[Samba] Re: how to change password from win2k client
Jamrock, I am using samba 3.x and I am using UNIX /etc/shadow for passwd authentication. shasan * List: samba <http://marc.theaimsgroup.com/?l=samba&r=1&w=2> Subject:[Samba] Re: how to change password from win2k client From: "Jamrock" <http://marc.theaimsgroup.com/?a=10587207851&r=1&w=2> Date: 2004-02-08 13:25:41 <http://marc.theaimsgroup.com/?l=samba&r=1&w=2&b=200402> Message-ID: <http://marc.theaimsgroup.com/?i=%3Cc05d9s$ic1$1%20%28%29%20sea%20%21%20gmane%20%21%20org%3E> [Download message RAW <http://marc.theaimsgroup.com/?l=samba&m=107624673530859&q=raw>]* "Sohail Hasan" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] n When i try to change a user password from my win2k client it says that "you do not have permission to change the password", what configuration parameter do i need to make that work. Sincerely, shasan What version of Samba are you using? If Samba 3.x, which user information? backend are you using? -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] how to change password from win2k client
I am using samba as a PDC for my WIN2K professional network. My configuration is as under: [global] workgroup = ABC netbios name = COMPAQ server string = %h server (Samba %v) security = user encrypt passwords = Yes null passwords = Yes passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n . unix password sync = Yes syslog = 0 log file = /var/log/samba/log.%m max log size = 1000 add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u logon script = \\%N\netlogon\logon logon drive = H: domain logons = Yes os level = 99 preferred master = True domain master = True [netlogon] path = /export/smb/netlogon write list = JOHN When i try to change a user password from my win2k client it says that "you do not have permission to change the password", what configuration parameter do i need to make that work. Sincerely, shasan -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] NT4 PDC Account transfer
Craig White wrote: On Wed, 2004-01-21 at 22:31, Sohail Hasan wrote: Beast wrote: * Sohail Hasan <[EMAIL PROTECTED]> nulis: Hi All, I am following the procedure given in Samba-HOWTO for the migration to samba from NT4 PDC, however in the account transfer from the PDC step I am getting the following failure when running the command: net rpc vampire -S server -U administrator%passwd Could not retrieve domain trust secret Has anybody got any idea of what else is needed here. Did you join this samba (as bdc) before running rpc vampire? Did you set samba to have same SID as NT domain? net rpc getsid -S "NTname" -Uadministrator%passwd --beast Now when I run rpc vampire I get this: Fetching DOMAIN database SAM_DELTA_DOMAIN_INFO not handled Creating unix group: 'Domain Admins' Creating unix group: 'Domain Users' Creating unix group: 'Domain Guests' Creating unix group: 'PROGRAMMER' Creating unix group: 'Mohicans' Creating unix group: 'NDA' Creating account: Administrator Could not create posix account info for 'Administrator' Creating account: Guest Could not create posix account info for 'Guest' Creating account: testuser Could not create posix account info for 'testuser' [2004/01/22 10:08:04, 0] passdb/pdb_smbpasswd.c:build_smb_pass(1146) build_sam_pass: Failing attempt to store user with non-uid based user RID. . . . Could not create posix account info for 'lab1$' Creating account: SABBASI$ Could not create posix account info for 'lab2$' Creating account: SIDDIQUI$ Could not create posix account info for 'john$' Creating account: MAMAN$ Could not create posix account info for 'peter$' [2004/01/22 10:08:06, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(591) Could not find global group 512 [2004/01/22 10:08:06, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(591) Could not find global group 513 [2004/01/22 10:08:06, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(591) Could not find global group 514 . . . Creating unix group: 'Debugger Users' Fetching BUILTIN database SAM_DELTA_DOMAIN_INFO not handled Creating unix group: 'Account Operators' Creating unix group: 'Administrators' Creating unix group: 'Backup Operators' Creating unix group: 'Guests' Creating unix group: 'Print Operators' Creating unix group: 'Replicator' Creating unix group: 'Server Operators' Creating unix group: 'Users' The question is that where has it created the users and groups because there are no new entries in /etc/passwd and /etc/group files. Do I need to run mapping between NT groups and UNIX before running "vampire" command. --- where is a very good question since you give us absolutely no clues as to the type of backend passdb you are using. Clearly, it's not properly set up to create users - if LDAP, you need to make that work first, get the SID, set it, put it into the smbldap_conf.pm file and fix that file to retain your users properly (also - you will need to check your nsswitch.conf and ldap.conf) and set your binddn password with the command smbpasswd -w BINDDN_PASSWORD If you are using some other backend passdb, you will need to follow those directions. Craig Craig, What I want to do is to make use of the /etc/samba/smbpasswd and the traditional unix /etc/passwd for authentication. Now to narrow down the problem I am first trying to make the linux system as a working PDC. I performed all the necessary steps required for samba PDC like machine account creation, user account creation in both /etc/passwd and smbpasswd file, when I am trying to join the domain from the WIN2K system it is not successful, the WIN2K Is giving user account not correct and login credential erros and I am getting this in my log files: netbios connect: local=linbdc remote=shasan, name type = 0 [2004/01/22 18:38:01, 2] lib/access.c:check_access(324) Allowed connection from (192.168.0.3) [2004/01/22 18:38:01, 2] smbd/reply.c:reply_special(93) netbios connect: name1=LINBDC name2=SHASAN [2004/01/22 18:38:01, 2] smbd/reply.c:reply_special(100) netbios connect: local=linbdc remote=shasan, name type = 0 and in log.nmbd process_logon_packet: Logon from 192.168.0.3: code = 0x12 [2004/01/22 18:39:03, 1] nmbd/nmbd_processlogon.c:process_logon_packet(95) process_logon_packet: Logon from 192.168.0.3: code = 0x12 [2004/01/22 18:39:03, 1] nmbd/nmbd_processlogon.c:process_logon_packet(95) process_logon_packet: Logon from 192.168.0.3: code = 0x12 [2004/01/22 18:39:03, 1] nmbd/nmbd_processlogon.c:process_logon_packet(95) process_logon_packet: Logon from 192.168.0.3: code = 0x7 However I can access the system as well as the defined shares on the linux system from the Explorer. -shasan -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] NT4 PDC Account transfer
Beast wrote: * Sohail Hasan <[EMAIL PROTECTED]> nulis: Hi All, I am following the procedure given in Samba-HOWTO for the migration to samba from NT4 PDC, however in the account transfer from the PDC step I am getting the following failure when running the command: net rpc vampire -S server -U administrator%passwd Could not retrieve domain trust secret Has anybody got any idea of what else is needed here. Did you join this samba (as bdc) before running rpc vampire? Did you set samba to have same SID as NT domain? net rpc getsid -S "NTname" -Uadministrator%passwd --beast Now when I run rpc vampire I get this: Fetching DOMAIN database SAM_DELTA_DOMAIN_INFO not handled Creating unix group: 'Domain Admins' Creating unix group: 'Domain Users' Creating unix group: 'Domain Guests' Creating unix group: 'PROGRAMMER' Creating unix group: 'Mohicans' Creating unix group: 'NDA' Creating account: Administrator Could not create posix account info for 'Administrator' Creating account: Guest Could not create posix account info for 'Guest' Creating account: testuser Could not create posix account info for 'testuser' [2004/01/22 10:08:04, 0] passdb/pdb_smbpasswd.c:build_smb_pass(1146) build_sam_pass: Failing attempt to store user with non-uid based user RID. . . . Could not create posix account info for 'lab1$' Creating account: SABBASI$ Could not create posix account info for 'lab2$' Creating account: SIDDIQUI$ Could not create posix account info for 'john$' Creating account: MAMAN$ Could not create posix account info for 'peter$' [2004/01/22 10:08:06, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(591) Could not find global group 512 [2004/01/22 10:08:06, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(591) Could not find global group 513 [2004/01/22 10:08:06, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(591) Could not find global group 514 . . . Creating unix group: 'Debugger Users' Fetching BUILTIN database SAM_DELTA_DOMAIN_INFO not handled Creating unix group: 'Account Operators' Creating unix group: 'Administrators' Creating unix group: 'Backup Operators' Creating unix group: 'Guests' Creating unix group: 'Print Operators' Creating unix group: 'Replicator' Creating unix group: 'Server Operators' Creating unix group: 'Users' The question is that where has it created the users and groups because there are no new entries in /etc/passwd and /etc/group files. Do I need to run mapping between NT groups and UNIX before running "vampire" command. --shasan -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] NT4 PDC Account transfer
Hi All, I am following the procedure given in Samba-HOWTO for the migration to samba from NT4 PDC, however in the account transfer from the PDC step I am getting the following failure when running the command: net rpc vampire -S server -U administrator%passwd Could not retrieve domain trust secret Has anybody got any idea of what else is needed here. Sincerely, shasan -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
