evades sticky bit?!
hi, it's not the first time i see this. especially macs always manage to circumvent the permissions (even if enforced by the filesystem with ACLs)...i never found the time to trace things down with ethereal. micha Rainer Traut wrote: Hi, am running: Redhat EL4.4 i386, Samba 3.0.23d from Sernet, ext3 fs Samba as PDC Someone's got the idea to have one big share with access managed by directory's sticky bit. This works perfectly well when normal XP or W2k clients work with their explorer. But: With 'allway sync', an app to synchronize for example between laptop and fileserver the program is somehow able to circumvent the sticky bit settings. A file created locally on the notebook and synced to the server hast the wrong group rights: # ls -la insgesamt 2116 drwxrws--- 2 cmueller sales4096 5. Feb 15:14 . drwxrws--- 25 root sales4096 5. Feb 15:14 .. -rw-rw 1 cmueller awaromgmt 2151561 24. Jan 12:07 SCN_20070122100735_001.pdf # id cmueller uid=2(cmueller) gid=1001(awaromgmt) Gruppen=1001(awaromgmt),1000(awaro),1004(sales) The sticky bit is set but the file belongs to the user's primary group! A file created in Explorer is fine though... How is this possible? Thx Rainer -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Domains Trusts
hi, as these users are from different domains and with different SIDs you can distinguish between them. on your fileservers use "winbind use default domain = no" and an IDMAP backend which supports SID-to-UID-mappings for trusted domains, too (e.g. idmap_ldap in case you have many fileservers). micha Charles Whipple wrote: Greetings Can someone explain cross domain authentication? I have two trusted domains. Several users have the same user name on either domain. Are these mapped as the same user? Is there a mechanism to differentiate? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] bdc ?
hi > I'm afraid that will try to change their password too ;-) clients will never attempt to change a password against BDCs either they're forwarded or the change will fail. micha Dmitry Melekhov wrote: Hello! I configured samba BDC according to howto. PDC is in the same subnet. But I see that windows ( at least 2003 servers from the same subnet) sometimes connects to BDC to retrieve info about users. Now I use smbpasswd and machine accounts are in passwd. I'm afraid that will try to change their password too ;-) Could somebody explain me why windows behavoir? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Announcement Sernet Samba 3.0.24 packages
Hallo, Björn, Du (bjacke) meintest am 08.02.07: > With a little delay, here's the announcement for out 3.0.24 packages. > English version below. > Samba 3.0.24 ist soeben veröffentlicht worden. RPM-Pakete für diverse > SUSE und RedHat-Versionen sowie für Debian GNU/Linux können von > http://ftp.sernet.de/pub/samba/ > heruntergeladen werden. Pakete für S390 folgen in Kürze. Slackware: ftp://ftp.gwdg.de/pub/linux/slackware/slackware-11.0/patches/packages/samba-3.0.24-i486-1_slack11.0.tgz and many other mirrors Viele Gruesse! Helmut -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] MS Vista Home
Tim Boneko wrote: Dennis McLeod schrieb: My understaning is that only Vista Business, Vista Enterprise or Vista Ultimate can join domains. That's right. Joining a domain is considered a professional feature, so you have to pay even more for this. Let's see when the limitations for the "lower" versions are broken - i'm just glad i don't run windows. timbo I guess the new Aero UI is a professional feature too. The Vista box says it is only included on everything above home. I'm glad I don't run Windows 99% of the time. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] dropbox for guests
I am using the same box to run Samba and run the smbclient. I am trying to setup a directory on my Linux box that Windows users can put files in (overwrite too). I want them to do it as guest and not have to login. The share shows up: # smbclient -L //JAMES Password: Domain=[JAMES] OS=[Unix] Server=[Samba 3.0.24] Sharename Type Comment - --- dropbox Disk IPC$IPC IPC Service (Samba) Domain=[JAMES] OS=[Unix] Server=[Samba 3.0.24] Server Comment ---- WorkgroupMaster ---- LOCKIENETJAMES # smbclient //JAMES/dropbox Password: Domain=[JAMES] OS=[Unix] Server=[Samba 3.0.24] Connection to J___ failed # smbclient //JAMES/dropbox Password: Domain=[JAMES] OS=[Unix] Server=[Samba 3.0.24] Connection to q%n_ failed # smbclient //JAMES/dropbox Password: Domain=[JAMES] OS=[Unix] Server=[Samba 3.0.24] Connection to @__ failed -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] 3.0.24 smbclient and printer listing
I'm using 3.0.24 with patches from http://us4.samba.org/samba/patches/. On my XP client the print services for Unix are installed, I shared the local printer named 'jet' on the XP client to all users and the connecting user is an existing user on linux (system and samba user) and XP. I cannot execute the dir command in smbclient for this printer: deveis # smbclient -Utb%password //192.168.0.15/jet Domain=[TB3] OS=[Windows 5.1] Server=[Windows 2000 LAN Manager] smb: \> dir NT_STATUS_ACCESS_DENIED listing \* 0 blocks of size 0. 9 blocks available smb: \> q Here a try with a local smb printer queue on the linux host: deveis # smbclient -Utb%password //192.168.0.14/remoteljet Domain=[TOMMAIK] OS=[Unix] Server=[Samba 3.0.24-for-eisfair-3] smb: \> dir . D0 Sun Feb 18 23:43:34 2007 .. DR0 Sun Feb 18 23:20:24 2007 38234 blocks of size 262144. 21005 blocks available smb: \> q I mean this was functional in older samba versions... der tom -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: ClearCase Interop problem with recent Samba versions
Volker Lendecke schrieb: > On Fri, Feb 16, 2007 at 05:46:08PM +, Bill Marshall wrote: > > I think the Vmware Physical to Virtual converter > > http://www.vmware.com/products/converter/ also has problems with systems > > that > > claim to host msdfs. The wizard failed with a crazy error and there wasn't a > > hint until I did some network traces. > > Just thought if it was wise to enable dfs by default. It > seems to cause quite difficult to track down grief in some > situations. > > Comments on taking it back? I had major problems with differnet smbclient versions after updating our file server to samba 3.0.23 last summer. There's still an open bug report about that. I think nobody ever looked at it... https://bugzilla.samba.org/show_bug.cgi?id=3972 Ralf -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Windows cannot add samba domain
newsgroup schrieb: > But when I try to add the domain to the > windows machine it fails and says "the specified domain either doesn't > exist or could not be contacted". I take it you add the computer to the domain, not vice versa. A [netlogon] share might help. If it still doesn't work, mail some output from the samba logs. Hth, timbo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Authentication incompatibility?
Jon Foster schrieb: > What would cause the password exchange to fail between two different > version of Samba? Its almost as if the encryption algorithm has changed. Does it work with the SuSE samba? If so, you might find the compilation options SuSE used to build samba (package docs). Maybe you were missing some encryption algorithm when compiling. timbo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Access Denied using Server Netbios Name
> Using Ubuntu 6.06.1, Samba 3.0.22, VMWare on Win2003 server. > I can connect using with admin user and ip address, but using > admin and netbios name prompts for password and results in access > denied. WINS is enabled in Samba config. > Does Vmware or Ubuntu introduce weird problems or is something else > going on? Of course not. > Running the net stat command results in error 5 trying to resolve netbios > name. Have you checked to logs to see if it says anything when you try to connect? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Fwd: Re: [Samba] Samba 3.0.24 + OpenLDAP
Hello, I did it from the same side on a suse 9.3. For me it worked with smpldap-useradd -m . But I had to recognize that some of the steps descriped there did not work on suse and I had to change different things in my ldap.conf and with pam and nss. Did yoe set smbpasswd -w yorldappassword and smbpasswd -a root perhaps you must have a usermap in smbusers root=administrator or just a net rpc grant all rights to root or grant all rights to the group "Domain Admins". See the official howto of the samba package for this greetings daniel Original-Nachricht Datum: Sat, 17 Feb 2007 22:19:04 +0100 Von: Tim Boneko <[EMAIL PROTECTED]> An: samba@lists.samba.org CC: Betreff: Re: [Samba] Samba 3.0.24 + OpenLDAP [EMAIL PROTECTED] schrieb: > # Adding a User (doesn't work) > smbldap-useradd -a -s /bin/false -c'Test User' -A 1 -N'Test User' test_user I configured my domain by the howto on this website: www.samba-ldap.de Adding users works perfectly without creating a unix account beforehand. It's offline right now, so i can't check if there's an english version of it. Good luck! timbo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- Ist Ihr Browser Vista-kompatibel? Jetzt die neuesten Browser-Versionen downloaden: http://www.gmx.net/de/go/browser -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Windows Vista roaming profiles "access denied"forcedlocalprofile (samba PDC), but Windows XP OK
Aha. You were right, I misinterpreted. Users did not have write access to the top-level profiles directory, only to their own share. I manually created a .V2 sub-directory in the profiles directory and the access denied error went away. There is now another problem, which is that although the user is allowed to log in and a profile is created, the profile is not copied to the server at logoff. I have confirmed that in the advanced settings (control panel) the profile is marked as roaming, but no files appear in the profile folder (.v2 or the original) on the server after logoff. No errors are recorded in the system log. Again, Windows XP profiles are working fine. Any suggestions appreciated. M. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Windows cannot add samba domain
I have set up a samba (3.0.22) as PDC on Suse and can actually login into the linux machine from windows (My Network Places) and sambstatus shows me as an active user. But when I try to add the domain to the windows machine it fails and says "the specified domain either doesn't exist or could not be contacted". I even shut down the firewall on linux and windows just in case but it's no use. Does the presence of another domain have anything to do with the problem? By the way it takes quite a long time before windows detects the new domain and lists it in My Network Places. I know it's a classic problem but still cannot find any answer in groups or google. Any help is greatly appreciated! [global] workgroup = MYGRP printing = cups printcap name = cups printing cache time = 750 cups options = raw map to guest = Bad user include = /etc/samba/dhcp.conf logon path = \\%L\profiles\.msprofile logon home = \\%L\%U\.9xprofile logon drive = P: add machine script = /usr/bin/useradd -c Machines -d /var/lib/nobody -s /bin/false %m$ domain logons = yes domain master = yes local master = yes os level = 65 pssdb backend = smbpasswd preferred master = yes security = user win server = no win support = yes [homes] comment = Home Directories valid users = %S, %D%w%S browsable = no read only = no inherit acls = yes [profiles] comment = Network Profiles Service path = %H read only = no store dos attributes = yes create mask = 0600 directory mask = 0700 [users] comment = All users path = /home read only = no inherit acls = yes veto files = /aquota.user/groups/shares/ [groups] comment = All groups path = /home/groups read only = no inherit acls = yes [printers] comment = All Printers path = /var/tmp printable = yes create mask = 0600 browsable = No [prints$] comment = Printers Drivers path = /var/lib/samba/drivers write list = @netadmin root force group = netadmin create mask = 0664 directory mask = 0775 [prints$] comment = Printers Logon Service path = /var/lib/samba/netlogon write list = root -- newsgroup [EMAIL PROTECTED] -- http://www.fastmail.fm - Same, same, but different -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Windows Vista roaming profiles "access denied"forcedlocalprofile (samba PDC), but Windows XP OK
Sorry I should be clear, Windows is refusing to create or load profiles from this share during login. Users have full access to the directory once logged in with a temporary profile. M. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Elliot Mackenzie Sent: 18 February 2007 09:51 To: Matt Skerritt Cc: samba@lists.samba.org Subject: RE: [Samba] Windows Vista roaming profiles "access denied"forcedlocalprofile (samba PDC), but Windows XP OK Users can create, delete, modify both directories and files in the profile share for each user respectively. Windows is refusing to create or load them from this share. M. From: Matt Skerritt [mailto:[EMAIL PROTECTED] Sent: 18 February 2007 07:51 To: Elliot Mackenzie Cc: samba@lists.samba.org Subject: Re: [Samba] Windows Vista roaming profiles "access denied" forcedlocalprofile (samba PDC), but Windows XP OK Haven't had a look at the log file yet, but are your machines able to make new files on the profiles share? ... Vista when I tested it a month or so back made a new profile directory for vista in the profiles share called .V2 (So any user that logged onto vista had two roaming profiles - one for vista and one for XP). Hope that helps you a bit. On 17/02/2007, at 10:32 PM, Elliot Mackenzie wrote: Urgh. The log file is here: www.adixein.com/smbdlog.tar.gz. M. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Elliot Mackenzie Sent: 17 February 2007 11:25 To: samba@lists.samba.org Subject: RE: [Samba] Windows Vista roaming profiles "access denied" forcedlocalprofile (samba PDC), but Windows XP OK Second part of the log. M. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- Matt Skerritt [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Windows Vista roaming profiles "access denied" forcedlocalprofile (samba PDC), but Windows XP OK
Users can create, delete, modify both directories and files in the profile share for each user respectively. Windows is refusing to create or load them from this share. M. From: Matt Skerritt [mailto:[EMAIL PROTECTED] Sent: 18 February 2007 07:51 To: Elliot Mackenzie Cc: samba@lists.samba.org Subject: Re: [Samba] Windows Vista roaming profiles "access denied" forcedlocalprofile (samba PDC), but Windows XP OK Haven't had a look at the log file yet, but are your machines able to make new files on the profiles share? ... Vista when I tested it a month or so back made a new profile directory for vista in the profiles share called .V2 (So any user that logged onto vista had two roaming profiles - one for vista and one for XP). Hope that helps you a bit. On 17/02/2007, at 10:32 PM, Elliot Mackenzie wrote: Urgh. The log file is here: www.adixein.com/smbdlog.tar.gz. M. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Elliot Mackenzie Sent: 17 February 2007 11:25 To: samba@lists.samba.org Subject: RE: [Samba] Windows Vista roaming profiles "access denied" forcedlocalprofile (samba PDC), but Windows XP OK Second part of the log. M. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- Matt Skerritt [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
