Re: [Samba] getent and a lot of users
Hello, On 16 August 2010 14:38, raveenpl wrote: > > Hi, > > In my environment I have windows ads domain with 180k users. > > I use Samba 3.5.4 and I noticed that not always all users are returned when > I use getent command (sometimes it is half of whole list, sometimes this > list is empty). > > Anybody has similar problem? "ads domain" - where do you pull your data from? Is it OpenLDAP or AD? Check if it's not your backend that limits the size of the answer. OpenLDAP has a configuration directive called "sizelimit" (more in man slapd.conf). That would be my first suggestion. I also recommend ngrep for checking things up. Regards, Michal > > > -- > View this message in context: > http://old.nabble.com/getent-and-a-lot-of-users-tp29449147p29449147.html > Sent from the Samba - General mailing list archive at Nabble.com. > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Youtube Video
Hello, On 12 August 2010 03:38, ITPFS oota wrote: > On Mon, Aug 09, 2010 at 05:18:41PM +1200, David Harrison wrote: >> For those interested, I found David's screencast on YouTube here: >> http://www.youtube.com/watch?v=8tYnjp_BleI > > I watched it. But, screen size too large (1280x1024?),I can't recognize > character. > > If you make another video, please set more small screen size like 800x600. I have just watched it - make sure you set the quality to 720p and enable full screen. I was watching it on 1680x1050 and everything was looking really fine - no problems with letters being too small. Regards, Michal > > -- > --- Oota Toshiya --- t-oota at dh.jp.nec.com > NEC Systems Software Operations Unit Shiba,Minato,Tokyo > IT Platform Solutions Division Japan,Earth,Solar system > (samba-jp/ldap-jp Staff,mutt-j/samba-jp postmaster) > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] ldap? Samba? Nss?
Hello, If you want to avoid using get try setting "ldapsam:trusted = yes". This way Samba will fetch user info directly from LDAP instead of going through the getpwent and others which reaally pull a lot of data. That should reduce the time needed to login a bit (at least that worked for me). Regards, Michal 2009/8/27 Ryan Suarez : > Just curious, Are you using samba with nss_ldap and pam_ldap for user > lookups and authentication? > > sgm...@mail.bloomfield.k12.mo.us wrote: >> >> It seems my logins are taking a long time to get logged in. I am guessing >> that it is worse when classes start and a lot of the kids try to login at >> once. My old server did not seem to have this problem though and we have >> the same number of students. >> >> Where should I start looking at this? I am guessing that it is ldap, but >> want to make sure. >> >> If I log in at a computer and go to start->run and type \\server, it may >> take 1-2 minutes until I can see my shares which is the same thing the >> students are seeing when logging into the domain. I just wanted to leave >> any profile copying out of the equation so I just did it this way. >> >> I noticed this first on my batch user add program for adding users to >> ldap/samba. The program reads in the users and groups with getpwent and >> getgrent and it really takes a long time. >> >> Any suggestions of what to start looking for would be appreciated. >> >> >> > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Antwort: Re: central PDC + remote BDCs: LDAP strategy, my lack of comprehension
Hello Sven, How about using multiple password servers? A copy-paste from man: Example: password server = NT-PDC, NT-BDC1, NT-BDC2, * This way you could have two password servers in two locations. If one fails the other will take over (it sounds easy, but make sure you read it carefully in the manual as there are some restrictions regarding this behavior). Regards, Michal 2009/8/21 : > Thanks Michael, this did advance my progress. With “domain master = no”, > “password server” set to the central server and “passdb backend” pointing > to the local LDAP replica, my XP client now contacts the central SAMBA > server when joining the domain. But now it is always logging on to the > central server and not using the other, remote samba server at all (which > honestly is in the same LAN in my testing environment). This is unwanted, > partly because the logon script resides on the remote system and to reduce > network traffic between client and central server (which would be fragile > WAN traffic once rolled out). > > Is there any way I can influence to which server the client logs on to? > > I tried changing the central server's option “domain logons” to “no”, but > this had the strange effect of the central server creating a second LDAP > sambaDomainName entry with its NetBIOS name as domain name. Clients could > not log on to the domain anymore because of conflicting domain portions > (SID trouble). I had to change it back. > > Best regards > Sven Ehret > > > > > Von: > Michal Dobroczynski > An: > sven.eh...@comdok.de > Kopie: > samba@lists.samba.org > Datum: > 20.08.2009 14:50 > Betreff: > Re: [Samba] central PDC + remote BDCs: LDAP strategy, my lack of > comprehension > > > > Hello Sven, > I have the following structure here: > - one PDC talking to RW OpenLDAP > - three BDCs talking to RO OpenLDAP replica > > Basically I am using additional BDCs as file servers - and so far it > works fine. Please take a look on "password server" and "passdb > backend" (here you specify the RO replica). Think also about > "ldapsam:trusted = yes" (large performance gain). > > One of the BDCs is located 500km from where I am right now - and there > is also a replica out there (accessed by Samba running out there to > get all user/group info - but "password server" is located here). > > According to a much older e-mail (when I had a question about BDCs) - > a copy-paste from Volker's reply: > --- copy paste --- > On Fri, Oct 05, 2007 at 10:15:02PM +0200, Michal Dobroczynski wrote: >> Well - what I have discovered is that setting >> >> domain logons = Yes >> domain master = No >> >> seems to solve the problem. > > ... because this *is* the only way to tell Samba to be a > BDC. This must be somewhere in the docs. > > Volker > --- copy paste --- > > I hope this helps a bit. > > Regards, > Michal > > 2009/8/20 : >> Hello, I am trying to figure out how to implement a samba domain in a >> number of remote offices around the world with partly bad and often >> interrupted WAN connections/VPNs. The goal is to administer the > directory >> from the central data center. >> >> My obvious choice would be to set up a central server with >> SAMBA+OpenLDAP+smbldap-tools and in each remote office a SAMBA server > with >> OpenLDAP as a read-only slave from the central master. >> >> Although I seem to make progress, it seems that the more time I invest > in >> this project, the more questions emerge. My latest issue made me create >> this mailman account. >> >> My question is: When the remote SAMBA server only talks to its own > local, >> read-only LDAP slave, how is it going to change user/machine passwords > or >> add machine accounts (when joining the domain)? >> >> In my test setup an XP client inisisted on trying to join the BDC, > failing >> because a) smbldap-tools is not installed or b) it could not write to > the >> slave LDAP directory. >> >> I surely could configure the remote SAMBA to talk to the central > OpenLDAP >> service, but then I would not need LDAP replication and would not have a >> failover in case the WAN link goes down. >> >> There was the SAMBA option to have multiple tdbsam backends but this is >> not supported anymore. >> >> I hope that my explanation does enable somebody to give me a hint >> understanding what can/should/must be done. >> >> Kind regards >> Sven Ehret >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/samba >> > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] central PDC + remote BDCs: LDAP strategy, my lack of comprehension
Hello Sven, I have the following structure here: - one PDC talking to RW OpenLDAP - three BDCs talking to RO OpenLDAP replica Basically I am using additional BDCs as file servers - and so far it works fine. Please take a look on "password server" and "passdb backend" (here you specify the RO replica). Think also about "ldapsam:trusted = yes" (large performance gain). One of the BDCs is located 500km from where I am right now - and there is also a replica out there (accessed by Samba running out there to get all user/group info - but "password server" is located here). According to a much older e-mail (when I had a question about BDCs) - a copy-paste from Volker's reply: --- copy paste --- On Fri, Oct 05, 2007 at 10:15:02PM +0200, Michal Dobroczynski wrote: > Well - what I have discovered is that setting > > domain logons = Yes > domain master = No > > seems to solve the problem. ... because this *is* the only way to tell Samba to be a BDC. This must be somewhere in the docs. Volker --- copy paste --- I hope this helps a bit. Regards, Michal 2009/8/20 : > Hello, I am trying to figure out how to implement a samba domain in a > number of remote offices around the world with partly bad and often > interrupted WAN connections/VPNs. The goal is to administer the directory > from the central data center. > > My obvious choice would be to set up a central server with > SAMBA+OpenLDAP+smbldap-tools and in each remote office a SAMBA server with > OpenLDAP as a read-only slave from the central master. > > Although I seem to make progress, it seems that the more time I invest in > this project, the more questions emerge. My latest issue made me create > this mailman account. > > My question is: When the remote SAMBA server only talks to its own local, > read-only LDAP slave, how is it going to change user/machine passwords or > add machine accounts (when joining the domain)? > > In my test setup an XP client inisisted on trying to join the BDC, failing > because a) smbldap-tools is not installed or b) it could not write to the > slave LDAP directory. > > I surely could configure the remote SAMBA to talk to the central OpenLDAP > service, but then I would not need LDAP replication and would not have a > failover in case the WAN link goes down. > > There was the SAMBA option to have multiple tdbsam backends but this is > not supported anymore. > > I hope that my explanation does enable somebody to give me a hint > understanding what can/should/must be done. > > Kind regards > Sven Ehret > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Copy *just* user accounts from LDAP?
Hello, 2009/6/23 Adam Williams : > ldapsearch -v -x -h roark.mdah.state.ms.us -D > "cn=Manager,dc=mdah,dc=state,dc=ms,dc=us" -w -b > "ou=People,dc=mdah,dc=state,dc=ms,dc=us" > somefile > > scp somefile over. load it with slapadd or ldapadd. If you plan to use slapadd - then dump the LDAP database with slapcat command. It is the recommended way of exporting/importing data into OpenLDAP. Then you can post-process the file and remove machine accounts (I have them under ou=Computers for example). For keeping account info in sync - you can always setup the easiest replication scheme - slurpd. Comes as part of OpenLDAP. But that's for the whole tree - if you wish to replicate only parts of it I think syncrepl is the way to go (AFAIR slurpd can't perform selective replication). Periodical slapcat/slapadd is a solution, but as the DB will be growing it will be taking more and more time to setup the database (depends on the number of entries, configured indexes etc.). And during these DB syncs you have to disable slapd, which means samba clients will also have problems connecting at that particular time. Regards, Michal > > > jo...@primebuchholz.com wrote: >> >> Greetings All, >> >> I have a Samba-controlled domain, with everything in LDAP. >> >> I also have an off-site server that I rsync all our files to every couple >> hours. >> What I'd like to do is set up a new Samba domain on the off-site server so >> users can log into it for disaster recovery purposes - and I'd like to keep >> the user account information synchronized with the main server so user's >> passwords are the same, etc. - while leaving behind workstation accounts, >> etc. >> >> Does anyone have any ideas on how best to approach this? I guess what I'm >> asking is, I'm OK with slapcat/slapadd'ing periodically from the main server >> to the off-site server, but does anyone have ideas for how to filter just >> the user accounts into the LDIF? >> >> Thanks in advance, >> >> -John >> >> -- >> Please consider the environment before printing this e-mail. >> This e-mail is intended only for the named person or entity to >> which it >> is addressed and contains valuable business information that is >> privileged, confidential and/or otherwise protected from >> disclosure. >> Dissemination, distribution or copying of this e-mail or the >> information >> herein by anyone other than the intended recipient, or an employee, >> or >> agent responsible for delivering the message to the intended >> recipient, >> is strictly prohibited. All contents are the copyright property of >> the >> sender. If you are not the intended recipient, you are >> nevertheless >> bound to respect the sender's worldwide legal rights. We require >> that >> unintended recipients delete the e-mail and destroy all electronic >> copies in their system, retaining no copies in any media. If you >> have >> received this e-mail in error, please immediately notify us by >> calling >> our Help Desk at (603) 433-1143, or e-mail to i...@primebuchholz.com. >> We appreciate your cooperation. >> >> > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Make CIFS look like NFS
Hello, Thanks for the details - they really change completely the whole background ;) Anyway, there's not much I can help in such situation - but see my comments below. Maybe they will help (convince?) in some way. 2009/6/4 Daniel L. Miller : > Michal Dobroczynski wrote: >> >> Hi Daniel, >> Can you specify what NFS features are important to you in such case? >> (in other words please define "look like NFS") >> >> Regards, >> Michal > > Oh - you want me to be specific? What fun would that be? ;-) > > Ok, specifics... > > I'm trying to run an IMAP mail server (Dovecot) in a virtual machine. > However, I do not want the messages stored within the virtual disk. So - > the question was how the virtual machine could access those files. Dovecot > has been setup and tested with NFS. However, when I asked about > compatibility with CIFS, I was told it would probably not work. Testing on > my own showed that in fact that this resulted in problems - it appeared temp > files would be created and never deleted. I tried a few different smb.conf > & mount parameters that SEEMED appropriate - but wasn't able to get it to > work. So... > I am not aware of possible issues (fs calls circus) apart from using ":" in file names: smb: \mico\> put "test:test" putting file test:test as \mico\test:test (0,0 kb/s) (average 0,0 kb/s) smb: \mico\> ls . D0 Thu Jun 4 19:48:34 2009 .. D0 Thu Jun 4 19:48:29 2009 TLNVL5~P 0 Thu Jun 4 19:48:40 2009 > I guess my specific question would be how can I setup CIFS so Dovecot will > work with it as happily as it does with NFS? I think you will have to change your requirements and consider NFS instead of CIFS :( Regards, Michal > -- > Daniel > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Make CIFS look like NFS
Hello, And if you want some unix-like features on top, make sure "unix extensions" is set to yes. But be careful with that and test it beforehand on all systems (different operating systems I mean). It can sometimes break little things for Mac/Win. Regards, Michal 2009/6/3 Brian Krusic : > You can have an NFS mount on your Nix box like /JOBS/stuff and a CIFS mount > on XP like \\JOBS\stuff. > > In this case, JOBS is the Samba server name. > > This is how I maintain the same paths in scripts on diff platforms. Al you > have to ensure is that your app will obey UNC paths so that a drive letter > is never saved out in the file. > > - Brian > > On Jun 3, 2009, at 11:38 AM, Daniel L. Miller wrote: > >> Is it possible to make CIFS "look like" NFS via some configuration/mount >> options? What I mean is, from a client point of view, will the mounted >> share behave EXACTLY like NFS will? >> >> -- >> Daniel >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/samba > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Make CIFS look like NFS
Hi Daniel, Can you specify what NFS features are important to you in such case? (in other words please define "look like NFS") Regards, Michal 2009/6/3 Daniel L. Miller : > Is it possible to make CIFS "look like" NFS via some configuration/mount > options? What I mean is, from a client point of view, will the mounted > share behave EXACTLY like NFS will? > > -- > Daniel > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Timing in a script
2009/5/15 Volker Lendecke : > On Fri, May 15, 2009 at 07:13:42AM -0700, Pete Clapham wrote: >> Hi, all -- >> >> I am trying to write a script in which I can add users and their samba >> passwords easily and quickly. It looks something like: >> useradd -c "User Name" -g groupname -p unixpassword accountname >> >> echo -e "smbpassword\nsmbpassword\n" | pdbedit -a -t -u accountname >> >> If >> I type the lines from the keyboard, it works fine. However, when I try >> to execute the script, the pdbedit on the second line reports that >> there's no unix accountname to apply to samba. I assume that this is >> because the useradd process hasn't finished when the pdbedit is >> executed. > > nscd? But nscd should answer properly - in other words - you should get b0rken answer when nscd's db is corrupted? Can you please correct me if I'm wrong... Regards, Michal > > Volker > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Timing in a script
Hello, useradd -c "User Name" -g groupname -p unixpassword accountname sleep 5s echo -e "smbpassword\nsmbpassword\n" | pdbedit -a -t -u accountname Did you want something like that? Regards, Michal PS I am using such a trick to make sure LDAP data is distributed among replicas, so that other distributed file servers have specified users when they ask for them... 2009/5/15 Pete Clapham : > Hi, all -- > > I am trying to write a script in which I can add users and their samba > passwords easily and quickly. It looks something like: > useradd -c "User Name" -g groupname -p unixpassword accountname > > echo -e "smbpassword\nsmbpassword\n" | pdbedit -a -t -u accountname > > If > I type the lines from the keyboard, it works fine. However, when I try > to execute the script, the pdbedit on the second line reports that > there's no unix accountname to apply to samba. I assume that this is > because the useradd process hasn't finished when the pdbedit is > executed. > > > Is there a way to insure that the useradd has completed its > execution before the pdbedit starts? Alternatively is there a way to > insert a delay between the two commands to allow the useradd to > complete? > > Thanks. > > > cheers, > pete > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] 4TB samba display 140GB in Windows
Hello, Have you tried this in smb.conf: dfree command = /path/to/your/tool/saying/magic ? It might be a b0rken Windows control or b0rken anything else, but try to experiment with dfree to see where's the problem. Please post back results as I'm also about to enter TB world with Samba in the coming days... Regards, Michal 2009/4/28 Vnpenguin : > On Wed, Apr 22, 2009 at 15:00, zong yongchun wrote: >> Hello All, >> I do a 4TB filesystem for samba,but in Windows it only display 140GB,How to >> fix it? > > It's easy! Replace your Windows by a Linux desktop :-) > > Sorry, can't help > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Low cost additional storage on a Samba server
Hello John, Thanks for answer. I did not expect that you will mention a board that I have in my home computer :) Regards, Michal 2009/4/28 John Drescher : > On Tue, Apr 28, 2009 at 11:20 AM, Michal Dobroczynski > wrote: >> Hello, >> I can only confirm - yes - _use_ linux soft raid... do not believe all >> these "smart RAID5 hw cards" :) >> >> Regarding the machines "bought in 2008" - can you please tell me if >> you have a separate controller (I am interested in brand/model) for >> the drives or you are using onboard chip? >> > I am using ASUS M2N (AMD systems) and ASUS P5Q Pro (Intel systems) > desktop boards with the onboard 6 to 8 SATA ports. To achieve good > write performance I keep the default 64K chunks and tune the stripe > cache size > > echo 2048 > /sys/block/md1/md/stripe_cache_size > echo 2048 > /sys/block/md3/md/stripe_cache_size > > John > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Low cost additional storage on a Samba server
Hello, I can only confirm - yes - _use_ linux soft raid... do not believe all these "smart RAID5 hw cards" :) Regarding the machines "bought in 2008" - can you please tell me if you have a separate controller (I am interested in brand/model) for the drives or you are using onboard chip? Regards, Michal 2009/4/28 John Drescher : > On Tue, Apr 28, 2009 at 8:19 AM, Gary Dale wrote: >> Easiest way is to implement software RAID on your current server. >> - add 2 (or more) new drives partitioned identically to your current drive >> (unless you want to replace your existing drive) >> - partition type is fd (RAID) >> - create RAID 5 arrays using the new drives & partitions (except for /boot >> which should be on a RAID 1 array) >> - common setup is (but use whatever partition setup you currently have): >> - /boot --> RAID 1 >> - / --> 20G RAID 5 >> - /home --> rest of space >> - tell mdadm that 1 drive is missing from each array >> - copy the files from each partition on your current drive to the RAID >> partitions on the new array >> - update grub to use the new RAID arrays >> - reboot into new array >> - if it works, add your original drive (or its replacement) into the RAID >> array(s) >> >> Needless to say, back up everything before starting. Creating a RAID array >> is safe but mistakes happen and hardware fails. >> >> Benefit of RAID over NAS is >> - don't need to change client setups >> - can be expanded by adding new drives into array >> - speed on reads >> - protection against hard drive failure >> >> Google Linux RAID setup for detailed howtos. >> > > That is pretty much what I do. In the spring of 2008 I was adding 4 > TB+ raid 5 dual core servers (using 750GB drives) with 4 or 8GB of RAM > for under $2000 US. Now you can easily get a quad core with 7 or 8TB > for the same price.. > > I highly recommend linux software raid (unlike windows software raid > which is horribly broken performance wise) linux software raid > performs well. These 4.X TB raid 5 machines I bought in 2008 write at > over 200 MB/s and read at 300MB/s and they do this at less than 8 % > CPU usage on a single core. > > John > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Low cost additional storage on a Samba server
Hello, Some of our shares available via Samba come "via NFS" and so far we had no problems at all, thus I can recommend you that solution (people have no problems with ØÆÅ characters here). If you are unsure - run little tests, play with different character supports and then roll the real solution. You can even use your laptop for that. On top of that please consider another option - you can just buy a SATA controller and put inside two 1TB disks (if you wish to have a nicely working RAID1 for example). A long lasting setup with redundancy - and with current prices I would consider that affordable, close to low-cost. The best plus is that you get 1TB of space and you don't need a drive bay for n-disks in order to have similar capacity. About TB disks - we have been careful in the beginning, because some time ago TB disks "were a bit too new" to be used in production (slight paranoids here). But right now I'm about to install Linux on a new server with 4x1TB drives. Regards, Michal 2009/4/28 Jean-Francois Leblond : > > Hi, > > At my client, I installed Samba v3 > on a Linux box (Centos 4) with a NT style domain to act as a file server > (about 50 Windows clients). > It's been running fine for a few years now. > > It's about to run out of disk space. > > I was looking for a low cost solution and came across the low-cost NAS that > are available now for the soho market. > > The problem is that some support only smb file access for Linux clients which > for my case would be out of the question. > > Some support NFS mounts from Linux host. > > I wanted to have some of your comments on presenting a NFS mounted filesystem > on my Samba server to Windows clients. Do you think, I would be looking for > trouble ? I'm in a french speaking region so we're using accent. My > experience with NFS is a little bit old and I want to make sure I wouldn't > loose the french accent or spaces in filenames along the way. > > Of course a direct-attached storage would be a sure thing but I was looking > for a lower cost solution. > > Thanks in advance > > JF Leblond > > _ > Réinventez comment vous restez en contact avec le nouveau Windows Live > Messenger. > http://go.microsoft.com/?linkid=9650737-- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] How to make fully working samba backup/migration?
Hello, I have never been migrating a working samba to another computer, but we have been many times transferring data from host to host during migrations and "rsync" was the best tool available. Take a look on the option "-a, --archive archive mode; equals -rlptgoD (no -H,-A,-X)". The same "archive" mode you will find in cp and others. I do not _know_ how ACLs are handled in this case, but I think it's an easy thing to check. Regards, Michal 2009/4/26 Zbigniew Luszpinski : > Hello, > > how to correctly make full and fully working samba backup? > I read articles and newsgroups seeing how many people failed because something > was forgotten to be copied or saved and restored/merged. > Usually password and user accounts does not work. > What I found is most people copy: > /etc/samba > the smarter copy also: > /home > geeks knows they should also copy: > /etc/passwd > /etc/shadow > /etc/groups > and > /var/lib/samba > where tdb files are kept. > > Looking at these gathered files I think I should also store file rights and > user/owner of each file. Finally I should merge: > /etc/passwd > /etc/shadow > /etc/groups > on new system with these I backed up from older system. > > How to copy files from users' accounts at /home/* if files created by M$ > Windows have characters in file names Linux can not handle during copy? How to > preserve windows file rights when migrating samba from Linux to Linux? > > I hope I identified all problems which may happen... If not tell me what I > missed and tell me how to fix such problem. > > Did I miss something or this is full list of operations to be done to have > fully working samba backup? > > have a nice day, > zbiggy > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Changing users home directory location
Hello, When you create symbolic links to your home directories then take a look also on the following configuration directive: "unix extensions". We had to set it to "no", otherwise Macs would not really work. Regards, Michal 2009/4/25 Miguel Medalha : > >> >> But again, no go. So I am assuming there must be another setting >> > Create a symbolic link from /home to your new home location. > You won't need to change anything in your smb.conf. > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Re: Authentication
Hello, Yes - LDAP can work with relational databases but the response time will be slower than in case of BDB backend (BDB - trees & leaves, *SQL - relations, thus table-like structure). I do not exactly remember whether the SQL backend works out of the box, but at the time when I was looking at it (ca. 2 years ago) some tweaking was mandatory. Regards, Michal 2009/4/24 Richard Foltyn : > Natanahel wrote: > >> My question is: >> >> Can I use Samba with authentication in LDAP using POSTGRESQL like a >> Database of LDAP??? > > Actually this question is totally unrelated to Samba since Samba does > not care what backend your LDAP server uses. > > Therefore, find an LDAP server that support Postgres as backend. ;) > > Google suggests that people have been able to run OpenLDAP on top of > PostgreSQL instead of BDB. > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] security = domain -- samba adds its netbios name as samba domain to LDAP
On 05/10/2007, Volker Lendecke <[EMAIL PROTECTED]> wrote: > On Fri, Oct 05, 2007 at 10:15:02PM +0200, Michal Dobroczynski wrote: > > Well - what I have discovered is that setting > > > > domain logons = Yes > > domain master = No > > > > seems to solve the problem. > > ... because this *is* the only way to tell Samba to be a > BDC. This must be somewhere in the docs. Yes - but now it's 100% clear. Thanks for help. Regards, Michal > > Volker > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] security = domain -- samba adds its netbios name as samba domain to LDAP
On 05/10/2007, Volker Lendecke <[EMAIL PROTECTED]> wrote: > On Fri, Oct 05, 2007 at 07:15:44PM +0200, Michal Dobroczynski wrote: > > > > I experienced exactly the same behaviour. I expected my BDC stations > > to reuse the 'workgroup' attribute, but the effect was exactly like > > Christian wrote. > > What do you mean by "works as designed"? Can we just use it that way, > > where each BDC has a domain on its own? > > Ok. I think I understood something wrong. I thought the > logfile was from a member server, not from a BDC. If a BDC > creates its own name as a sambaDomain object in LDAP, then > there's a misconfiguration or a bug. A BDC does not have a > local SAM, only member servers do. Well - what I have discovered is that setting domain logons = Yes domain master = No seems to solve the problem. When configured in such a way the BDC controller searches for the proper domain and does not try to create a new one. I think this is the way a BDC should be configured - but of course I'd be glad to hear some comments from people that use similar structure (description just below). The main idea about my setup is: one samba PDC and then lots of BDCs which act as file servers (well, maybe BDC is a too strong word for that - I just don't want to ask people again for the same username/password). This way I can nicely distribute the bandwith among people (because once they login onto a windows workstation their home drive is mounted automatically - and they don't care if it comes from file server A or D, at least as long as it works :). Of course everything is powered by OpenLDAP (BDC get read-only access to replicas). Regards, Michal > > Sorry for the confusion, > > Volker > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] security = domain -- samba adds its netbios name as samba domain to LDAP
On 05/10/2007, Volker Lendecke <[EMAIL PROTECTED]> wrote: > On Fri, Oct 05, 2007 at 02:11:23PM +0200, Christian Brandes wrote: > > The samba domain should be "mycompany" as stated in workgroup and not > > "USER" as stated in netbios name! > > Works as designed. Every box has a SAM of its own. I experienced exactly the same behaviour. I expected my BDC stations to reuse the 'workgroup' attribute, but the effect was exactly like Christian wrote. What do you mean by "works as designed"? Can we just use it that way, where each BDC has a domain on its own? Regards, Michal > > Volker > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
