Re: [Samba] Samba 3.x server with LDAP backend doesn't work
Is there a documented procedure on how to connect samba users to a backend ldap server? Chapter 5 of "Samba 3 by Example" http://www.samba.org/samba/docs/man/Samba-Guide/happy.html PDF version: http://www.samba.org/samba/docs/Samba3-ByExample.pdf -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Using Windows ACL on a samba3 share
From the Samba HOWTO: « The net command can be used to obtain the currently supported capabilities for rights and privileges using this method: root# net rpc rights list -U root%not24get SeMachineAccountPrivilege Add machines to domain SePrintOperatorPrivilege Manage printers SeAddUsersPrivilege Add users and groups to the domain SeRemoteShutdownPrivilege Force shutdown from a remote system SeDiskOperatorPrivilege Manage disk shares SeBackupPrivilege Back up files and directories SeRestorePrivilege Restore files and directories SeTakeOwnershipPrivilege Take ownership of files or other objects Machine account privilege is necessary to permit a Windows NT4 or later network client to be added to the domain. *The disk operator privilege is necessary to permit the user to manage share ACLs and file and directory ACLs for objects not owned by the user.* » http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/NetCommand.html#id2601333 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Installing manpages
Wow, this is a PITA. Googling for that error didn't reveal anything helpful. I had the exact same problem. Plus, all my attempts at producing a .rpm package failed because the provided .spec template has serious problems, namely with the... man pages. Or maybe the flaw is with me, since I don't know how to write a samba.spec from scratch? PS: This email would be a lot easier to read if mailing lists supported tags, or if Samba had a forum or bulletin board. :) Yes, a forum would be a great idea! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Roaming Profiles - WinXP and Win7
Partial folder redirection? Why partial? Are there folders not to redirect? Yes, there are. Please excuse me for not dwelling further on that, but I simply don't have the time right now. My intention was to point you in that direction. There is plenty of information about that on the Internet, created by people who explains it much better than I possibly would. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Roaming Profiles - WinXP and Win7
(...) is there a solution to this behavior. Partial folder redirection? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [Announce] Samba 4.0.0 Available for Download!
Congratulations! A big 'Thank you' to all those who worked hard on Samba 4! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba / LDAP : map uid to another field ?
I am not sure if you can act on the samba side. Maybe you should think the other way around. You can map one attribute to another inside the LDAP server. You would use the "map attribute" directive to map "eduPersonPrincipalName" to "uid". Both logins would then authenticate against "uid". -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Centos-DS as backend
Do you mean http://wiki.samba.org/index.php/Samba4/LDAP_Backend/Fedora_DS[1] That is for Samba 4, which is still at alpha stage. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Centos-DS as backend
I need to use Centos DS as backend. Really need. Anybody can point me to actual documentation? CentOS Directory Server is the same as Red Hat Directory Server, which is the same as 389 Directory Server (former Fedora Directory Server, now rebaptized in order to generalize it). In some way, this one is to Red Hat Directory Server as Fedora Linux is to Red Hat Enterprise Linux. If you want the latest version, go to 389 Directory Server. You can cross-reference the documents for both threads of the DS to obtain a global panorama. This page http://directory.fedoraproject.org/wiki/Administration_Manual from the 389 project states the following: "We don't have a manual for the Fedora version of the project at this time. However, you can always visit the Red Hat site and look at the manual for the Red Hat Directory Server" For Red Hat DS/CentOS DS, you will find a very good set of documentation here: https://access.redhat.com/knowledge/docs/manuals/Red_Hat_Directory_Server/ For 389 Directory Server, look here: Project page http://directory.fedoraproject.org/ Concerning the use of Samba with this DS: Samba & Fedora Directory Server Integration http://directory.fedoraproject.org/wiki/Howto:Samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] workgroup name length limitation in samba 3.5.6...
I face problems trying to input workgroup name lengths more than 15 characters in smb.conf and run nmbd. I am using samba 3.5.6 (source3 version of nmbd in 3.5.6 package). This is not a Samba limitation, this is by NetBIOS design, which Samba of course respects: Look at this page: http://en.wikipedia.org/wiki/NetBIOS "NetBIOS names are 16 octets in length and vary based on the particular implementation. Frequently, the 16th octet is used to designate a "type" similar to the use of ports in TCP/IP. It is called the NetBIOS Suffix (read below) or "resource type", and is used to tell other applications what type of services the system offers." Looking at your smb.conf, it seems to me that you are mixing up NetBIOS domain names and FQDNs (Fully Qualified Domain Names). They are not the same thing and should be used in their proper place. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] workgroup name length limitation in samba 3.5.6...
I face problems trying to input workgroup name lengths more than 15 characters in smb.conf and run nmbd. I am using samba 3.5.6 (source3 version of nmbd in 3.5.6 package). This is not a Samba limitation, this is by NetBIOS design, which Samba of course respects: Look at this page: http://en.wikipedia.org/wiki/NetBIOS "NetBIOS names are 16 octets in length and vary based on the particular implementation. Frequently, the 16th octet is used to designate a "type" similar to the use of ports in TCP/IP. It is called the NetBIOS Suffix (read below) or "resource type", and is used to tell other applications what type of services the system offers." Looking at your smb.conf, it seems to me that you are mixing up NetBIOS domain names and FQDNs (Fully Qualified Domain Names). They are not the same thing and should be used in their proper place. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] smbldap-tools-0.9.6 released
Version 0.9.6 of the very useful smbldap-tools is now available from the project's page: https://gna.org/projects/smbldap-tools/ http://download.gna.org/smbldap-tools/packages/smbldap-tools-0.9.6.tar.gz You don't have permission to access /smbldap-tools/packages/smbldap-tools-0.9.6.tar.gz on this server. It happens for the tar.gz but the RPM package can be downloaded normally. Did you notify the responsible for the site? That would be the proper way to act, instead of complaining here... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] ldap user suffix
I have to store users in different OU, because there is two separate Units running inside one organization. They have nothing to do with each other and their parent organization is same and their is only one Server to manage both. I don't quite understand what is your problem here. You can a "ou" inside another "ou" and then search the user base dn with a scope of "sub". Let's say: ou=Users ou=Users,ou=Organization1 ou=Users,ou=Organization2 Then, in /etc/ldap.conf, you would specify: nss_base_passwd ou=Users,dc=domain,dc=com?sub instead of nss_base_passwd ou=Users,dc=domain,dc=com?one Did I understand your question wrongly? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Fwd: HELP SAMBA + LDAP
Please does some one have any "documentation", "tutorial", "how to" about setting up a PDC basing on *Samba with a LDAP (OpenLDAP) *backend on *CentOS I already replied to that question, both to you personally and to this mail list. Samba comes with two very helpful books, both in PDF and HTML formats: Samba 3 by Example Samba 3 Howto Chapter 5 of "Samba 3 by Example" deals specifically with Samba + LDAP. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Some questions about Samba and LDAP
You can try LAM, LDAP Account Manager, a web interface to LDAP directories. It has a samba-specific section that lets you create and administer samba accounts. It resides here: http://lam.sourceforge.net/ That is a great tool and I use it as my main administration tool for my samba accounts, however this usage would depend on how many users are in the ldap. I mean don't you have to add the samba accounts one by one for each user? If there are more than 20 users in the ldap this will be a lot of work.. You can create an example/standard user with LAM and then export the user to a LDIF file. It will contain the attributes for a new user. With a common text editor, edit and expand the file. Use copy/paste to replicate the basic entries and modify what will be different, such as usernames. Import the new LDIF to the directory. You can also create several LDIF files according to group, etc. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Some questions about Samba and LDAP
- I have my users database existing in LDAP, how can I add Samba support? I understand that I should modify the objectClass of each user to include sambaSamAccount, but then each user must also have an attribute sambaSID. How can I generate that attribute? You can try LAM, LDAP Account Manager, a web interface to LDAP directories. It has a samba-specific section that lets you create and administer samba accounts. It resides here: http://lam.sourceforge.net/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba