Re: [Samba] Win7: File Type Association get lost
Alexander Busam schrieb: Hi! A new created file type association (e. g. .sql --> notepad++) get lost when I relogon to windows. I use Windows 7 32-bit with roaming profiles. Installed version of Samba is 3.5.9. Any ideas and help welcome :-) Alex ... is this a win7 or samba problem ? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] SerNet has created an open source Samba4 appliance for early testing
On Fri, 2012-04-13 at 12:49 +0200, Michael Adam wrote: > Dear samba and samba-technical lists, > > The Samba Team is working towards getting a Version 4.0 released. > > In oder to ease testing of the Active Directory features of > Samba4, even for people who don't want to download and compile > the source code, SerNet (http://www.sernet.de/) has created a > software appliance based on current Samba master snapshots. > > We hope that someone will find it useful. :-) Thank you and the other folks at SerNet so much for doing this. It is great to see Samba4 demonstrated, and I wish you the very best with this little demo. Thanks! Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] I get a client not found in kerberos database in samba4 alpha18
On Fri, 2012-04-13 at 23:38 -0400, timothy mcdaniel wrote: > I get a client not found in kerberos database in samba4 alpha18 > How do I fix this? This just means the same thing as 'no such user' in kerberos-speak. At a guess, you entered the wrong username, or it doesn't exist. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] transfer roles
On Tue, 2012-04-17 at 15:18 -0500, sandy.napo...@eccmg.cupet.cu wrote: > Hello list, I have samba 4 as BDC,I need to promove this server as PDC and > eliminate my windows server 2003, but I do not want to write all users > again, then I can make it as follow: > > 1- In the console of windows run ntdsutil > 2- After write roles and press enter > 3- write connections and press enter > 4- write connect to server \\PC with samba4 > 5- write quit and press enter > 6- Write in this order > ---transfer domain naming master > ---transfer infrastructure master > ---transfer PDC > ---transfer RID master > ---trasnfer schema master > 7- shutdown to pc with windows y reboot samba4.. > > That is all. samba 4 as PDC after to transfer roles from windows server > 2003 to samba4 Yes, that should be all you need to do. From the Samba4 side you can run 'samba-tool fsmo transfer' or (if you have turned off the windows DC) 'samba-tool fsmo seize'. Make sure to use master if you wish to seize, as I've just fixed that tool. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba4: use samba-tool to reactivate account for 30 days
On Thu, 2012-04-19 at 10:29 +0200, steve wrote: > Hi everyone > > I'd like to be able to do something like this: > samba-tool user setexpiry steve --expiry=30 > Not in windows. > > Is it poss. at the cl? > Cheers, > Steve I think you have the syntax wrong. Try --days=30 Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Destination share larger than windows source
On Wed, Apr 18, 2012 at 07:00:55PM -0700, Jeremy Allison wrote:
> On Wed, Apr 18, 2012 at 06:05:26PM -0700, Mike Kelly wrote:
> > On Tue, Apr 17, 2012 at 04:06:40PM -0700, Jeremy Allison wrote:
> > > Can you run a recursive du on both systems to see which
> > > directories have a discontinuity ?
> >
> > When using du -sk:
> > windows: 370391711 E:\share
> > SA off: 370932304 /share
> > SA on:485500380 /share
>
> The key you missed here was *recursive* du :-). We know
> the size is different over all the share, we need to
> know what directories *within* the share have a different
> size.
>
Sorry about that, so between the SA on and off files I rand du, and what
I'm seeing is that files are about 1k larger than you'd expect:
on offfile name
---
2052 1052 openvpn-2.0.5-gui-1.0.3-install.exe
1028200 rest2514.exe
1028316 SCP Screens/Screenshot-1.png
1028316 SCP Screens/Screenshot-2.png
1028316 SCP Screens/Screenshot-3.png
1028324 SCP Screens/Screenshot-4.png
1028312 SCP Screens/Screenshot-5.png
1028380 SCP Screens/Screenshot-6.png
1028384 SCP Screens/Screenshot-7.png
1028320 SCP Screens/Screenshot.png
1028 32 SCP Screens/Thumbs.db
That seems pretty strange to me, as if files are rounded up to the next
1k or so.
Mike
(:
--
m...@piratehaven.org---The_glass_is_too_big
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] nmbd eats cpu for breakfast after upgrade from 3.5 to 3.6
On 19 April 2012 21:50, Jeremy Allison wrote: > What is the syscall above the recvfrom ? There isn't any. Only gazillion lines of recvfrom EAGAIN. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] nmbd eats cpu for breakfast after upgrade from 3.5 to 3.6
On Thu, Apr 19, 2012 at 11:49:36AM -0700, Jeremy Allison wrote: > On Thu, Apr 19, 2012 at 09:03:35AM +0300, Ander Punnar wrote: > > On 17 April 2012 20:19, Jeremy Allison wrote: > > > What does strace -p say ? > > > > Today, strace showed lots of following: > > recvfrom(13, 0x7fff7c027a00, 576, 0, 0x7fff7c027c40, 0x7fff7c0279dc) = > > -1 EAGAIN (Resource temporarily unavailable) > > > > But in log.nmbd, there wasn't anything "uncommon". > > You get this when the socket is set non-blocking and a recvfrom() > returns -1, EAGAIN. and there's nothing available to be read (forgot to add that). What is the syscall above the recvfrom ? We should only be doing the recvfrom when a poll() shows the socket has data available for reading. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] nmbd eats cpu for breakfast after upgrade from 3.5 to 3.6
On Thu, Apr 19, 2012 at 09:03:35AM +0300, Ander Punnar wrote: > On 17 April 2012 20:19, Jeremy Allison wrote: > > What does strace -p say ? > > Today, strace showed lots of following: > recvfrom(13, 0x7fff7c027a00, 576, 0, 0x7fff7c027c40, 0x7fff7c0279dc) = > -1 EAGAIN (Resource temporarily unavailable) > > But in log.nmbd, there wasn't anything "uncommon". You get this when the socket is set non-blocking and a recvfrom() returns -1, EAGAIN. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 3.6.3 & LDAP errors in logs
Hi I have recently upgraded our Samba 3.4.2 servers (LDAP 2.4.21 backend) to Samba 3.6.3. Since the upgrade, I have the following errors in our logs every time a Windows 7 client logs in: * 2012/04/19 11:41:33, 0] rpc_server/srv_netlog_nt.c:603(_netr_ServerAuthenticate3) _netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client PCNAME machine account PCNAME$* The user is able to login fine and everything appears to be working. However I would like to resolve this message as it looks terrible in the logs. Applied all windows 7 reg fixes, have disabled password change requirement on the win7 pcs. I would appreciate any help I can get I have googled this for a couple of weeks now and cannot find a resolution. Thank you Candy M -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba 3.0.33 works, 3.5.4 doesn't
On Thu, 2012-04-19 at 10:20 -0400, John Oliver wrote:
> I'm trying to get AD authentication working on a RHEL 5.4 base system
>
> I can wbinfo -[ug] and getent {passwd|group} with 3.0.33 Everything
> appears to work just fine, except I could not actually authenticate...
> I'd always get failed password. A lot of Googling turned up a bug that
> indicated that it was impossible to get 3.0.33 to authenticate against a
> W2K8 AD, so I installed 3.5.4 Same smb.conf, same krb5.conf... but I
> cannot join the domain. net ads status works, but net ads join tells
> me:
>
Your smb.conf is wrong needs to look something like the following. This
is covered in the man pages these days.
# deal with NSS and the whole UID/SID id mapping stuff
idmap backend = tdb
idmap uid = 200 - 299
idmap gid = 200 - 299
idmap config MYDOMAIN : backend = ad
idmap config MYDOMAIN : schema_mode = rfc2307
idmap config MYDOMAIN : readonly = yes
idmap config MYDOMAIN : range = 500 - 199
idmap cache time = 604800
idmap negative cache time = 20
winbind cache time = 600
winbind nss info = rfc2307
winbind expand groups = 2
winbind nested groups = yes
winbind use default domain = yes
winbind enum users = yes
winbind enum groups = yes
winbind refresh tickets = yes
winbind offline logon = false
You of course need to have the RFC2307 attributes populated in the AD
for this to work, and a winbind entry in /etc/nsswitch and winbind
running.
Note that you should upgrade to RHEL5.8 immediately and make sure that
you have samba3x-3.5.10-0.108.el5_8 installed unless you want your box
to be rooted by the first passer by.
JAB.
--
Jonathan A. Buzzard Email: jonathan (at) buzzard.me.uk
Fife, United Kingdom.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 3.0.33 works, 3.5.4 doesn't
I'm trying to get AD authentication working on a RHEL 5.4 base system
I can wbinfo -[ug] and getent {passwd|group} with 3.0.33 Everything
appears to work just fine, except I could not actually authenticate...
I'd always get failed password. A lot of Googling turned up a bug that
indicated that it was impossible to get 3.0.33 to authenticate against a
W2K8 AD, so I installed 3.5.4 Same smb.conf, same krb5.conf... but I
cannot join the domain. net ads status works, but net ads join tells
me:
Failed to join domain: failed to lookup DC info for domain 'MY.DOMAIN'
over rpc: Invalid workstation
Googling that error leads to a very few responses, none of which help
me. What is the "invalid workstation", and how do I make it valid? :-)
smb.conf:
[global]
workgroup = MY
password server = 192.168.2.22
realm = MY.DOMAIN
security = ads
idmap uid = 1-2
idmap gid = 1-2
client ntlmv2 auth = yes
disable netbios = yes
smb ports = 445
winbind use default domain = yes
winbind offline logon = yes
winbind trusted domains only = no
winbind enum users = yes
winbind enum groups = yes
passdb backend = tdbsam
krb5.conf:
[libdefaults]
default_realm = MY.DOMAIN
dns_lookup_realm = false
dns_lookup_kdc = false
ticket_lifetime = 24h
forwardable = yes
[realms]
MY.DOMAIN = {
kdc = ad1.my.domain:88
admin_server = ad1.my.domain:749
default_domain = my.domain
}
[domain_realm]
.my.domain = MY.DOMAIN
my.domain = MY.DOMAIN
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
--
***
* John Oliver http://www.john-oliver.net/ *
* *
***
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] trust relationship between this workstation and the primary domain failed
Tcpdump from 2008 (works) and XP (not working) are different. I noticed 2008 and windows 7 (working) smbclients keep all SMB traffic between the smbclient and smbserver while XP and 2000 (not working) communicate SMB traffic between SMBserver and AD server as well as SMBserver and SMBclient. TCP dump from Samba server below: 2008 (working) smbclient SMBnegprot (REQUEST) -> smbserver smbserver SMBnegprot (REPLY) -> smbclient smbclient SMBsessionsetupX (REQUEST) -> smbserver smbserver SRV _ldap... and A lookup -> DNS DNS -> smbserver smbserver -> AD AD -> smbserver smbserver SMBsesssetupX (REPLY) -> smbclient smbclient SMBtconX (REQUEST) -> smbserver smbserver SMBtconX (REPLY) -> smbclient smbclient SMBtrans2 (REQUEST) -> smbserver smbclient SMBtrans2 (REQUEST) -> smbserver smbserver SMBtrans2 (REPLY) -> smbclient smbserver SMBtrans2 (REPLY) -> smbclient smbclient SMBntcreateX (REQUEST) -> smbserver smbserver SMBntcreateX (REPLY) -> smbclient smbserver SMBwriteX (REQUEST) -> smbclient smbserver SMBwriteX (REPLY) -> smbclient smbclient SMBreadx (REQUEST) -> smbserver smbserver SMBntcreateX (REPLY) -> smbclient smbclient SMBclose (REQUEST) -> smbserver smbserver SMBclose (REPLY) -> smbclient XP (Not working) smbclient SMBnegprot (REQUEST) -> smbserver smbserver SMBnegprot (REPLY) -> smbclient smbclient SMBsessionsetupX (REQUEST) -> smbserver smbserver SRV _ldap... and A lookup -> DNS DNS -> smbserver smbserver -> AD AD -> smbserver smbserver SMBnegprot (REQUEST) -> AD AD SMBnegprot (REPLY) -> smbserver smbserver SMBsessionsetupX (REQUEST) -> AD AD SMBsessionsetupX (REPLY) -> smbserver smbserver SMBtconX (REQUEST) -> AD AD SMBtconX (REPLY) -> smbserver smbserver SMBntcreateX (REQUEST) -> AD AD SMBntcreateX (REPLY) -> smbserver smbserver SMBtdis (REQUEST) -> AD AD SMBtdis (REPLY) -> smbserver smbserver SMBnegprot (REQUEST) -> AD AD SMBnegprot (REPLY) -> smbserver smbserver SMBsessionsetupX (REQUEST) -> AD AD SMBsessionsetupX (REPLY) -> smbserver smbserver SMBtconX (REQUEST) -> AD AD SMBtconX (REPLY) -> smbserver smbserver SMBntcreateX (REQUEST) -> AD AD SMBntcreateX (REPLY) -> smbserver smbserver SMBtdis (REQUEST) -> AD AD SMBtdis (REPLY) -> smbserver smbserver SMBsesssetupX (REPLY) -> smbclient.menandmice-lpm smbclient.univ-appserver -> smbserver.http smbserver.http -> smbclient.univ-appserver smbclient.univ-appserver -> smbserver.http smbserver.http -> smbclient.univ-appserver --- On Tue, 4/17/12, clinton propst wrote: From: clinton propst Subject: Re: [Samba] trust relationship between this workstation and the primary domain failed To: "Ivan Ordonez" Date: Tuesday, April 17, 2012, 2:19 PM Ivan, XP and 2000 Servers LAN MAN was set to LM & NTLM. I reset an XP node to 'Send NTLMv2 response only\refuse LM & NTLM' and reboot and receive the same errors. Searching through tcpdump of failed attempt. Clinton --- On Tue, 4/10/12, Ivan Ordonez wrote: From: Ivan Ordonez Subject: Re: [Samba] trust relationship between this workstation and the primary domain failed To: "clinton propst" Date: Tuesday, April 10, 2012, 5:41 PM I believe the LAN MAN authentication level should be set to this. Send NTLMv2 response only\refuse LM & NTLM On 4/10/2012 2:25 PM, clinton propst wrote: Thanks for the Reply. All of our smb clients (windows 7, server 2000, server 2008, xp) are set to require NTLMv2 and 128 bit encryption. The windows 7 and server 2008 work fine. Do you think we should try setting xp and 2000 nodes to NTLMv1? Thanks, Clinton --- On Tue, 4/10/12, Ivan Ordonez wrote: From: Ivan Ordonez Subject: Re: [Samba] trust relationship between this workstation and the primary domain failed To: "clinton propst" Date: Tuesday, April 10, 2012, 2:36 PM Have you try changing the NTLM authentication level? On 4/10/2012 9:17 AM, clinton propst wrote: > Still not working after readding machines to the domain. Errors are the same as originally posted in /var/log/messages. > > > --- On Tue, 4/10/12, John Drescher wrote: > > From: John Drescher > Subject: Re: [Samba] trust relationship between this workstation and the primary domain failed > To: "clinton propst" > Cc: samba@lists.samba.org > Date: Tuesday, April 10, 2012, 9:09 AM > > > >
[Samba] Samba4: use samba-tool to reactivate account for 30 days
Hi everyone I'd like to be able to do something like this: samba-tool user setexpiry steve --expiry=30 Not in windows. Is it poss. at the cl? Cheers, Steve -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
