[Samba] Please Help! Dynamic DNS just will not work: failed gss_inquire_cred: GSSAPI error: Major = Unspecified GSS failure
I just can't seem to get dynamic DNS updates working on CentOS 6.4 with samba 4.0 .tar.gz from samba.org using BIND9_DLZ. If I run bind 9.8.2.rc1 in debug mode and go to a domain joined windows client and run 'ipconfig /registerdns' this is what I get in my console: 31-May-2013 23:51:06.520 client 10.0.0.106#54352: new TCP connection 31-May-2013 23:51:06.520 client 10.0.0.106#54352: replace 31-May-2013 23:51:06.520 clientmgr @0x7fe0575b5010: createclients 31-May-2013 23:51:06.520 clientmgr @0x7fe0575b5010: recycle 31-May-2013 23:51:06.520 client 10.0.0.106#54352: read 31-May-2013 23:51:06.520 client @0x7fe04c159600: accept 31-May-2013 23:51:06.529 client 10.0.0.106#54352: TCP request 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: using view 'internal-view' 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: request is not signed 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: recursion available 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: query 31-May-2013 23:51:06.529 failed gss_inquire_cred: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Success. 31-May-2013 23:51:06.573 gss-api source name (accept) is gm-bed-desktop$@MTOLYMPUS.LOCAL 31-May-2013 23:51:06.573 process_gsstkey(): dns_tsigerror_noerror 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: send 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: sendto 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: senddone 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: next 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: endrequest 31-May-2013 23:51:06.573 client 10.0.0.106#54352: read 31-May-2013 23:51:06.609 client 10.0.0.106#54352: next 31-May-2013 23:51:06.609 client 10.0.0.106#54352: request failed: end of file 31-May-2013 23:51:06.609 client 10.0.0.106#54352: endrequest 31-May-2013 23:51:06.609 client 10.0.0.106#54352: closetcp ^C31-May-2013 23:51:29.665 shutting down 31-May-2013 23:51:29.665 stopping command channel on 127.0.0.1#953 31-May-2013 23:51:29.665 res 0x7fe0575c3010: shutdown 31-May-2013 23:51:29.665 res 0x7fe0575c3010: exiting I have checked file permissions everywhere I can think of, this is my 7th time following the official samba.org samba 4 primary domain controller tutorial and this has happened every single time. Everything else seems to be functioning, I can manage everything from a windows client with the AD snap-ins and the computer shows up in 'Computers and Users' snap in, it just does NOT have a DNS A record! Thank You! --GM -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Hello Mailing List, I really need some help/advice.
Gary See the other mail i sent you wrt the DNS stuff. The problem with \\mydomain.local\profiles not working for you has to do with *domain dfs*. You need to set up your DC to support this: put these in your smb.conf: [global] host msdfs = Yes [profiles] msdfs root = yes That should work so long as you only have one DC. From the moment that you want multiple, replicated DCs + domain dfs, you need to look at other solutions (i'm trying to play with glusterfs for the profiles share, and it works, at least when connecting from winxp clients... win7 no luck so far) That should do it... (well; see my posts on this list about samba4 and dfs, and you'll see it's not all that simple/working) Just try to solve the DNS issues first... correctly working DNS is critical for the rest of the setup, and can save you headaches later on... Michael 2013/6/1 Gary Maurizi garymaur...@gmail.com Please bear with me as this is my first time actually using a mailing list. I've set up a CentOS 6.4 machine as a samba4 Primary Domain Controller, and successfully joined a windows 8 client machine to the domain. My question is as follows: when I add the computer BED-DESK-01 to the domain MYDOMAIN.LOCAL shouldn't an A record be created for BED-DESK-01.MYDOMAIN.LOCAL so that while logged into SERVER.MYDOMAIN.LOCAL I can ping bed-desk-01.mtolympus.local etc? This seems to be the only part of AD that is not functioning for me at this point. I have also noticed some strange behavior when I browse to \\MYDOMAIN.LOCAL\ on the client and try to access a share called profiles that I created in /usr/local/samba/etc/smb.conf I get the error: Element not found., contrariwise, if I type in \\SERVER.MYDOMAIN.LOCAL or \\10.0.0.1\ and click on profiles I can get into the share, browse, and create/modify files just fine? Further when opening network neighborhood, \\MYDOMAIN.LOCAL is not what is loaded by default. I am hoping that this is all indicative of one or two administration mistakes that I can fix with some assistance. Thank you so very much for your assistance, --GM. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- Michael De Groote ICT-coordinator Sint-Pietersschool Korbeek-Lo ICT-support Sancta Maria Basisschool Leuven -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba4 manpages
Hi all, im trying to setup Samba4 as dc. Ive downloaded the source and did a make make install but after that i do not have any manpage. Ive found it in samba-4.0.5/docs/manpages but how can I install it ? How are shares handled in Samba4 ? Before I have used: [share] valid users = @sharegroupname but the AD has only virtual users, how do I share folders for a group or a user ? Hans -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Please Help! Dynamic DNS just will not work: failed gss_inquire_cred: GSSAPI error: Major = Unspecified GSS failure
Looks like bug https://bugzilla.samba.org/show_bug.cgi?id=9559 which looks like it'll be fixed in git momentarily. On Sat, Jun 1, 2013 at 1:59 AM, Gary Maurizi garymaur...@gmail.com wrote: I just can't seem to get dynamic DNS updates working on CentOS 6.4 with samba 4.0 .tar.gz from samba.org using BIND9_DLZ. If I run bind 9.8.2.rc1 in debug mode and go to a domain joined windows client and run 'ipconfig /registerdns' this is what I get in my console: 31-May-2013 23:51:06.520 client 10.0.0.106#54352: new TCP connection 31-May-2013 23:51:06.520 client 10.0.0.106#54352: replace 31-May-2013 23:51:06.520 clientmgr @0x7fe0575b5010: createclients 31-May-2013 23:51:06.520 clientmgr @0x7fe0575b5010: recycle 31-May-2013 23:51:06.520 client 10.0.0.106#54352: read 31-May-2013 23:51:06.520 client @0x7fe04c159600: accept 31-May-2013 23:51:06.529 client 10.0.0.106#54352: TCP request 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: using view 'internal-view' 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: request is not signed 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: recursion available 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: query 31-May-2013 23:51:06.529 failed gss_inquire_cred: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Success. 31-May-2013 23:51:06.573 gss-api source name (accept) is gm-bed-desktop$@MTOLYMPUS.LOCAL 31-May-2013 23:51:06.573 process_gsstkey(): dns_tsigerror_noerror 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: send 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: sendto 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: senddone 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: next 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: endrequest 31-May-2013 23:51:06.573 client 10.0.0.106#54352: read 31-May-2013 23:51:06.609 client 10.0.0.106#54352: next 31-May-2013 23:51:06.609 client 10.0.0.106#54352: request failed: end of file 31-May-2013 23:51:06.609 client 10.0.0.106#54352: endrequest 31-May-2013 23:51:06.609 client 10.0.0.106#54352: closetcp ^C31-May-2013 23:51:29.665 shutting down 31-May-2013 23:51:29.665 stopping command channel on 127.0.0.1#953 31-May-2013 23:51:29.665 res 0x7fe0575c3010: shutdown 31-May-2013 23:51:29.665 res 0x7fe0575c3010: exiting I have checked file permissions everywhere I can think of, this is my 7th time following the official samba.org samba 4 primary domain controller tutorial and this has happened every single time. Everything else seems to be functioning, I can manage everything from a windows client with the AD snap-ins and the computer shows up in 'Computers and Users' snap in, it just does NOT have a DNS A record! Thank You! --GM -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Please Help! Dynamic DNS just will not work: failed gss_inquire_cred: GSSAPI error: Major = Unspecified GSS failure
Nick, doesn't that bug apply to internal dns only? (Gary says he's using BIND9_DLZ) 2013/6/1 Nick Semenkovich seme...@alum.mit.edu Looks like bug https://bugzilla.samba.org/show_bug.cgi?id=9559 which looks like it'll be fixed in git momentarily. On Sat, Jun 1, 2013 at 1:59 AM, Gary Maurizi garymaur...@gmail.com wrote: I just can't seem to get dynamic DNS updates working on CentOS 6.4 with samba 4.0 .tar.gz from samba.org using BIND9_DLZ. If I run bind 9.8.2.rc1 in debug mode and go to a domain joined windows client and run 'ipconfig /registerdns' this is what I get in my console: 31-May-2013 23:51:06.520 client 10.0.0.106#54352: new TCP connection 31-May-2013 23:51:06.520 client 10.0.0.106#54352: replace 31-May-2013 23:51:06.520 clientmgr @0x7fe0575b5010: createclients 31-May-2013 23:51:06.520 clientmgr @0x7fe0575b5010: recycle 31-May-2013 23:51:06.520 client 10.0.0.106#54352: read 31-May-2013 23:51:06.520 client @0x7fe04c159600: accept 31-May-2013 23:51:06.529 client 10.0.0.106#54352: TCP request 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: using view 'internal-view' 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: request is not signed 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: recursion available 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: query 31-May-2013 23:51:06.529 failed gss_inquire_cred: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Success. 31-May-2013 23:51:06.573 gss-api source name (accept) is gm-bed-desktop$@MTOLYMPUS.LOCAL 31-May-2013 23:51:06.573 process_gsstkey(): dns_tsigerror_noerror 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: send 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: sendto 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: senddone 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: next 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: endrequest 31-May-2013 23:51:06.573 client 10.0.0.106#54352: read 31-May-2013 23:51:06.609 client 10.0.0.106#54352: next 31-May-2013 23:51:06.609 client 10.0.0.106#54352: request failed: end of file 31-May-2013 23:51:06.609 client 10.0.0.106#54352: endrequest 31-May-2013 23:51:06.609 client 10.0.0.106#54352: closetcp ^C31-May-2013 23:51:29.665 shutting down 31-May-2013 23:51:29.665 stopping command channel on 127.0.0.1#953 31-May-2013 23:51:29.665 res 0x7fe0575c3010: shutdown 31-May-2013 23:51:29.665 res 0x7fe0575c3010: exiting I have checked file permissions everywhere I can think of, this is my 7th time following the official samba.org samba 4 primary domain controller tutorial and this has happened every single time. Everything else seems to be functioning, I can manage everything from a windows client with the AD snap-ins and the computer shows up in 'Computers and Users' snap in, it just does NOT have a DNS A record! Thank You! --GM -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- Michael De Groote ICT-coordinator Sint-Pietersschool Korbeek-Lo ICT-support Sancta Maria Basisschool Leuven -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Please Help! Dynamic DNS just will not work: failed gss_inquire_cred: GSSAPI error: Major = Unspecified GSS failure
Thank You so much Michael Nick, Michael I will try your solution and follow up ASAP. On Sat, Jun 1, 2013 at 9:46 AM, Michael De Groote i...@sint-pietersschool.be wrote: Nick, doesn't that bug apply to internal dns only? (Gary says he's using BIND9_DLZ) 2013/6/1 Nick Semenkovich seme...@alum.mit.edu Looks like bug https://bugzilla.samba.org/show_bug.cgi?id=9559 which looks like it'll be fixed in git momentarily. On Sat, Jun 1, 2013 at 1:59 AM, Gary Maurizi garymaur...@gmail.com wrote: I just can't seem to get dynamic DNS updates working on CentOS 6.4 with samba 4.0 .tar.gz from samba.org using BIND9_DLZ. If I run bind 9.8.2.rc1 in debug mode and go to a domain joined windows client and run 'ipconfig /registerdns' this is what I get in my console: 31-May-2013 23:51:06.520 client 10.0.0.106#54352: new TCP connection 31-May-2013 23:51:06.520 client 10.0.0.106#54352: replace 31-May-2013 23:51:06.520 clientmgr @0x7fe0575b5010: createclients 31-May-2013 23:51:06.520 clientmgr @0x7fe0575b5010: recycle 31-May-2013 23:51:06.520 client 10.0.0.106#54352: read 31-May-2013 23:51:06.520 client @0x7fe04c159600: accept 31-May-2013 23:51:06.529 client 10.0.0.106#54352: TCP request 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: using view 'internal-view' 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: request is not signed 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: recursion available 31-May-2013 23:51:06.529 client 10.0.0.106#54352: view internal-view: query 31-May-2013 23:51:06.529 failed gss_inquire_cred: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Success. 31-May-2013 23:51:06.573 gss-api source name (accept) is gm-bed-desktop$@MTOLYMPUS.LOCAL 31-May-2013 23:51:06.573 process_gsstkey(): dns_tsigerror_noerror 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: send 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: sendto 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: senddone 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: next 31-May-2013 23:51:06.573 client 10.0.0.106#54352: view internal-view: endrequest 31-May-2013 23:51:06.573 client 10.0.0.106#54352: read 31-May-2013 23:51:06.609 client 10.0.0.106#54352: next 31-May-2013 23:51:06.609 client 10.0.0.106#54352: request failed: end of file 31-May-2013 23:51:06.609 client 10.0.0.106#54352: endrequest 31-May-2013 23:51:06.609 client 10.0.0.106#54352: closetcp ^C31-May-2013 23:51:29.665 shutting down 31-May-2013 23:51:29.665 stopping command channel on 127.0.0.1#953 31-May-2013 23:51:29.665 res 0x7fe0575c3010: shutdown 31-May-2013 23:51:29.665 res 0x7fe0575c3010: exiting I have checked file permissions everywhere I can think of, this is my 7th time following the official samba.org samba 4 primary domain controller tutorial and this has happened every single time. Everything else seems to be functioning, I can manage everything from a windows client with the AD snap-ins and the computer shows up in 'Computers and Users' snap in, it just does NOT have a DNS A record! Thank You! --GM -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- Michael De Groote ICT-coordinator Sint-Pietersschool Korbeek-Lo ICT-support Sancta Maria Basisschool Leuven -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] netlogon homes with Samba4 DC
hi all, ive setup Samba4 as DC on Ubuntu Server LTS and have two problems right now: 1) netlogon smb.conf [netlogon] path = /usr/local/samba/var/locks/sysvol/asta-wh.de/scripts read only = No I can access the folder and execute the script as user, but it gets not executed automaticly Ive added to [netlogon] preexec = echo %u is in %G /tmp/netlogon to see if netlogon is executed, and its not. Client PC is a new installed Windows 7 Pro. And Ive added \\SMB4SRV\netlogon\userf00.bat via M$ AD Tools to the User. Roaming Prifiles are also enabled and working. 2) homes smb.conf [homes] comment = Home Directories path = /home/HOME/%S valid users = %S read only = No browseable = Yes Home directorys are not created. Im happy with every hint to the right direction Hans -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Please Help! Dynamic DNS just will not work: failed gss_inquire_cred: GSSAPI error: Major = Unspecified GSS failure
Michael I have implemented your guide in every respect and I still have the same problem, is there some way to verify that the dns.keytab is correct? here is the output running bind in debug mode: 01-Jun-2013 14:55:57.688 running 01-Jun-2013 14:56:05.705 client 10.0.0.106#56085: UDP request 01-Jun-2013 14:56:05.705 client 10.0.0.106#56085: using view '_default' 01-Jun-2013 14:56:05.705 client 10.0.0.106#56085: request is not signed 01-Jun-2013 14:56:05.705 client 10.0.0.106#56085: recursion available 01-Jun-2013 14:56:05.705 client 10.0.0.106#56085: query 01-Jun-2013 14:56:05.705 client 10.0.0.106#56085: query 'GM-BED-DESKTOP.mtolympus.local/SOA/IN' approved 01-Jun-2013 14:56:05.706 client 10.0.0.106#56085: send 01-Jun-2013 14:56:05.706 client 10.0.0.106#56085: sendto 01-Jun-2013 14:56:05.706 client 10.0.0.106#56085: senddone 01-Jun-2013 14:56:05.706 client 10.0.0.106#56085: next 01-Jun-2013 14:56:05.706 client 10.0.0.106#56085: endrequest 01-Jun-2013 14:56:05.706 client @0x7faf00111f50: udprecv 01-Jun-2013 14:56:05.753 client 10.0.0.106#62393: UDP request 01-Jun-2013 14:56:05.753 client 10.0.0.106#62393: using view '_default' 01-Jun-2013 14:56:05.753 client 10.0.0.106#62393: request is not signed 01-Jun-2013 14:56:05.753 client 10.0.0.106#62393: recursion available 01-Jun-2013 14:56:05.753 client 10.0.0.106#62393: query 01-Jun-2013 14:56:05.753 client 10.0.0.106#62393: query 'server.mtolympus.local/A/IN' approved 01-Jun-2013 14:56:05.754 client 10.0.0.106#62393: send 01-Jun-2013 14:56:05.754 client 10.0.0.106#62393: sendto 01-Jun-2013 14:56:05.754 client 10.0.0.106#62393: senddone 01-Jun-2013 14:56:05.754 client 10.0.0.106#62393: next 01-Jun-2013 14:56:05.754 client 10.0.0.106#62393: endrequest 01-Jun-2013 14:56:05.754 client @0x7faf001202b0: udprecv 01-Jun-2013 14:56:05.799 client 10.0.0.106#60674: UDP request 01-Jun-2013 14:56:05.799 client 10.0.0.106#60674: using view '_default' 01-Jun-2013 14:56:05.799 client 10.0.0.106#60674: request is not signed 01-Jun-2013 14:56:05.799 client 10.0.0.106#60674: recursion available 01-Jun-2013 14:56:05.799 client 10.0.0.106#60674: update 01-Jun-2013 14:56:05.799 samba_dlz: starting transaction on zone mtolympus.local 01-Jun-2013 14:56:05.800 client 10.0.0.106#60674: update 'mtolympus.local/IN' denied 01-Jun-2013 14:56:05.800 samba_dlz: cancelling transaction on zone mtolympus.local 01-Jun-2013 14:56:05.800 client 10.0.0.106#60674: send 01-Jun-2013 14:56:05.800 client 10.0.0.106#60674: sendto 01-Jun-2013 14:56:05.800 client 10.0.0.106#60674: senddone 01-Jun-2013 14:56:05.800 client 10.0.0.106#60674: next 01-Jun-2013 14:56:05.800 client 10.0.0.106#60674: endrequest 01-Jun-2013 14:56:05.800 client @0x7faf00111f50: udprecv 01-Jun-2013 14:56:05.890 client 10.0.0.106#57284: new TCP connection 01-Jun-2013 14:56:05.890 client 10.0.0.106#57284: replace 01-Jun-2013 14:56:05.890 clientmgr @0x7faf0b60bb08: createclients 01-Jun-2013 14:56:05.890 clientmgr @0x7faf0b60bb08: create new 01-Jun-2013 14:56:05.890 client @0x7faf00e599b0: create 01-Jun-2013 14:56:05.890 client 10.0.0.106#57284: read 01-Jun-2013 14:56:05.890 client @0x7faf00e599b0: accept 01-Jun-2013 14:56:05.894 client 10.0.0.106#57284: TCP request 01-Jun-2013 14:56:05.894 client 10.0.0.106#57284: using view '_default' 01-Jun-2013 14:56:05.894 client 10.0.0.106#57284: request is not signed 01-Jun-2013 14:56:05.894 client 10.0.0.106#57284: recursion available 01-Jun-2013 14:56:05.894 client 10.0.0.106#57284: query 01-Jun-2013 14:56:05.894 failed gss_inquire_cred: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Success. 01-Jun-2013 14:56:05.940 gss-api source name (accept) is gm-bed-desktop$@MTOLYMPUS.LOCAL 01-Jun-2013 14:56:05.940 process_gsstkey(): dns_tsigerror_noerror 01-Jun-2013 14:56:05.941 client 10.0.0.106#57284: send 01-Jun-2013 14:56:05.941 client 10.0.0.106#57284: sendto 01-Jun-2013 14:56:05.941 client 10.0.0.106#57284: senddone 01-Jun-2013 14:56:05.941 client 10.0.0.106#57284: next 01-Jun-2013 14:56:05.941 client 10.0.0.106#57284: endrequest 01-Jun-2013 14:56:05.941 client 10.0.0.106#57284: read 01-Jun-2013 14:56:05.984 client 10.0.0.106#57284: next 01-Jun-2013 14:56:05.984 client 10.0.0.106#57284: request failed: end of file 01-Jun-2013 14:56:05.984 client 10.0.0.106#57284: endrequest 01-Jun-2013 14:56:05.984 client 10.0.0.106#57284: closetcp ^C01-Jun-2013 14:56:07.844 shutting down 01-Jun-2013 14:56:07.844 stopping command channel on 127.0.0.1#953 Jun 1 14:54:27 server named[17079]: samba_dlz: starting transaction on zone mtolympus.local Jun 1 14:54:27 server named[17079]: client 10.0.0.106#61849: update 'mtolympus.local/IN' denied Jun 1 14:54:27 server named[17079]: samba_dlz: cancelling transaction on zone mtolympus.local Thank you so very much for any help, I am so desperately lost at this point, I have tried everything. On Sat, Jun 1, 2013 at 1:13 PM, Gary Maurizi garymaur...@gmail.com wrote: Thank You so much Michael Nick, Michael I will
Re: [Samba] netlogon homes with Samba4 DC
Hi, 1) Windows 7 logs should say something about your netlogon script. 2) I think you have to create the home directories via RSAT or make a pam script and login with the newly created user. I would suggest the second option, since as I discovered when you make your home directories with RSAT you will have getfacl and winbind problems. Well, if you try to use getfacl on a RSAT made directory samba's winbind part dies. 2013-06-01 22:38 keltezéssel, spamv...@googlemail.com írta: hi all, ive setup Samba4 as DC on Ubuntu Server LTS and have two problems right now: 1) netlogon smb.conf [netlogon] path = /usr/local/samba/var/locks/sysvol/asta-wh.de/scripts read only = No I can access the folder and execute the script as user, but it gets not executed automaticly Ive added to [netlogon] preexec = echo %u is in %G /tmp/netlogon to see if netlogon is executed, and its not. Client PC is a new installed Windows 7 Pro. And Ive added \\SMB4SRV\netlogon\userf00.bat via M$ AD Tools to the User. Roaming Prifiles are also enabled and working. 2) homes smb.conf [homes] comment = Home Directories path = /home/HOME/%S valid users = %S read only = No browseable = Yes Home directorys are not created. Im happy with every hint to the right direction Hans -- Kind regards: Robert -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba4 + Shared Folders
Fernando, my installation was faulty. I reinstalled and it worked. But in linux client I can access only with 777 permission on the share folder. Could you help me? Enviado via iPad Em 29/05/2013, às 20:05, Fernando de...@netkeep.com.br escreveu: Even in /tmp folder with 777 permissions Em 29/05/2013 08:59, Diogo Borsoi escreveu: Hi Fernando, Unfortunately the same error. Diogo -- = Diogo Borsoi Mobile: +55 12 91436960 http://br.linkedin.com/in/diborsoi http://diborsoi.wordpress.com/ = On Tue, May 28, 2013 at 5:44 PM, Fernando de...@netkeep.com.br wrote: Hi Diogo, I did this way: ln -s /usr/local/samba/lib/libnss_winbind.so.2 /lib/libnss_winbind.so ln -s /lib/libnss_winbind.so /lib/libnss_winbind.so.2 Edit /etc/nsswitch.conf: passwd: compat winbind group: compat winbind shadow: compat reboot machine For the users shares: /home/NOME_DO_DOMINIO/usuario chown usuario /home/NOME_DO_DOMINIO/usuario chmod 700 /home/NOME_DO_DOMINIO/usuario Edit /usr/local/samba/etc/smb.conf [homes] comment = Home Directories browseable = no writable = yes and for the shares: [teste] path = /tmp comment = Test Share read only = no /tmp has 777 permissions, so it`s easy, for another shares, just set then properly. att. Em 28/05/2013 16:14, Diogo Borsoi escreveu: Follow output: smbclient //localhost/teste -UAdministrator -d5 INFO: Current debug levels: all: 5 tdb: 5 printdrivers: 5 lanman: 5 smb: 5 rpc_parse: 5 rpc_srv: 5 rpc_cli: 5 passdb: 5 sam: 5 auth: 5 winbind: 5 vfs: 5 idmap: 5 quota: 5 acls: 5 locking: 5 msdfs: 5 dmapi: 5 registry: 5 lp_load_ex: refreshing parameters Initialising global parameters rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384) INFO: Current debug levels: all: 5 tdb: 5 printdrivers: 5 lanman: 5 smb: 5 rpc_parse: 5 rpc_srv: 5 rpc_cli: 5 passdb: 5 sam: 5 auth: 5 winbind: 5 vfs: 5 idmap: 5 quota: 5 acls: 5 locking: 5 msdfs: 5 dmapi: 5 registry: 5 params.c:pm_process() - Processing configuration file /usr/local/samba/etc/smb. conf Processing section [global] doing parameter workgroup = TEST doing parameter realm = test.local doing parameter netbios name = SMB doing parameter server role = active directory domain controller doing parameter server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl , winbind, ntp_signd, kcc, dnsupdate pm_process() returned Yes added interface eth0 ip=192.168.137.2 bcast=192.168.137.255 netmask=255.255.255. 0 Netbios name list:- my_netbios_names[0]=SMB Client started (version 4.0.5). Enter Administrator's password: Opening cache file at /usr/local/samba/var/lock/gencache.tdb Opening cache file at /usr/local/samba/var/lock/gencache_notrans.tdb sitename_fetch: No stored sitename for TEST.LOCAL no entry for localhost#20 found. resolve_lmhosts: Attempting lmhosts lookup for name localhost0x20 resolve_lmhosts: Attempting lmhosts lookup for name localhost0x20 startlmhosts: Can't open lmhosts file /usr/local/samba/etc/lmhosts. Error was No such file or directory resolve_wins: WINS server resolution selected and no WINS servers listed. resolve_hosts: Attempting host lookup for name localhost0x20 namecache_store: storing 2 addresses for localhost#20: [::1],127.0.0.1 Connecting to ::1 at port 445 Socket options: SO_KEEPALIVE = 0 SO_REUSEADDR = 0 SO_BROADCAST = 0 TCP_NODELAY = 1 TCP_KEEPCNT = 9 TCP_KEEPIDLE = 7200 TCP_KEEPINTVL = 75 IPTOS_LOWDELAY = 0 IPTOS_THROUGHPUT = 0 SO_SNDBUF = 172880 SO_RCVBUF = 87380 SO_SNDLOWAT = 1 SO_RCVLOWAT = 1 SO_SNDTIMEO = 0 SO_RCVTIMEO = 0 TCP_QUICKACK = 1 TCP_DEFER_ACCEPT = 0 session request ok Doing spnego session setup (blob length=96) got OID=1.2.840.48018.1.2.2 got OID=1.2.840.113554.1.2.2 got OID=1.3.6.1.4.1.311.2.2.10 got principal=not_defined_in_RFC4178@please_ignore Got challenge flags: Got NTLMSSP neg_flags=0x60898215 NTLMSSP_NEGOTIATE_UNICODE NTLMSSP_REQUEST_TARGET NTLMSSP_NEGOTIATE_SIGN NTLMSSP_NEGOTIATE_NTLM NTLMSSP_NEGOTIATE_ALWAYS_SIGN NTLMSSP_NEGOTIATE_NTLM2 NTLMSSP_NEGOTIATE_TARGET_INFO NTLMSSP_NEGOTIATE_128 NTLMSSP_NEGOTIATE_KEY_EXCH NTLMSSP: Set final flags: Got NTLMSSP neg_flags=0x60088215 NTLMSSP_NEGOTIATE_UNICODE NTLMSSP_REQUEST_TARGET NTLMSSP_NEGOTIATE_SIGN NTLMSSP_NEGOTIATE_NTLM NTLMSSP_NEGOTIATE_ALWAYS_SIGN