Re: [Samba] NT username/password export
On November 21, [EMAIL PROTECTED] said: Sorry for all the newbie questions... I could have sworn I saw something about a utility that exports the SAM database from NT into Linux.. seems like it is the lego syndrome, saw it while doing WINBIND searches, can't find it elsewise...anyway...could someone point me in the right direction? There are two ways of doing this that I'm aware of: pwdump and net rpc vampire. The former is an exe that runs on the domain controller and dumps out (I think) a smbpasswd-format file, the latter uses similar methods to BDC synchronization to extract the information. pwdump should turn up in any halfway decent google search, and net rpc vampire is part of the current CVS. Cheers, Waider. -- [EMAIL PROTECTED] / Yes, it /is/ very personal of me. At the end of every seven years thou shalt make a release. - Deuteronomy on software schedules -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] NT username/password export
On November 21, [EMAIL PROTECTED] said: Thanks for those utiltiies...I knew i saw them somewhere...I was successful in creating a smbpasswd file using the pwdump utility.. Now here is my question (maybe someone know a work around): If a username/password pair exists in the smbpasswd file...is there a way that the corresponding username/UID pair does not need to exist in the passwd file? I guess what I am hoping for is a way samba can just autheticate off of the smbpasswd file so I dont have to script out a useradd based on that pwdump file. Right now, as I understand it, you must have a unix account to correspond to the SMB account. I thought that winbindd might alleviate this in the particular situation I'm dealing with, but it doesn't appear to be the case. Perhaps manually building your smbpasswd obviates the requirement for such accounts. So. I'd suggest you try joining to your domain, then fire up winbindd, and see what happens. And, of course, report back :) Cheers, Waider. -- [EMAIL PROTECTED] / Yes, it /is/ very personal of me. Veep says, you could scream MY PANTS ARE FULL OF EELS with a big smile or a big grimace on your face. good stuff -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3 as BDC
On November 20, [EMAIL PROTECTED] said: It should work, once you get the SIDs right, for users at least (assuming ldap or rsynced smbpasswd). Other things are harder to get synced across correctly. There is some (slightly out date) documentation in the source disto. I'm fighting with this at the moment. net rpc vampire isn't documented in the source distro (that I can find, anyway) but for anyone else playing with it, it does take a bit of fiddling to make it work. I presume there's a way to make all this work without creating Unix accounts (LDAP or winbindd) but since I'm trying not to go too far out on a limb, I will note that the use-unix-accounts option requires you to have working add machine, add user, and add group scripts. It will fail non-obviously if you don't have these (for example, it claims to be creating the groups, but doesn't do so, because you've not defined the script - this had me stumped for a while). The question I'd have, since it's pertinent to what I'm trying to do: Is it possible to net rpc vampire a PDC, then promote Samba to the PDC and demote the Windows box to the BDC? I don't care if syncing doesn't work after I've done that, I just need to be able to force every machine in the domain to recognise that the PDC is, er, not the PDC any more, but I can't take the PDC out of the domain entirely because there are other things running on it. Cheers, Waider. -- [EMAIL PROTECTED] / Yes, it /is/ very personal of me. A one question geek test. If you think it's funny, you're a geek. Seen on a California license plate on a VW Beetle: Feature - Joshua D. Wachs -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3 as BDC
On November 20, [EMAIL PROTECTED] said: If you want to contribute some doco or simply a discussion of what you did and how you did it, it would be most appreciated. Certainly will do. Once I get it working and all :) You must use the 'add user' scripts etc - because we don't automatically create these users, and we don't allow users without a unix id to be represented. I might add some more LDAP magic toward this, but that's how it is for now. So basically there is currently no way around the requirement for a Unix ID and/or group? You can't demote to BDC - it will try and sync the passwords, and that will fail badly. However, if demoted all the way to domain member, it should work. Okay. Demonstrating my ignorance, how the hell do I demote it all the way to a domain member without reinstalling NT? Cheers, Waider. -- We are experiencing MVS processor spin loops, the programs are running while holding a disabled CPU. This is causing XCF communication delays to the point where we are losing VTAM RTP routing, are suffering OSPF adjacency failures on TCP/IP dynamic routing and MIM VCF failures. - Reported via Slashdot -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba