[Samba] checking two different domains
AD 2003 Samba 3.0.11 Suse 9.2 I have Samba/Winbind configured to authenticate against the AD and it works fine, I can also authenticate against a trusted NT4.0 domain through the AD by using \. Now here comes the rub, the specs my programmers are being given do not allow for the to be asked for his domain, do you know of anyway I can authenticate against both the AD and the NT domain automatically? Terry Poperszky -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Does SAMBA ever work with 2003 Server native mode ADS?
Dave, check out chapter 10 of http://us2.samba.org/samba/docs/man/Samba-Guide/ It contained the missing step to getting mine to work as advertised. Terry Poperszky eric roseme wrote: Dave Rutlidge wrote: I posted a query re a problem I was having getting SAMBA to authenticate using a Windows 2003 Server ADS and got no reply. Also, I've searched the web (before posting) and no one else had a reply to any similar question. Does SAMBA actually work with 2003 ADS at all or am I flogging a dead horse? Getting no reply is a real bummer. At least getting "forget it!" means I don't waste more time looking for the issue. Has ANYONE got SAMBA to work with 2003 Server in native mode? How? Yes, I just tested it in a 2003 native mode domain. I can "net ads join", and auth-n a user using krb5 with MD5. If it doesn't work using Kerberos, is there another way? I recommend to new users to start by configuring Samba with "security=domain", to ensure that they get Samba itself working correctly before going to Kerberos. Yes - Samba will work using NTLM in native mode. You might have to change your domain security policy to accept NTLM. You can also just \\ipaddress\sharename when "security=ads" and it should fall back to NTLM. Assuming your domain add worked okay. Thanks in advance for any pointers. Sorry I will not be around to help, leaving for vacation for 10 days. One very struggling SAMBA mewbie :(( -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba and AD 2003
I am in the process of implementing a 2003 AD to replace the existing NT 4.0 domain. I have been using Samba/Winbind for several years with the NT 4.0 domain and have been quite happy. Now comes the fun of reproducing that functionality with AD. I have successfully joined a (Suse)SLES9 Linux server using Samba 3.0.9 and I can browse the shares, but the pam.d scripts that work on my existing servers don't seem to work here. Below is the error that I am getting, where should I start looking? -- Terry Poperszky Mar 28 12:59:30 V108 winbindd[2546]: cli_nt_setup_creds: request challenge failed Mar 28 13:04:30 V108 winbindd[2546]: [2005/03/28 13:04:30, 0] rpc_client/cli_netlogon.c:cli_nt_setup_creds(256) Mar 28 13:04:30 V108 winbindd[2546]: cli_nt_setup_creds: request challenge failed Mar 28 13:09:30 V108 winbindd[2546]: [2005/03/28 13:09:30, 0] rpc_client/cli_netlogon.c:cli_nt_setup_creds(256) Mar 28 13:09:30 V108 winbindd[2546]: cli_nt_setup_creds: request challenge failed Global Config: V108:/etc/samba # cat /etc/samba/smb.conf # smb.conf is the main Samba configuration file. You find a full commented # version at /usr/share/doc/packages/samba/examples/smb.conf.SUSE if the # samba-doc package is installed. # Date: 2005-01-28 [global] include = /etc/samba/dhcp.conf wins server = 10.49.1.19 logon drive = P: username map = /etc/samba/smbusers map to guest = Bad User winbind trusted domains only = yes realm = hcwan.net logon home = \\%L\%U\.9xprofile printer admin = @ntadmin, root, administrator printcap cache time = 750 netbios name = v108 cups options = raw server string = SLES 9 printing = cups idmap uid = 1000-2000 password server = * workgroup = hcwan logon path = \\%L\profiles\.msprofile winbind enum groups = yes os level = 20 printcap name = cups security = ads preferred master = no -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] wbinfo and Samba 3.00rc4
I just did a fresh install of Samba and when I try and test my windbind configuration I get the following error. This is happening on two different SuSE 8.2 boxes. wbinfo: relocation error: /usr/local/samba/lib/charset/CP850.so: undefined symbol: smb_register_charset smbd, nmbd and winbindd all run without error, and the box is accessible via an smb connection on the network.I am using the same smb.conf file that is working on two other 3.00rc1 boxes. Suggestions? Terry smb.conf [global] workgroup = MYDOMAIN server string = Network Development Server security = domain encrypt passwords = Yes password server = * log file = /var/log/samba/log.%m max log size = 50 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 character set = ISO8859-15 os level = 18 local master = No dns proxy = No winbind uid = 1-2 winbind gid = 1-2 winbind separator = + template homedir = /home/%D/%U template shell = /bin/bash winbind use default domain = yes obey pam restrictions = yes smb.conf -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] winbind on SUSE8.2
Welcome to the twilight zone Roman. I have windbind working (partially) on SuSE 8.2, I can get it to authenticate users that have an account on the box, but I have not been able to get it to work for users that do not have an account on the box. Is that the same symptom you are seeing? Or are you having trouble with all authentication? Terry On Thu, 2003-07-10 at 06:14, Klesel, Roman wrote: > Hello Community, > > is there someone who has winbind working on SUSE 8.X? > On my system the authenication of the domain users simply does not work > getent passwd > shows all domain users > gentent group > shows all domain groups > Login as domain user: Login incorrect! > There seems to be no pam_stack.so on SUSE. Can it work without it? > How can I fix ist? How can I trace the cause of the disfunction? > I would appreciate any help on this. > > Roman Klesel > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] WinBind and SUSE 8.2 - Has anyone gotten it to work?
Suse 8.2 Samba 3.0.0beta1 I have succefully configured WinBind, joined the NT domain and been able to perform wbinfo -u and -g and that is where the success stops. When I do a getent on passwords or groups I only get the local information. When I try and log on as a existing user on the linux box, it does accept the winbind authentication and let me in, but if the user does not already exist, then login denies the user. I have successfully configured my pam pop3 module to allow access through WinBind for the existing users as well. All of the configs that I have seen are centered around either RedHat or Mandrake, both of which reference pam modules that Suse doesnt use. Any help would be appreciated. -- Terry Poperszky Network Manager SOS Staffing Services [EMAIL PROTECTED] 801-257-5757 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba