[Samba] samba user stays at the syatem !!!
Dear list, Here is a very strange problem !!! I am using samba-3.0.25b-1.1.cc in clarkconnect server. No problem to use the samba shares at all. Authentication works with no hitch. But samba users stay at the system. I have just checked with "who" and found there are 250 samba users from 1st of Jan ! I tried to fond out the pid by "who -a" and kill those but then it says "no such pid" even I tried *smbstatus* but kill says no such pid. I have really no clue what to do with this problem. Day by day this system is flooded with more and more samba users. Kindly suggest what to do. How can I kill those past samba users ? How can I instruct samba no to have the continue with unlogged users ? Please show me the way. thanks -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] vlan problem
here is my smb.conf global section: # [global] server string = SOFTWARE workgroup = SOFTWARE ;security = user netbios name = S-SOFT passdb backend = ldapsam:ldap://ldapserver ldap admin dn = cn=Directory Manager ldap suffix = dc=iut,dc=ac,dc=ir ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers ldap ssl = start_tls ;enable privileges = yes add machine script = /usr/sbin/smbldap-useradd -w "%u" add user script = /usr/sbin/smbldap-useradd -m "%u" ldap delete dn = Yes #delete user script = /usr/sbin/smbldap-userdel "%u" add group script = /usr/sbin/smbldap-groupadd -p "%g" #delete group script = /usr/sbin/smbldap-groupdel "%g" add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g" delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g" set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u" ldap passwd sync = Yes log level = 1 syslog = 0 log file = /var/log/samba/%m ;encrypt passwords = yes os level = 69 max log size = 50 name resolve order = wins bcast hosts time server = Yes wins support = Yes socket options = TCP_NODELAY IPTOS_LOWDELAY SO_SNDBUF=8192 SO_RCVBUF=8192 logon script = logon.bat logon path ="" logon drive = domain logons = Yes preferred master = Yes domain master = Yes ;local master = yes username map = /etc/samba/smbusers interfaces = 127.0.0.1 eth* bind interfaces only = yes hosts allow = 172.16. 192.168. # 2009/3/1 Adam Williams > whats the smb.conf of the samba server? did you do smbpasswd -w? > > > Mohammad Reza Hosseini wrote: > >> hello, >> I want to use a samba server and an ldap server in two different lans. but >> win xp pc can not join to pdc domain. >> i ping the ldap server and smbldap-usershow shows the users but the "net >> rpc >> getsid" can not fetch sid and coputers can't be added to ldap. >> any idea? >> >> > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 3.0 AD Integration restrict users
I have configured a Linux server so users can log in with their AD credentials. However, I have a directory I would like to share and restrict it to a few AD users. All these users will have read and execute access but only two users will have write access. The /srv/www/vhosts/marketing is the directory I would like to share. It is owned by root:marketing both have 777 permission to that dir. I have edited the /etc/group file and added one of the users to the marketing group but while trying to log in I can see permission denied when connecting to [marketing] in /var/log/messages Following is my smb.conf file. Thanks for any help; [global] workgroup = AD security = ADS realm = domain.com encrypt passwords = yes preferred master = no log level = 3 auth methods = winbind winbind enum users = yes winbind enum groups = yes winbind use default domain = yes idmap uid = 10-20 idmap gid = 10-20 netbios name = gandalf password server = 172.16.20.34 template homedir = /home/%D/%U template shell = /bin/bash [marketing] comment = Marketing Internal Web inherit acls = No path = /srv/www/vhosts/marketing read only = No guest ok = No browseable = Yes create mask = 4755 directory mask = 0770 Thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba AD auth - Backup?
Everything should be looked up by DNS. There's no notion of a PDC/BDC in AD (although 2008 has readonly slaves I believe). On Fri, Feb 27, 2009 at 7:26 AM, Mark Adams wrote: > Hi All, > > I haven't been able to track down any info on this so would be > appreciative of any input. Links to any info on this would also be > appreciated. > > Samba 3.2.5, Debian 5.0 > > Question 1; > Is there any way of setting up a "backup" windows domain controller in > the samba config? so if they main dc is not available, it automatically > queries the backup? > > Question 2; > What is the best way to back up the UID/GID map? and can it be easily > imported back to a new install if the server fails for any reason. > > Thanks > Mark > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Manually expire duplicate netbios name
Hi! Yesterday, after migrating to a new server, I accidentally started an identically configured smbd and nmbd on the old machine. Since then, there are two netbios entries, even though the first host (192.168.60.5) is down since yesterday: # nmblookup -U localhost -R 'SAMBA' querying SAMBA on 127.0.0.1 192.168.60.5 SAMBA<00> 192.168.60.3 SAMBA<00> I've already tried to remove NBT/SAMBA#20\0 from /var/lib/samba/gencache.tdb using tdbtool. Besides, I deleted suspicious entried from wins.dat. (Both with or without nmbd running.) Unfortunately I don't know how to remove them from wins.tdb. When restarting nmbd, it complains that there is already a domain master browser, but it queries it's own wins-server (192.168.60.3). (See below.) Any hints on how I can manually delete the wrong ip address from the netbios-cache / wins server? Thanks, --leo Mar 1 18:58:08 samba nmbd[23487]: [2009/03/01 18:58:08, 0] nmbd/asyncdns.c:start_async_dns(155) Mar 1 18:58:08 samba nmbd[23487]: started asyncdns process 23488 Mar 1 18:58:08 samba nmbd[23487]: [2009/03/01 18:58:08, 0] nmbd/nmbd_logonnames.c:add_logon_names(160) Mar 1 18:58:08 samba nmbd[23487]: add_domain_logon_names: Mar 1 18:58:08 samba nmbd[23487]: Attempting to become logon server for workgroup RK_KLBG on subnet 192.168.60.3 Mar 1 18:58:08 samba nmbd[23487]: [2009/03/01 18:58:08, 0] nmbd/nmbd_logonnames.c:add_logon_names(160) Mar 1 18:58:08 samba nmbd[23487]: add_domain_logon_names: Mar 1 18:58:08 samba nmbd[23487]: Attempting to become logon server for workgroup RK_KLBG on subnet UNICAST_SUBNET Mar 1 18:58:08 samba nmbd[23487]: [2009/03/01 18:58:08, 0] nmbd/nmbd_become_dmb.c:become_domain_master_browser_wins(336) Mar 1 18:58:08 samba nmbd[23487]: become_domain_master_browser_wins: Mar 1 18:58:08 samba nmbd[23487]: Attempting to become domain master browser on workgroup RK_KLBG, subnet UNICAST_SUBNET. Mar 1 18:58:08 samba nmbd[23487]: [2009/03/01 18:58:08, 0] nmbd/nmbd_become_dmb.c:become_domain_master_browser_wins(350) Mar 1 18:58:08 samba nmbd[23487]: become_domain_master_browser_wins: querying WINS server from IP 192.168.60.3 for domain master browser name RK_KLBG<1b> on workgroup RK_KLBG Mar 1 18:58:08 samba nmbd[23487]: [2009/03/01 18:58:08, 0] nmbd/nmbd_become_dmb.c:become_domain_master_query_success(234) Mar 1 18:58:08 samba nmbd[23487]: become_domain_master_query_success: Mar 1 18:58:08 samba nmbd[23487]: There is already a domain master browser at IP 192.168.60.5 for workgroup RK_KLBG registered on subnet UNICAST_SUBNET. Mar 1 18:58:08 samba nmbd[23487]: [2009/03/01 18:58:08, 0] nmbd/nmbd_logonnames.c:become_logon_server_success(121) Mar 1 18:58:08 samba nmbd[23487]: become_logon_server_success: Samba is now a logon server for workgroup RK_KLBG on subnet UNICAST_SUBNET Mar 1 18:58:12 samba nmbd[23487]: [2009/03/01 18:58:12, 0] nmbd/nmbd_logonnames.c:become_logon_server_success(121) Mar 1 18:58:12 samba nmbd[23487]: become_logon_server_success: Samba is now a logon server for workgroup RK_KLBG on subnet 192.168.60.3 -- e-mail ::: Leo.Bergolth (at) wu-wien.ac.at fax ::: +43-1-31336-906050 location ::: IT-Services | Vienna University of Economics | Austria -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] vlan problem
whats the smb.conf of the samba server? did you do smbpasswd -w? Mohammad Reza Hosseini wrote: hello, I want to use a samba server and an ldap server in two different lans. but win xp pc can not join to pdc domain. i ping the ldap server and smbldap-usershow shows the users but the "net rpc getsid" can not fetch sid and coputers can't be added to ldap. any idea? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Re: Samba AD auth - Backup?
"Mark Adams" wrote in message news:20090227122641.ga4...@campbell-lange.net... > Hi All, > > I haven't been able to track down any info on this so would be > appreciative of any input. Links to any info on this would also be > appreciated. > > Samba 3.2.5, Debian 5.0 > > Question 1; > Is there any way of setting up a "backup" windows domain controller in > the samba config? so if they main dc is not available, it automatically > queries the backup? > Take a look at Samba by Example chapter 5 "Making Happy Users". Great info. on setting up PDC's and BDC's. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] vlan problem
hello, I want to use a samba server and an ldap server in two different lans. but win xp pc can not join to pdc domain. i ping the ldap server and smbldap-usershow shows the users but the "net rpc getsid" can not fetch sid and coputers can't be added to ldap. any idea? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba