[Samba] Net RPC Vampire not sucking all groups
I've tried numerous times but cannot get Vampire to bring across all groups or add users to all groups that they belong to. Sometimes I get everygroup except 1, other times not so lucky. Vampire log is below with an example of what is going wrong. vampire.log Fetching DOMAIN database Creating unix group: 'skischool' Creating unix group: 'sales' Creating unix group: 'Aramark' Creating unix group: 'purchasing' Creating unix group: 'MtnOps' Creating unix group: '2005comptrol' Creating unix group: 'accounting' Creating unix group: 'bourgeausrvcs' Creating unix group: 'guestsrvcs' Creating unix group: 'inn' Creating unix group: 'hr' Creating unix group: 'test' Creating unix group: 'itWinners' Creating unix group: 'maintenance' Creating unix group: 'naudit' Creating unix group: 'aramarkadmin' Creating unix group: 'Exec' Creating unix group: 'aramarkFunctions' Creating unix group: '2006Comptrol' Creating unix group: 'payroll' Creating unix group: 'SecuritySSV' Creating unix group: 'backups' Creating account: Administrator Creating account: Guest Creating account: LOOKOUT$ Creating account: sql Creating account: thodgkinson . Missing one group in the above (public), as well as for example 2006Comptrol does not populate but 2005comptrol does. adding user thodgkinson to group 2005comptrol getent group 2005comptrol:x:1005:Administrator,lchapman,hando,jcarroll,jchesnut,salbrecht ,shaddock,thodgkinson,sp2005,lpatterson,aladha,adore,ossis,cmikkelsen,cburto n,mhealy,scarscadden,lmccheyne,boardroom,bgamble,lmoore,wsmith,smorice,lkoza n,dfebbo,dpuff,gstevely,skihub02,kbuffel,krobertson,sp2006,sberry,lirvine,ti cket01,ticket02,ticket03,ticket04,ticket05,ticket06,ticket07,ticket08,ticket 09,pass01,tent02,pass03,pass04,tent01,pass02,skitech01,rental02,rental03,ren tal04,rental05,rental01,special01,special02,special03,special04,special05,sk i01,ski02,ski03,ski04,ski05,ski06,tent03,Valet,hrseason,ebrousseau,hotel_che ckin,rhoffart,rentalsheadcashier,skiosk01,skiosk02,rkerr,daycare01,daycare02 ,slaver,skihub01,rneilson,rgordon,skiosk03,jgillespie,mwatson accounting:x:1006: bourgeausrvcs:x:1007: guestsrvcs:x:1008: inn:x:1009: hr:x:1010: test:x:1011: itWinners:x:1012: maintenance:x:1013: naudit:x:1014: aramarkadmin:x:1015: Exec:x:1016: aramarkFunctions:x:1017: 2006Comptrol:x:1018: payroll:x:1019: SecuritySSV:x:1020: backups:x:1021: Any help would be most appreciated. Cheers, Tim Hodgkinson Here is my setup: Suse 9.2 Samba-3.0.14a-4.1 Openldap2-2.2.15-5.2 PDC NT4sp6a Smb.conf # Global parameters [global] workgroup = SSVMTN interfaces = eth1, lo bind interfaces only = Yes passdb backend = ldapsam:ldap://127.0.0.1 username map = /etc/samba/smbusers log level = 10 syslog = 0 log file = /var/log/samba/%m max log size = 50 smb ports = 139 445 name resolve order = wins bcast hosts time server = Yes printcap name = CUPS show add printer wizard = No add user script = /opt/IDEALX/sbin/smbldap-useradd -m %u add group script = /opt/IDEALX/sbin/smbldap-groupadd -p %g add user to group script = /opt/IDEALX/sbin/smbldap-groupmod -m %u %g set primary group script = /opt/IDEALX/sbin/smbldap-usermod -g %g %u add machine script = /opt/IDEALX/sbin/smbldap-useradd -w %u logon script = scripts\logon.bat logon path = logon drive = U: logon home = \\monarch\%U domain logons = Yes domain master = No wins server = 172.16.1.100 ldap admin dn = cn=Manager,dc=skibanff,dc=com ldap group suffix = ou=Groups ldap idmap suffix = ou=Idmap ldap machine suffix = ou=People ldap passwd sync = Yes ldap suffix = dc=skibanff,dc=com ldap ssl = no ldap user suffix = ou=People idmap backend = ldap:ldap://127.0.0.1 idmap uid = 1-2 idmap gid = 1-2 winbind nested groups = Yes ea support = Yes map acl inherit = Yes Slapd.conf include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/nis.schema include /etc/openldap/schema/samba3.schema pidfile /var/run/slapd/slapd.pid argsfile/var/run/slapd/slapd.args access to dn.base= by self write by * auth access to attr=userPassword by self write by * auth access to attr=shadowLastChange by self write by * read access to * by * read by anonymous auth loglevel296 #schemacheckon idletimeout 30 #backendbdb
[Samba] Net RPC Vampire not sucking all groups
I've tried numerous times but cannot get Vampire to bring across all groups or add users to all groups that they belong to. Sometimes I get every group except 1, other times not so lucky. Vampire log is below with an example of what is going wrong. vampire.log Fetching DOMAIN database Creating unix group: 'skischool' Creating unix group: 'sales' Creating unix group: 'Aramark' Creating unix group: 'purchasing' Creating unix group: 'MtnOps' Creating unix group: '2005comptrol' Creating unix group: 'accounting' Creating unix group: 'bourgeausrvcs' Creating unix group: 'guestsrvcs' Creating unix group: 'inn' Creating unix group: 'hr' Creating unix group: 'test' Creating unix group: 'itWinners' Creating unix group: 'maintenance' Creating unix group: 'naudit' Creating unix group: 'aramarkadmin' Creating unix group: 'Exec' Creating unix group: 'aramarkFunctions' Creating unix group: '2006Comptrol' Creating unix group: 'payroll' Creating unix group: 'SecuritySSV' Creating unix group: 'backups' Creating account: Administrator Creating account: Guest Creating account: LOOKOUT$ Creating account: sql Creating account: thodgkinson . Missing one group in the above (public), as well as for example 2006Comptrol does not populate but 2005comptrol does. adding user thodgkinson to group 2005comptrol getent group 2005comptrol:x:1005:Administrator,lchapman,hando,jcarroll,jchesnut,salbrecht ,shaddock,thodgkinson,sp2005,lpatterson,aladha,adore,ossis,cmikkelsen,cburto n,mhealy,scarscadden,lmccheyne,boardroom,bgamble,lmoore,wsmith,smorice,lkoza n,dfebbo,dpuff,gstevely,skihub02,kbuffel,krobertson,sp2006,sberry,lirvine,ti cket01,ticket02,ticket03,ticket04,ticket05,ticket06,ticket07,ticket08,ticket 09,pass01,tent02,pass03,pass04,tent01,pass02,skitech01,rental02,rental03,ren tal04,rental05,rental01,special01,special02,special03,special04,special05,sk i01,ski02,ski03,ski04,ski05,ski06,tent03,Valet,hrseason,ebrousseau,hotel_che ckin,rhoffart,rentalsheadcashier,skiosk01,skiosk02,rkerr,daycare01,daycare02 ,slaver,skihub01,rneilson,rgordon,skiosk03,jgillespie,mwatson accounting:x:1006: bourgeausrvcs:x:1007: guestsrvcs:x:1008: inn:x:1009: hr:x:1010: test:x:1011: itWinners:x:1012: maintenance:x:1013: naudit:x:1014: aramarkadmin:x:1015: Exec:x:1016: aramarkFunctions:x:1017: 2006Comptrol:x:1018: payroll:x:1019: SecuritySSV:x:1020: backups:x:1021: I'm suppose to be a member of 2006Comptrol as well. Any help would be most appreciated. Cheers, Tim Hodgkinson Here is my setup: Suse 9.2 Samba-3.0.14a-4.1 Openldap2-2.2.15-5.2 PDC NT4sp6a Smb.conf # Global parameters [global] workgroup = SSVMTN interfaces = eth1, lo bind interfaces only = Yes passdb backend = ldapsam:ldap://127.0.0.1 username map = /etc/samba/smbusers log level = 10 syslog = 0 log file = /var/log/samba/%m max log size = 50 smb ports = 139 445 name resolve order = wins bcast hosts time server = Yes printcap name = CUPS show add printer wizard = No add user script = /opt/IDEALX/sbin/smbldap-useradd -m %u add group script = /opt/IDEALX/sbin/smbldap-groupadd -p %g add user to group script = /opt/IDEALX/sbin/smbldap-groupmod -m %u %g set primary group script = /opt/IDEALX/sbin/smbldap-usermod -g %g %u add machine script = /opt/IDEALX/sbin/smbldap-useradd -w %u logon script = scripts\logon.bat logon path = logon drive = U: logon home = \\monarch\%U domain logons = Yes domain master = No wins server = 172.16.1.100 ldap admin dn = cn=Manager,dc=skibanff,dc=com ldap group suffix = ou=Groups ldap idmap suffix = ou=Idmap ldap machine suffix = ou=People ldap passwd sync = Yes ldap suffix = dc=skibanff,dc=com ldap ssl = no ldap user suffix = ou=People idmap backend = ldap:ldap://127.0.0.1 idmap uid = 1-2 idmap gid = 1-2 winbind nested groups = Yes ea support = Yes map acl inherit = Yes Slapd.conf include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/nis.schema include /etc/openldap/schema/samba3.schema pidfile /var/run/slapd/slapd.pid argsfile/var/run/slapd/slapd.args access to dn.base= by self write by * auth access to attr=userPassword by self write by * auth access to attr=shadowLastChange by self write by * read access to * by * read by anonymous auth loglevel296
[Samba] (no subject)
-- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Recycle VFS Second Pair of Eyes
Here is my set up: Fedora Core 2 Samba 3.0.7 Smb.conf: [infosys] comment = Information Systems Drive path = /home/depts/infosys valid users = @SSVMTN+it admin users = @SSVMTN+Domain Admins create mask = 0770 directory mask = 0770 force create mode = 0770 force directory mode = 0770 security mask = 0770 force group = SSVMTN+it vfs objects = recycle recycle:repository = .recycle/%U recycle:keeptree = Yes recycle:touch = Yes recycle:versions = Yes recycle:exclude = *.tmp *.temp *.~?? recycle:excludedir = /tmp /temp /cache recycle:maxsize = 0 Recycle directory: drwxrwxrwx 2 root itWinners 4096 Nov 18 11:36 .recycle The problem is that nothing is going into the .reycle directory. What have I missed? Cheers, Tim Hodgkinson -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] VFS Recycle
Am using Fedora Core RPM Samba 3.0.7 and am trying to get VFS recycle to work. Here is the relevant smb.conf: [global] workgroup = SSVMTN netbios name = MONARCH security = DOMAIN password server = GOATSEYE encrypt passwords = yes server string = Monarch Server wins server = 172.16.1.100 dns proxy = No name resolve order = wins lmhosts host bcast preferred master = no domain master = no local master = no log file = /var/log/samba/%m log level = 1 syslog = 0 max log size = 0 hosts allow = 172. 127. invalid users = root, bin, daemon, adm, sync, shutdown socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 writable = yes map to guest = bad user obey pam restrictions = yes hide dot files = yes browsable = no printcap name = /etc/printcap winbind separator = + winbind cache time = 30 winbind enum users = yes winbind enum groups = yes winbind use default domain = yes winbind enable local accounts = yes template homedir = /home/users/%U idmap uid = 1-2 idmap gid = 1-2 [test] comment = Test Drive path = /home/depts/test valid users = @SSVMTN+test admin users = @SSVMTN+Domain Admins vfs objects = recycle recycle:repository = /home/depts recycle:keeptree = Yes recycle:touch = Yes recycle:versions = Yes recycle:exclude = *.tmp *.temp *.o *.obj ~$* *.~?? recycle:excludedir = /tmp /temp /cache create mask = 0770 directory mask = 0770 force create mode = 0770 force directory mode = 0770 security mask = 0770 force group = SSVMTN+test Have read the How to and various posts but have not got it going. My understanding is that the .recycle directory is created once the first file is deleted but I am not seen that directory anywhere. Can someone point me in the right direction. --Tim -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Home Directory Winbind
Greetings, Trying to find a solution to creating home directories by using winbind. Have this setup: /etc/pam.d/system-auth: session required /lib/security/pam_mkhomedir.so skel=/etc/skel/ umask=0077 With smb.conf: # Global parameters [global] workgroup = domain server string = Monarch Server security = DOMAIN map to guest = Bad User obey pam restrictions = Yes password server = server log level = 3 syslog = 0 log file = /var/log/samba/%m max log size = 50 name resolve order = wins lmhosts host bcast socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 printcap name = /etc/printcap preferred master = No local master = No domain master = No dns proxy = No wins server = 172.16.1.100, idmap uid = 1-2 idmap gid = 1-2 template homedir = /home/users/%U winbind separator = + winbind use default domain = Yes read only = No hosts allow = 172., 127. [homes] comment = %U Directories path = /homes/users/%U browseable = No Winbind creates the directory in /home/users/: drwx-- 2 thodgkinson Domain Users 4096 Sep 15 16:25 thodgkinson The problem is that I can not access the directory when browsing to it. tail /var/log/samba/blah: '/homes/users/thodgkinson' does not exist or is not a directory, when connecting to [thodgkinson] Where have I gone wrong? Ideas? Cheers, Tim -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Home Directory Winbind
Finally saw what the problem was -- on my [homes] path = /home/users/%u which should be %U for NT users. Used authconf to handle the pam.d config for winbind. Again thanks for the help! --Tim - Original Message - From: Ivano Cristofolini [EMAIL PROTECTED] To: samba [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Thursday, September 16, 2004 12:29 PM Subject: Re: [Samba] Home Directory Winbind I haven't tried it myself but I think samba calls the PAM stack with the logging user's privileges while pam_mkhomedir needs to be called as root to work (like telnet servers and such do). Bye, - Ivano Cristofolini Presidio Informatico Ingegneria Direzione Informatica e Telecomunicazioni Università degli Studi di Trento Via Mesiano 77, 38050 Povo(TN), Italy Tel: +39 0461/881940 Fax: +39 0461/882628 On Thu, 16 Sep 2004, samba wrote: LOL! Thanks for the second pair of eyes. Of course now it is saying that pam has rejected the session. Will continue to work on it. Thanks for your help! --Tim - Original Message - From: Ivano Cristofolini [EMAIL PROTECTED] To: Tim Hodgkinson [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Thursday, September 16, 2004 11:10 AM Subject: Re: [Samba] Home Directory Winbind Looks like it could just be homes/home mismatch. Bye, Ivano Cristofolini Presidio Informatico Ingegneria Direzione Informatica e Telecomunicazioni Università degli Studi di Trento Via Mesiano 77, 38050 Povo(TN), Italy Tel: +39 0461/881940 Fax: +39 0461/882628 On Thu, 16 Sep 2004, Tim Hodgkinson wrote: Greetings, Trying to find a solution to creating home directories by using winbind. Have this setup: /etc/pam.d/system-auth: session required /lib/security/pam_mkhomedir.so skel=/etc/skel/ umask=0077 With smb.conf: # Global parameters [global] workgroup = domain server string = Monarch Server security = DOMAIN map to guest = Bad User obey pam restrictions = Yes password server = server log level = 3 syslog = 0 log file = /var/log/samba/%m max log size = 50 name resolve order = wins lmhosts host bcast socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 printcap name = /etc/printcap preferred master = No local master = No domain master = No dns proxy = No wins server = 172.16.1.100, idmap uid = 1-2 idmap gid = 1-2 template homedir = /home/users/%U winbind separator = + winbind use default domain = Yes read only = No hosts allow = 172., 127. [homes] comment = %U Directories path = /homes/users/%U browseable = No Winbind creates the directory in /home/users/: drwx-- 2 thodgkinson Domain Users 4096 Sep 15 16:25 thodgkinson The problem is that I can not access the directory when browsing to it. tail /var/log/samba/blah: '/homes/users/thodgkinson' does not exist or is not a directory, when connecting to [thodgkinson] Where have I gone wrong? Ideas? Cheers, Tim -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
