Re: [Samba] Questions about PDC with SAMBA
Hallo, Marcelo, Du meintest am 12.02.09: > I have 8 subnets: > 192.168.100.x/24 > 192.168.150.y/24 > 192.168.200.z/16 > etc ... The third net includes the first two. Viele Gruesse! Helmut -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Long printer name in CUPS not appear in Samba
Hi I have a Samba 3.2.7 acting as a PDC for files and printers sharing. All the print configuration is ok and network printers shared by Samba and managed by CUPS are working. Except that if I put a printer name longer than 15 characters in CUPS , it is not seen at all in samba . With less that 15 chars, it is ok, but since this is also the name that appears as the share , it could not be very practical for endusers . Is this 15 chars limit a normal behavior ? Is there a way to bypass it ? Thanks in advance Regards Henri -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] vfs objects
2009/2/7 Clinton Mills : > When I rename skel_transparent.c to mytest.c and add > > vfs objects = mytest > Make sure that, in your init_samba_module function, you are setting the right vfs name in your call to smb_register_vfs. (i.e., make sure it's not still registering itself as skel_transparent.) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] passwd program error causes misleading windows error message
I have samba setup to use an external password change command using: [global] ... unix password sync = Yes ldap password sync = No passwd program = /path/to/smbldap-passwd -u %u passwd chat = *New*password* %n\n *Retype*new*password* %n\n I use the Idealx smbldap-passwd command to update my LDAP database and everything works fine. I decided to modify the smbldap-passwd script to check for bad passwords. I used CPAN's Data::Password module to do this. However I have one issue with this, if the user enters a bad password I have the script return an exit code of 10 (because that's what the Idealx script does in other places to indicate an error) but when the end user changes their windows password with CTRL-ALT-DELETE -> Change Password it works fine if the password validates okay, but if it fails validation windows returns with a very misleading "you do not have permission to change your password". I did some experimentation to see if changing the exit code in the smbldap-passwd script had any effect, but it doesn't seem to. Is there some way to get windows to return a more reasonable error message when this script fails? Or does someone else have a better way of accomplishing this same goal? -- James Holmes RTDS Technologies Inc. (204) 989-9706 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Questions about PDC with SAMBA
On Thu, Feb 12, 2009 at 10:04 PM, Marcelo Opazo Vivallos wrote: > Hi! > > I have 8 subnets: > 192.168.100.x/24 > 192.168.150.y/24 > 192.168.200.z/16 > etc ... > > Install a Primary Domain Controller (PDC), so that > users to perform authentication on the domain with its mounting > remote disks, among others. The network is correctly configured, > that is, the teams are perfectly by "ping" and the open > ports between the networks see no problems. > > Notes: > - I disabled the multicast UDP in the route > - Add the lines in the smb.conf: > - Hosts allow = 192.168.100. 192.168.150. 192.168.200. [..] > The others go right, because as I said it all works > this, but only for the subnet. > - Customers and resolve the server name netbios (wins OK) > > However, I encountered only heard the PDC requests only > on its subnet (192.168.200.z). > > * Questions: > - Why if the machines are visible between them they are not able to > hear the requests to the PDC? > - Is there another method instead of putting 8 samba servers in each subnet? > > > Reggard > Marcelo Opazo Vivallos > Chile > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > Hi Marcelo, I'm not sure if it's a mistake, but I don't think your subnetting scheme will work with the /16 overlapping /24s. Ari Constancio -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Questions about PDC with SAMBA
Marcelo Opazo Vivallos: Hi! I have 8 subnets: 192.168.100.x/24 192.168.150.y/24 192.168.200.z/16 etc ... Install a Primary Domain Controller (PDC), so that users to perform authentication on the domain with its mounting remote disks, among others. The network is correctly configured, that is, the teams are perfectly by "ping" and the open ports between the networks see no problems. Notes: - I disabled the multicast UDP in the route - Add the lines in the smb.conf: - Hosts allow = 192.168.100. 192.168.150. 192.168.200. [..] The others go right, because as I said it all works this, but only for the subnet. - Customers and resolve the server name netbios (wins OK) However, I encountered only heard the PDC requests only on its subnet (192.168.200.z). * Questions: - Why if the machines are visible between them they are not able to hear the requests to the PDC? - Is there another method instead of putting 8 samba servers in each subnet? Reggard Marcelo Opazo Vivallos Chile Hi. Try to use LMHOSTS file on Windows clients. We had problems when clients in some routed subnets can not reach the PDC sometimes even though the WINS was configured OK - and this helped us. We are using this batch file on Windows: echo 192.168.x.y PDC_NAME #PRE #DOM:DOMAIN > %systemroot%\system32\drivers\etc\lmhosts echo 192.168.x.y "DOMAIN \0x1b" #PRE >> %systemroot%\system32\drivers\etc\lmhosts nbtstat -R Replace PDC_NAME with netbions name of your PDC and DOMAIN with your domain name and 192.168.x.y with IP of the PDC. Length of record on the second line must be kept at 16 characters. Vlastimil Setka -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Questions about PDC with SAMBA
Hi! I have 8 subnets: 192.168.100.x/24 192.168.150.y/24 192.168.200.z/16 etc ... Install a Primary Domain Controller (PDC), so that users to perform authentication on the domain with its mounting remote disks, among others. The network is correctly configured, that is, the teams are perfectly by "ping" and the open ports between the networks see no problems. Notes: - I disabled the multicast UDP in the route - Add the lines in the smb.conf: - Hosts allow = 192.168.100. 192.168.150. 192.168.200. [..] The others go right, because as I said it all works this, but only for the subnet. - Customers and resolve the server name netbios (wins OK) However, I encountered only heard the PDC requests only on its subnet (192.168.200.z). * Questions: - Why if the machines are visible between them they are not able to hear the requests to the PDC? - Is there another method instead of putting 8 samba servers in each subnet? Reggard Marcelo Opazo Vivallos Chile -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba and Windows Server 2008 64bit
On Thu, Feb 12, 2009 at 01:13:47PM -0500, Darrell A. Sullivan, II wrote: > Failure Information: > Failure Reason: An Error occured during Logon. > Status: 0xc002002e > Sub Status: 0x0 > > I looked up the 0xc002002e error and that is evidently > RPC_NT_PROCNUM_OUT_OF_RANGE. This sounds a lot like https://bugzilla.samba.org/show_bug.cgi?id=6100 Can you please send a debug level 10 log of the pdc smbd, so that we can be sure about that? Thanks, Volker pgphQm8czliZ1.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba and Windows Server 2008 64bit
I am having to add a server running Windows Server 2008 64bit edition to my system network in order to use a solid state drive solution. The computers in my network consist of Linux machines as well as workstations running Windows 2000 and Windows XP professional and a Windows NT server that is running because some specialized hardware we have will not run on any later operating systems. I am using a Linux server running Samba as a primary domain controller in this network. After attaching the Server 2008 machine and joining the domain I was able to successfully establish a connection from the Server 2008 machine to existing shares on the network and copy files to the server. However, I have been unsuccessful at having any of the other computers, of any operating system flavour, to connect to the Server 2008 machine shares or to establish connections for using DCOM functions. The Server 2008 log lists the same message for every machine that attempts to log in. Failure Information: Failure Reason: An Error occured during Logon. Status: 0xc002002e Sub Status: 0x0 I looked up the 0xc002002e error and that is evidently RPC_NT_PROCNUM_OUT_OF_RANGE. I did some searching on "Procedure Number out of Range" and I set the Lan Manage Authentication Level to "Send LM & NTLM Responses", but I am still receiving the same errors. I was wondering if anyone else has had similar problems and if so how you were able to fix them. Thank You -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] logon hours
Hallo, how and where can I set the "Logon hours" (shown with "pdbedit") to another value as "..."? I can work as (Linux) root. I need this option for some users. Viele Gruesse! Helmut -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] OpenSUSE 11.1 with OpenLDAP => some surprises (ldap.conf, nss-ldap.conf, nsswitch.conf)
On 2009-02-12 at 08:58 +0100 malte.muel...@ewetel.net sent off: > this has nothing directly to do with samba, but there might be some people > who try to use samba with (Open)LDAP on OpenSUSE 11.1 like me. > Between 10.2 and 11.1 the nss_ldap configuration has changed a bit. The I think nss_ldap didn't change but you are using nss-ldapd now. See http://ch.tudelft.nl/~arthur/nss-ldapd/ for details :-) Cheers Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba and NetAPP filers, the PDC problem...
On Thu, Feb 12, 2009 at 05:08:14PM +0100, Frank Bonnet wrote: > Volker Lendecke wrote: > >On Thu, Feb 12, 2009 at 10:22:23AM +0100, Frank Bonnet wrote: > >>Well not much success even after creating the account by hand > > > >You might want to take a look at bug 5920 for the trick. > >Because I don't have a NetApp box to test, I can't really > >fix this. > > > >Volker > > this does not help me my installed version is 3.2.25 Then you need to find someone to fix what broke between 3.0.30 and later versions :-) Volker pgpOfhDetjt6P.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba and NetAPP filers, the PDC problem...
Volker Lendecke wrote: On Thu, Feb 12, 2009 at 10:22:23AM +0100, Frank Bonnet wrote: Well not much success even after creating the account by hand You might want to take a look at bug 5920 for the trick. Because I don't have a NetApp box to test, I can't really fix this. Volker this does not help me my installed version is 3.2.25 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Resilience inquiry: What happens to samba clients if a domain controller fails?
Hello folks, I have been asked about the resilience of samba clients when faced with a domain controller failure. My client's environment has multiple Windows Domain Controllers (we'll call them dc1 - dc9). Assuming that domain replication operates as expected (and does, from Windows workstation point of view), what should I expect if (when) the domain controller that initiated a kerberos ticket or provided active directory authentication fails? I have not been able to test this properly, as my dev domain is too disimilar to my production domain... Support Information: - My UNIX environment is running kerberos 5. - Kerberos5 configuration information: kdc.conf has my domain listed in realms krb5.conf has my domain listed in realms like this: [realms] DOMAINNAME.CA = { kdc = dc1.domainname.ca admin_server = dc1.domainname.ca default_domain = DOMAINNAME.CA } - Samba 3.0.33 configuration information: [global] security = ads realm = DOMAINNAME.CA workgroup = DOMAINNAME encrypt passwords = yes server string = %h Samba %v smb ports = 445 disable netbios= yes name resolve order = hosts - Hosts were joined to the domain using: net ADS join -U administrator administrator's password: Using short domain name -- DOMAINNAME Joined 'HOST' to realm 'DOMAINNAME.CA' host|/# - DNS information r...@oradbp1# nslookup domainname.ca Server: dc2.domainname.ca Address: 1.1.1.2 Name:domainname.ca Addresses: 1.1.1.1, 1.1.1.2, 1.1.1.3, 1.1.1.4 10.10.10.10, 10.10.10.11, 10.10.10.12, 100.100.100.100, 100.100.100.101 ** IP addresses changed for ambiguity - Avron -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 3.0.24 + LDAP - User Lockout not working
Hi, im trying to setup a password policy with samba and openldap. while lockout works perfect on openldap it looks like it does not work with my samba. Ive set "sambaLockoutThreshold" to 3 and "sambaLockoutDuration" to -1 (lockout forever) within the Domain-Object in LDAP. So i expect whenever a windows user does 3 false logon attemps his samba account will be LOCKED forever, until reseted by an admin. If i peek those parameters with "pdbedit -P" it will confirm my konfiguration. so it looks fine. I also found the "sambaBadPasswordCount" Attribute in every User-Object in the LDAP tree. Default is 0 Now i do several false login attempts from my windows xp workstation (usualy 5 attempts) and recheck that "sambaBadPasswordCount" Attribute in that specific userobject. STILL showing 0 !! btw: the "admin" object that is configured in smb.conf has all the permissions to access and write ALL attributes of any object in my DIT. Does anyone knows this Problem ?!? im lost! i use Debian 4.0 with the debian packages for Samba 3.0.24 and openldap. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] desactivating NTLM fallback when accessing a share and kerberos auth fails
Volker Lendecke a écrit : On Thu, Feb 12, 2009 at 09:49:01AM +0100, Guillaume Rousse wrote: Is there any way to either: - perform some kind of name canonicalization, either on client or server side ? Set the correct service principal names in your DC. Many thanks, it worked. And I also made large progress in understanding behavior of kerberos under windows now. For instance, the client always tries first the local KDC (the one serving the kerberos realm matching its DNS domain), even if adressing a service in another realm, and the Windows KDC only if the first one didn't provided a referal... -- BOFH excuse #54: Evil dogs hypnotised the night shift -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba Newbie
Hello, I have been looking for a Windows alternative for File & Print servers. Currently, we are using Win 2003. Patching overhead and virus outbreaks are becoming problematic with reducing head count. I have looked at the site, but there is no reference to 'better or the same as Win2003' only NT is referenced. I'm trying to put a business case together to convince management that this is a viable alternate strategy for the long term future. Has anyone put a document together that might contribute to this business case? Regards Eddie Humphries IT Audit Manager HomeServe Cable Drive Walsall WS2 7BN Tel: 01922 427925 Mob: 07875529373 Email: eddie.humphr...@homeserve.com NOTICE - This e-mail and its attachments are strictly confidential. If you are not the intended recipient please delete the e-mail (including attachments) from your system without printing copying disclosing or otherwise using its contents. If you have received this e-mail in error please notify the sender immediately by e-mail or telephone on 0845 155. Any e-mails sent in an employee's personal capacity are not sent on behalf of the sender's employer and are the personal responsibility of the sender. Any views or opinions expressed in this email are those of the author only. WARNING - Data conveyed by e-mail could be deliberately or accidentally intercepted or corrupted. The company does not accept any responsibility for any changes or breaches of confidence which may arise through use of this medium. The content of e-mails sent and received by company employees may be intercepted or monitored by the company. It is the responsibility of the recipient to ensure that this e-mail has not been tampered with and that any attachments are virus-free. Whilst we make every effort to ensure that this e-mail is free from viruses this cannot be guaranteed. We recommend that you scan all e-mail for viruses with appropriate and frequently updated virus checking software. Homeserve plc Company number 2648297. Homeserve Claims Management Limited Company number 3913960. Homeserve Membership Limited Company number 2770612. All the above companies are registered in England, and each has its registered office at Cable Drive, Walsall, WS2 7BN. Homeserve Membership Limited is authorised and regulated by the Financial Services Authority (FSA). Registration number 312518. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] SAMBA+LDAP: Domain-Policies WHERE?
Hi! i realy got stuck on testing samba and ldap scenarios. i want to use PASSWORD POLICIES. But it looked like SAMBA ignores my Policy Settings within my LDAP DOMAIN Object. I have set - sambaMaxPwdAge 300 - sambaMinPwdAge 60 - sambaMinPwdLength 8 - sambaPwdHistoryLength 10 and so on. Someone told me there is another tool called "pdbedit" i should use to edit my Samba Domain-Policy stuff. So i tried ... but it showed me "different" values.. i took lots of trouble with searching internet and reading samba docs for that problem. But there been no such information... Meanwhile i found the Solution: If you change Attributes (values) on the LDAP Domain-Object YOU HAVE TO RESTART THE SAMBA DAEMON and give it some time too, so it will read those new values. I think this is an important information that Samba DOES NOT request that domain parameters "live" but only on Start-Time. So i recomment this should be placed in the samba docs at some points. regards Axel -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Connect without password
Hi, Am Mittwoch, 11. Feb 2009, 16:40:52 -0500 schrieb John Drescher: > On Wed, Feb 11, 2009 at 4:31 PM, Bertram Scharpf > wrote: > > > > smbclient -N -U Guest //somepc/floppy -c 'get somefile.txt' > > > > Now, I tried for about 1 1/2 hours to configure the XP in some way > > that this is accepted. All I got is a series of errors > > NT_STATUS_ACCESS_DENIED or NT_STATUS_LOGON_NOT_GRANTED. > > > Is the Guest account activated on the XP box? > This question is not as easy to answer as it seems because I work with a German version where the names differ. But yes, the accounts icon had a small red spot on the lower left with a white diagonal cross. I made that disappear. Bertram -- Bertram Scharpf Stuttgart, Deutschland/Germany http://www.bertram-scharpf.de -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] desactivating NTLM fallback when accessing a share and kerberos auth fails
On Thu, Feb 12, 2009 at 09:49:01AM +0100, Guillaume Rousse wrote: > Is there any way to either: > - perform some kind of name canonicalization, either on client or server > side ? Set the correct service principal names in your DC. > - desactivate any kind of authentication but kerberos, either for this > share, or globally ? No, not possible. Volker pgpkmdJ7Uc9HM.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba and NetAPP filers, the PDC problem...
On Thu, Feb 12, 2009 at 10:22:23AM +0100, Frank Bonnet wrote: > Well not much success even after creating the account by hand You might want to take a look at bug 5920 for the trick. Because I don't have a NetApp box to test, I can't really fix this. Volker pgpdjwVuwf282.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] The way things used to work...
Try changing "force group = foobar" to "force group = DOMAIN\foobar" . The way Samba handles groups was changed (it was in the release notes around 3.0.28) and if you use read list and write list in smb.conf, users are now specified using DOMAIN\username and groups using +DOMAIN \groupname instead of the old @groupname . This way, you can specify permissions for multiple NT domains. Example from my smb.conf: [resources] comment = Open Share for Distribution path = /share/resources browseable = yes writeable = yes read list = +"BGS\Domain Admins" +BGS\staff +BGS\visitors +"BGS\Domain Users" write list = +"BGS\Domain Admins" +"BGS\staff" create mask = 440 directory mask = 770 I believe that you now also have to be a member of a group for force group = to work so everyone who creates a file in the share will have to be in group DOMAIN\foobar It may be that something's changed in v 3.2 (MS keeps moving the target) so check the release notes again if it doesn't work. Good Luck, Jools On Wed, 2009-02-11 at 21:22 +, Dragan Lukic wrote: > email message attachment > > Forwarded Message > > Subject: > > Date: Thu, 12 Feb 2009 08:29:22 - > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba and NetAPP filers, the PDC problem...
Volker Lendecke wrote: On Tue, Feb 10, 2009 at 01:45:38PM +0100, Frank Bonnet wrote: I run samba in full debug mode (10) then I get that kind of error Ah, that one. There was some discussion on the list recently iirc. What you definitely have to do is precreate the machine account with smbpasswd -a -m XFILER The fact that NetApp filers are not able to create the workstation account on their own should be documented in the NetApp docs somewhere. Volker Hello Volker Well not much success even after creating the account by hand (1) Active Directory domain authentication (Active Directory domains only) (2) Windows NT 4 domain authentication (Windows NT or Active Directory domains) (3) Windows Workgroup authentication using the filer's local user accounts (4) /etc/passwd and/or NIS/LDAP authentication Selection (1-4)? [2]: 2 What is the name of the Windows NT 4 domain? [WORKGROUP]: ESIEE-1 CIFS - Starting SMB protocol... *** CIFS Setup could not establish a connection with the Primary Domain *** Controller (PDC). Usually this happens when the 'XFILER' account does *** not exist in the domain or must have it's password reset. Once you have created and/or reset the 'XFILER' machine account, press ENTER. [continue]:Thu Feb 12 10:19:17 CET [nbt.WINS.registrationFailed:error]: NBT: WINS server 10.1.1.11 did not respond when the filer attempted to register 10.1.1.10. *** CIFS Setup could not establish a connection with the Primary Domain *** Controller (PDC). Usually this happens when the 'XFILER' account does *** not exist in the domain or must have it's password reset. Once you have created and/or reset the 'XFILER' machine account, press ENTER. [continue]: CIFS local server is shutting down... CIFS local server has shut down... xfiler> -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] desactivating NTLM fallback when accessing a share and kerberos auth fails
Volker Lendecke a écrit : On Wed, Feb 11, 2009 at 05:10:02PM +0100, Guillaume Rousse wrote: Guillaume Rousse a écrit : For members of the domain, tough, the client first attempt a kerberos auth, which fails, as he is not using print server FQDN, and doesn't performs host name canonicalization. Actually, from reading the logs, this is false: samba doesn't even attempt to perform a kerberos auth when a share is accessed through a non-FQDN name, but directly attempts NTLM: [2009/02/11 16:59:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(1173) Doing spnego session setup [2009/02/11 16:59:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(1208) NativeOS=[Windows 2002 Service Pack 3 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2009/02/11 16:59:46, 10] smbd/sesssetup.c:check_spnego_blob_complete(1121) check_spnego_blob_complete: needed_len = 180, pblob->length = 180 [2009/02/11 16:59:46, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(745) Got user=[rousse] domain=[MSR-INRIA] workstation=[OBERKAMPF] len1=24 len2=24 [2009/02/11 16:59:46, 5] auth/auth_ntlmssp.c:auth_ntlmssp_set_challenge(68) auth_context challenge set by NTLMSSP callback (NTLM2) Look at the sniff. Your KDC sends a PRINCIPAL_UNKNOWN when the client asks for the ticket with the wrong servername. The client then falls back to ntlmssp. OK, so my initial assumption was not totally erroneous :) Is there any way to either: - perform some kind of name canonicalization, either on client or server side ? - desactivate any kind of authentication but kerberos, either for this share, or globally ? -- BOFH excuse #417: Computer room being moved. Our systems are down for the weekend. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] 4th Submission to Samba List -- No Response Yet
Hi Eric, On Wed, Feb 11, 2009 at 02:24:20PM -0800, Robinson, Eric wrote: > Thanks, guys. 3.0.28 is the latest that yum pulls down. I guess I can > build from source. maybe you are interested in using the 3.0.34 SerNet packages available at ftp://ftp.sernet.de/pub/samba/tested/ (as a yum repo). Karolin -- SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen phone: +49-551-37-0, fax: +49-551-37-9 AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen http://www.SerNet.DE, mailto: Info @ SerNet.DE pgpUxJtPNXpY2.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] OpenSUSE 11.1 with OpenLDAP => some surprises (ldap.conf, nss-ldap.conf, nsswitch.conf)
Hi, this has nothing directly to do with samba, but there might be some people who try to use samba with (Open)LDAP on OpenSUSE 11.1 like me. Between 10.2 and 11.1 the nss_ldap configuration has changed a bit. The file which configures the access to ldap is now /etc/nss-ldap.conf and seems to have the identical layout as the former /etc/ldap.conf. Also needed is the "nslcd" ("local LDAP name service daemon"). If this is already widely known i apologize for bothering. I had a not so funny day searching for this information. Hopefully some expert could give any hint why they changed it and what the advantages of the nslcd are. Does it give me nested groups on posix side (wonderful world this would be)? Greetings M. Mueller -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba