Re: [Samba] Samba PDC problems
El mié, 09-11-2005 a las 16:37 +0100, Dariusz Dwornikowski escribió: Hi, this is my first post here. Ive got working PDC on Samba 3.0.20 without ldap. Users can log into domain. 1. The problem is that they cannot browse each. other's shares. (ex. user A cannot browse user B shares ) They all can see shares on PDC and print on a printer. 2. log.nmbd shows all the time [2005/11/09 15:26:45, 0] nmbd/nmbd_workgroupdb.c:dump_workgroups(284) dump_workgroups() dump workgroup on subnet UNICAST_SUBNET: netmask= 192.168.0.10: COGNIFIDE(1) current master browser = UNKNOWN BOSS 40099b0b (Samba Gentoo Server 3.0.20b) this is weird, as BOSS should be master browser. 3. log.smbd shows all the time - getpeername failed. Error was Transport endpoint is not connected [2005/11/09 15:41:16, 0] lib/util_sock.c:get_peer_addr(1222) Only two users can browse each other's shares. this is weird, as they have identical systems. I include my smb.conf Please help me May be you're having a problem with how your server is resolving names. Can you be more specific on what type of name resolution are you using and send again the smb.conf file to me? Sorry but something seems to be wrong with your mail and my evolution mail client, I can't locate the smb.file in your previous post in any way Regards __ Renovamos el Correo Yahoo! Nuevos servicios, m�s seguridad http://correo.yahoo.es -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba PDC problems
Hi, this is my first post here. Ive got working PDC on Samba 3.0.20 without ldap. Users can log into domain. 1. The problem is that they cannot browse each. other's shares. (ex. user A cannot browse user B shares ) They all can see shares on PDC and print on a printer. 2. log.nmbd shows all the time [2005/11/09 15:26:45, 0] nmbd/nmbd_workgroupdb.c:dump_workgroups(284) dump_workgroups() dump workgroup on subnet UNICAST_SUBNET: netmask= 192.168.0.10: COGNIFIDE(1) current master browser = UNKNOWN BOSS 40099b0b (Samba Gentoo Server 3.0.20b) this is weird, as BOSS should be master browser. 3. log.smbd shows all the time - getpeername failed. Error was Transport endpoint is not connected [2005/11/09 15:41:16, 0] lib/util_sock.c:get_peer_addr(1222) Only two users can browse each other's shares. this is weird, as they have identical systems. I include my smb.conf Please help me -- *Dariusz 'tdi' Dwornikowski | Gentoo | admin at pozman.pl | *[JID]:[EMAIL PROTECTED]|[gg]:2266034|[IRC]:[EMAIL PROTECTED] | *[MAIL]:[EMAIL PROTECTED]|[WWW]:www.tdi.pozman.pl | *Serwery,administracja,webapps - www.ProAdmin.com.pl | *Fingerprint:43E21CC46DAFD2F754E91547D59B39F56AAA4B5F | -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
Tried it again with more debuging: [EMAIL PROTECTED] root]# pdbedit -a -u root -d 10 INFO: Current debug levels: all: True/10 tdb: False/0 printdrivers: False/0 lanman: False/0 smb: False/0 rpc_parse: False/0 rpc_srv: False/0 rpc_cli: False/0 passdb: False/0 sam: False/0 auth: False/0 winbind: False/0 vfs: False/0 idmap: False/0 quota: False/0 acls: False/0 lp_load: refreshing parameters Initialising global parameters params.c:pm_process() - Processing configuration file /etc/samba/smb.conf Processing section [global] doing parameter netbios name = SAMBA handle_netbios_name: set global_myname to: SAMBA doing parameter workgroup = X3D doing parameter passdb backend = tdbsam:/etc/samba/secrets.tdb doing parameter add user script = /usr/sbin/useradd -m %u doing parameter delete user script = /usr/sbin/userdel =r %u doing parameter add group script = /usr/sbin/groupadd %g doing parameter delete group script = /usr/sbin/groupdel %g doing parameter add user to group script = /usr/sbin/usermod -G %g %u doing parameter add machine script = /usr/sbin/useradd -s /bin/false -d /dev/null %u doing parameter os level = 33 doing parameter preferred master = yes doing parameter domain master = yes doing parameter local master = yes doing parameter security = user doing parameter domain logons = yes doing parameter logon path = \\%N\profiles\%u doing parameter logon drive = H: doing parameter logon script = logon.bat doing parameter wins support = yes doing parameter syslog = 5 pm_process() returned Yes lp_servicenumber: couldn't find homes set_server_role: role = ROLE_DOMAIN_PDC Attempting to register new charset UCS-2LE Registered charset UCS-2LE Attempting to register new charset UTF8 Registered charset UTF8 Attempting to register new charset ASCII Registered charset ASCII Attempting to register new charset 646 Registered charset 646 Attempting to register new charset ISO-8859-1 Registered charset ISO-8859-1 Attempting to register new charset UCS2-HEX Registered charset UCS2-HEX Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Trying to load: tdbsam:/etc/samba/secrets.tdb Attempting to register passdb backend ldapsam Successfully added passdb backend 'ldapsam' Attempting to register passdb backend ldapsam_compat Successfully added passdb backend 'ldapsam_compat' Attempting to register passdb backend smbpasswd Successfully added passdb backend 'smbpasswd' Attempting to register passdb backend tdbsam Successfully added passdb backend 'tdbsam' Attempting to register passdb backend guest Successfully added passdb backend 'guest' Attempting to find an passdb backend to match tdbsam:/etc/samba/secrets.tdb (tdbsam) Found pdb backend tdbsam pdb backend tdbsam:/etc/samba/secrets.tdb has a valid init Attempting to find an passdb backend to match guest (guest) Found pdb backend guest pdb backend guest has a valid init Netbios name list:- my_netbios_names[0]=SAMBA Trying to load: tdbsam:/etc/samba/secrets.tdb Attempting to find an passdb backend to match tdbsam:/etc/samba/secrets.tdb (tdbsam) Found pdb backend tdbsam pdb backend tdbsam:/etc/samba/secrets.tdb has a valid init Attempting to find an passdb backend to match guest (guest) Found pdb backend guest pdb backend guest has a valid init Finding user root Trying _Get_Pwnam(), username as lowercase is root Get_Pwnam_internals did find user [root]! pdb_set_username: setting username root, was element 12 - now SET pdb_set_full_name: setting full name root, was element 13 - now SET pdb_set_unix_homedir: setting home dir /root, was NULL element 22 - now SET pdb_set_domain: setting domain X3D, was pdb_set_user_sid: setting user sid S-1-5-21-2351621536-730267382-1598341932-1000 element 18 - now SET pdb_set_user_sid_from_rid: setting user sid S-1-5-21-2351621536-730267382-1598341932-1000 from rid 1000 pdb_set_group_sid: setting group sid S-1-5-21-2351621536-730267382-1598341932-1001 element 19 - now SET pdb_set_group_sid_from_rid: setting group sid S-1-5-21-2351621536-730267382-1598341932-1001 from rid 1001 Home server: samba pdb_set_profile_path: setting profile path \\samba\profiles\root, was Home server: samba pdb_set_homedir: setting home dir \\samba\root, was pdb_set_dir_drive: setting dir drive
Re: [Samba] samba PDC problems
Tried that and that didn't work either, here's the output: [EMAIL PROTECTED] root]# smbpasswd -a root New SMB password: Retype new SMB password: Unable to open/create TDB passwd pdb_getsampwnam: Unable to open TDB passwd (/etc/samba/secrets.tdb)! Unable to open/create TDB passwd tdb_update_sam: Unable to open TDB passwd (/etc/samba/secrets.tdb)! Failed to add entry for user root. Failed to modify password entry for user root [EMAIL PROTECTED] root]# cat /etc/samba/s secrets.tdb smb.conf smb.conf.rpmnew smbusers [EMAIL PROTECTED] root]# cat /etc/samba/smbusers # Unix_name = SMB_name1 SMB_name2 ... root = administrator admin nobody = guest pcguest smbguest I'm thinking it may be a permissions problem. Samba is running as root(this is RH Enterprise ES 3). Here what the /etc/samba dir looks like: [EMAIL PROTECTED] root]# ls -la /etc/samba/ total 40 drwxr-xr-x2 root root 4096 Aug 4 17:06 . drwxr-xr-x 61 root root 4096 Aug 4 17:45 .. -rw-r--r--1 root root 20 Jul 20 09:43 lmhosts -rw-rw-rw-1 root root 8192 Aug 4 17:06 secrets.tdb -rw-r--r--1 root root 843 Aug 4 17:05 smb.conf -rw-r--r--1 root root10704 Jul 20 09:43 smb.conf.rpmnew -rw-r--r--1 root root 97 Jul 20 09:43 smbusers --- Craig White [EMAIL PROTECTED] wrote: --- looks good - how about some of these... smbpasswd -a root smbpasswd root cat /etc/samba/smbusers smbpasswd -w (root_passwd) Craig -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba __ Do you Yahoo!? Yahoo! Mail - You care about security. So do we. http://promotions.yahoo.com/new_mail -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] samba PDC problems
I'm trying to set up a samba PDC. I've been following the directions in The Official Samab-3 book. I still don't understand how to add users! I'm using tdbsam and I set up all the add user scripts and what not in the smb.conf. pdbedit won't let me do anything unless I add the user with adduser(what's the point of the scripts?) and even when I add the user by hand I get this error message. [EMAIL PROTECTED] samba]# pdbedit -a -u test new password: retype new password: Unable to open/create TDB passwd tdb_update_sam: Unable to open TDB passwd (/etc/samba/secrets.tdb)! Unable to add user! (does it already exist?) I'm sure I just understand the process and none of the docs seem to explain it clearly. Any help you can give would be appreciated. Anyway here's my smb.conf: [global] netbios name = SAMBA workgroup = WORKGROUP passdb backend = tdbsam:/etc/samba/secrets.tdb # Scripts add user script = /usr/sbin/useradd -m %u delete user script = /usr/sbin/userdel =r %u add group script = /usr/sbin/groupadd %g delete group script = /usr/sbin/groupdel %g add user to group script = /usr/sbin/usermod -G %g %u add machine script = /usr/sbin/useradd -s /bin/false -d /dev/null %u os level = 33 preferred master = yes domain master = yes local master = yes security = user domain logons = yes logon path = \\%N\profiles\%u logon drive = H: logon script = logon.bat [netlogon] path = /var/lib/samba/netlogon read only = yes write list = ntadmin [profiles] path = /var/lib/samba/profiles read only = no create mask = 0600 directory mask = 0700 __ Do you Yahoo!? Yahoo! Mail is new and improved - Check it out! http://promotions.yahoo.com/new_mail -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
On Wed, 2004-08-04 at 17:43, David 3oz Sonenberg wrote: I'm trying to set up a samba PDC. I've been following the directions in The Official Samab-3 book. I still don't understand how to add users! I'm using tdbsam and I set up all the add user scripts and what not in the smb.conf. pdbedit won't let me do anything unless I add the user with adduser(what's the point of the scripts?) and even when I add the user by hand I get this error message. [EMAIL PROTECTED] samba]# pdbedit -a -u test new password: retype new password: Unable to open/create TDB passwd tdb_update_sam: Unable to open TDB passwd (/etc/samba/secrets.tdb)! Unable to add user! (does it already exist?) I'm sure I just understand the process and none of the docs seem to explain it clearly. Any help you can give would be appreciated. Anyway here's my smb.conf: [global] netbios name = SAMBA workgroup = WORKGROUP passdb backend = tdbsam:/etc/samba/secrets.tdb # Scripts add user script = /usr/sbin/useradd -m %u delete user script = /usr/sbin/userdel =r %u add group script = /usr/sbin/groupadd %g delete group script = /usr/sbin/groupdel %g add user to group script = /usr/sbin/usermod -G %g %u add machine script = /usr/sbin/useradd -s /bin/false -d /dev/null %u os level = 33 preferred master = yes domain master = yes local master = yes security = user domain logons = yes logon path = \\%N\profiles\%u logon drive = H: logon script = logon.bat --- looks good - how about some of these... smbpasswd -a root smbpasswd root cat /etc/samba/smbusers smbpasswd -w (root_passwd) Craig -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
I'll try that tomorrow. Will pdbedit not work, or do I just have to use smbpasswd to get things setup? --- Craig White [EMAIL PROTECTED] wrote: looks good - how about some of these... smbpasswd -a root smbpasswd root cat /etc/samba/smbusers smbpasswd -w (root_passwd) Craig -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba __ Do you Yahoo!? New and Improved Yahoo! Mail - Send 10MB messages! http://promotions.yahoo.com/new_mail -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
Bradley W. Langhorst wrote: however in order to switch a computer from workgroup to domain mode you first need to leave the GENWAX.TEST workgroup join the ICANTTHINKOFANAME workgroup then join the GENWAX.TEST domain... I agree! I noticed this when migrating my W2K Server domain to Samba domain. On clients I had to 1) switch clients from DOMAIN to workgroup TEMPO, reboot 2) power off W2K Server 3) power on Samba PDC 4) Erase *all* profiles in C:\Document and Settings\ (excep Administrator and Default ) 5) switch clients from TEMPO to DOMAIN, reboot I think it is a Windows problem too. -- Jean-Paul ARGUDO -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
On Thu, 2002-12-12 at 01:35, ___cliff rayman___ wrote: snip - Error: This computer could not locate a domain controller for the Active Directory domain displayed in the error message because the Domain Name System (DNS) servers used by this computer for name resolution failed to look up the service (SRV) resource record. Cause: The DNS SRV resource record is not registered in DNS. port 389 in my /etc/services file is ldap. i am not sure what is causing it to want to do ldap on my computer and not on anyone else's. AD uses ldap for its account db... Was this ever a part of an active directory domain? For some reason it seems like the XP thinks that the domain is an active directory domain... I think that srv record that it refers to is something special that ms does to dns. Is there an active directory domain somewhere else on the network? i need to get this solved, so let me know if there is anything else i can provide that will help. just keep working on it - we'll get it straightened out eventually. brad -- Bradley W. Langhorst [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
John H Terpstra wrote: On Wed, 11 Dec 2002, ___cliff rayman___ wrote: John H Terpstra wrote: On Thu, 12 Dec 2002, Bradley W. Langhorst wrote: You might try to set a more DNS friendly domain name. ie: One without the '.' in it. Could be a problem. ok - i tried GENWAXTEST. didn't help. i also removed the netbios name and tried both at the same time. no luck. Are you using LDAP? If so, then you need to put all user and machine accounts into the LDAP database. nope - not using LDAP. thought about it, but i have little experience with it, and i did not want to move up on too many technology fronts at one time. the servers fully qualified name is MARS.GENWAX.TEST. test is like com or org or net. i use my own root names all the time for testing. Providing you are not using LDAP for Samba, use in smb.conf: workgroup = genwax netbios name = mars ok - is genwax.test not a good idea for some reason. are the dots restricted in win XP?? Also, first stop samba, the remove your secrets.tdb file. Also, remove the browse.dat (and if you have one, wins.dat), then restart samba, wait at least 5 minutes before you try to get your MS Windows client to join the domain. Also, I strongly recommend that you run Samba as your WINS server and set in the MS Windows Client TCP/IP config, the IP address of your samba server for the WINS primary _and_ secondary addresses. To enable WINS serving in samba in smb.conf [globals]: wins support = yes i think this was the key. as soon as i added this and modified the windows XP machine to point to it, the error message disappeared. Also, restart the MS Windows machine, and when you log on as the local administrator, do NOT try to browse the network before you join the domain. Additionally, I presume you already have a root account in your smbpasswd file. You will need to use the 'Administrator' account to join the domain, and give it the password you entered when you added 'root' to smbpasswd. Let's see how that goes. very well. thank you very much for the help. and thanks to everyone else who assisted on this project. i think the key was the wins server, although i followed serveral suggestions at the same time, i had tried them at various points previously. i believe giving the XP PRO box a wins server to look at, stopped it from trying to search for the info it needed. - John T. i'm leaving the rest of this post so that others who have the same trouble will find it and the solution in a single post. thanks again!! here are some excerps from the ms help files: snip - Error: This computer could not locate a domain controller for the Active Directory domain displayed in the error message because the Domain Name System (DNS) servers used by this computer for name resolution failed to look up the service (SRV) resource record. Cause: The DNS SRV resource record is not registered in DNS. snip - then: Active Directory uses Domain Name System (DNS) to locate domain controllers, enabling computers joining the network to obtain a domain controller, and then begin the process of network authentication. Computers joining an Active Directory domain must satisfy the following three DNS requirements: The computer must be configured with the IP address of a preferred DNS server. (OK - and DNS works fine) The _ldap._tcp.dc._msdcs.DNSDomainName service (SRV) resource record must exist in DNS. (NOPE-don't have this) snip then: set type=srv _ldap._tcp.dc._msdcs.example.microsoft.com Server: dc1.example.microsoft.com Address: 10.0.0.14 _ldap._tcp.dc._msdcs.example.microsoft.com SRV service location priority = 0 weight = 0 port = 389 svr hostname = dc1.example.microsoft.com _ldap._tcp.dc._msdcs.example.microsoft.com SRV service location priority = 0 weight = 0 port = 389 svr hostname = dc2.example.microsoft.com snip port 389 in my /etc/services file is ldap. i am not sure what is causing it to want to do ldap on my computer and not on anyone else's. the server is mars.genwax.test. the win XP pro SP1 client that i am trying to join to the domain is hpvec2.genwax.test. when i try to join it to the domain by either using the wizard or the change button, this is the only interaction with the server that i see via tcpdump: 22:38:00.439236 hpvec2.genwax.test.1064 mars.genwax.test.domain: 16+ SRV ? _ldap._tcp.dc._msdcs.GENWAX.TEST. (50) 22:38:00.439664 mars.genwax.test.domain hpvec2.genwax.test.1064: 16 NXDomain*- 0/1/0 (101) (DF) i need to get this solved, so let me know if there is anything else i can
Re: [Samba] samba PDC problems
hi tim, i am having the same problem. i can use XP and samba 2.2.7 in a workgroup environment, and everything works fine. when i try and join the XP workstation as a domain, i get the same message as you do. i read up on creating a SRV record via bind, which seems easy enough, but i am not sure what prog s/b running on the other end of that service, and how it should be configured. i hope someone with some deep know how understands the problem and what to do here. cliff Tim Nichol wrote: Hi all, I am having trouble setting up samba to act as a PDC. I am fairly new to red hat \ linux, and have just installed RH 7.3 running the default configuration. I updated \ samba to 2.2.7 using the online updating feature and followed a step by step tutorial \ to configure samba to become a PDC. When i try to connect to the domain with windows XP pro, it displays the message a \ domain controller for the domain mydomain can not be located when i choose details it says The error was: DNS request not supported by name server. (error code 0x232C RCODE_NOT_IMPLEMENTED) The query was for the SRV record for _ldap._tcp.dc._msdcs.mydomain The network is simple, one windows XP pro machine with IP 192.168.1.6 and one RH 7.3 \ linux machine with IP 192.168.1.5. Connections are working because both machines \ succuessfully ping each other. I ran testparm with no errors and have verified the samba server is running properly \ with smbclient //mymachine/user -U user -W mydomain I downloaded and ran the SignOrSeal reg patch for XP, and also disabled the Domain \ member: Digitally encrypt or sign secure channel data (always) option in the local \ security. I have triple checked the tutorial guide with my config file, and have manually \ created the required accounts What could be the problem? I have seen other people on this list with the same \ problem, but the threads seem to die out without a solution. Please help! -Tim -- ___cliff [EMAIL PROTECTED]http://www.genwax.com/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
On Wed, 2002-12-11 at 17:51, ___cliff rayman___ wrote: hi tim, i am having the same problem. i can use XP and samba 2.2.7 in a workgroup environment, and everything works fine. when i try and join the XP workstation as a domain, i get the same message as you do. i read up on creating a SRV record via bind, which seems easy enough, but i am not sure what prog s/b running on the other end of that service, and how it should be configured. i hope someone with some deep know how understands the problem and what to do here. cliff Tim Nichol wrote: Hi all, I am having trouble setting up samba to act as a PDC. I am fairly new to red hat \ linux, and have just installed RH 7.3 running the default configuration. I updated \ samba to 2.2.7 using the online updating feature and followed a step by step tutorial \ to configure samba to become a PDC. When i try to connect to the domain with windows XP pro, it displays the message a \ domain controller for the domain mydomain can not be located when i choose details it says The error was: DNS request not supported by name server. (error code 0x232C RCODE_NOT_IMPLEMENTED) The query was for the SRV record for _ldap._tcp.dc._msdcs.mydomain The network is simple, one windows XP pro machine with IP 192.168.1.6 and one RH 7.3 \ linux machine with IP 192.168.1.5. Connections are working because both machines \ succuessfully ping each other. I ran testparm with no errors and have verified the samba server is running properly \ with smbclient //mymachine/user -U user -W mydomain I downloaded and ran the SignOrSeal reg patch for XP, and also disabled the Domain \ member: Digitally encrypt or sign secure channel data (always) option in the local \ security. I have triple checked the tutorial guide with my config file, and have manually \ created the required accounts What could be the problem? I have seen other people on this list with the same \ problem, but the threads seem to die out without a solution. Please help! I've not seen this problem before... can you browse to the server using it's hostname (not ip address)? brad Bradley W. Langhorst [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
Bradley W. Langhorst wrote: On Wed, 2002-12-11 at 17:51, ___cliff rayman___ wrote: hi tim, i am having the same problem. i can use XP and samba 2.2.7 in a workgroup environment, and everything works fine. when i try and join the XP workstation as a domain, i get the same message as you do. i read up on creating a SRV record via bind, which seems easy enough, but i am not sure what prog s/b running on the other end of that service, and how it should be configured. i hope someone with some deep know how understands the problem and what to do here. cliff Tim Nichol wrote: Hi all, I am having trouble setting up samba to act as a PDC. I am fairly new to red hat \ linux, and have just installed RH 7.3 running the default configuration. I updated \ samba to 2.2.7 using the online updating feature and followed a step by step tutorial \ to configure samba to become a PDC. When i try to connect to the domain with windows XP pro, it displays the message a \ domain controller for the domain mydomain can not be located when i choose details it says The error was: DNS request not supported by name server. (error code 0x232C RCODE_NOT_IMPLEMENTED) The query was for the SRV record for _ldap._tcp.dc._msdcs.mydomain out without a solution. Please help! I've not seen this problem before... can you browse to the server using it's hostname (not ip address)? on the XP box: Control Panel - System - Computer Name - Change... if i use the workgroup setting of GENWAX.TEST, then i can browse the server, read and write files, and it seems to be working fine. if i try to change to a domain setting of GENWAX.TEST, then it fails with the DNS and SRV record message same as above but with GENWAX.TEST in place of mydomain. -- ___cliff [EMAIL PROTECTED]http://www.genwax.com/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
On Wed, 2002-12-11 at 20:24, ___cliff rayman___ wrote: if i use the workgroup setting of GENWAX.TEST, then i can browse the server, read and write files, and it seems to be working fine. if i try to change to a domain setting of GENWAX.TEST, then it fails with the DNS and SRV record message same as above but with GENWAX.TEST in place of mydomain. ah you can't have the workgroup and the domain with the same name... best wishes! brad -- Bradley W. Langhorst [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
Bradley W. Langhorst wrote:
On Wed, 2002-12-11 at 20:24, ___cliff rayman___ wrote:
if i use the workgroup setting of GENWAX.TEST, then i can browse
the server, read and write files, and it seems to be working
fine. if i try to change to a domain setting of GENWAX.TEST, then
it fails with the DNS and SRV record message same as above but
with GENWAX.TEST in place of mydomain.
you can't have the workgroup and the domain with the same name...
ok - but samba is setup as a primary domain controller.
there are NO other servers on the network, so there is
not a workgroup and a domain. i assume that all windows
95/98/me and XP home clients are going to see the domain as
a workgroup, and that XP Pro/NT clients will see it as a
domain and logon accordingly. this is a test server. only
it, and two pc's are currently hooked to the network for
testing purposes. one pc has XP home, and calls GENWAX.TEST
a workgroup, and the other has XP pro. when i tell it to
connect to the GENWAX.TEST workgroup, it works fine, when
i tell it to connect as a domain, it fails with the DNS/SRV
message.
here is a relative snipped from my smb.conf file:
snip
[global]
# samba build string
# ./configure --prefix=/usr/local/samba_2.2.7 --mandir=/usr/local/man --with-smbmount --with-pam --with-pam_smbpass --with-ssl --with-libsmbclient make
# server name and group stuff
workgroup = genwax.test
netbios name = filesnew
server string = files server TESTING ONLY
interfaces = 10.222.222.0/24 127.0.0.1/32
bind interfaces only = yes
# passwords and domain logions
encrypt passwords = yes
unix password sync = true
pam password change = true
passwd chat = *password* %n\n*passwd* %n\n*successful*
domain logons = yes
domain master = yes
logon drive = Z:
logon home = \\%L\%u
logon path = \\%L\profile\%u
logon script=logon.bat
os level = 99
preferred master = yes
security = user
path = /home/%s/samba
# logging directives
log file = /usr/local/samba/var/logs/%m
log level = 3
# file and directory masks
create mask = 0660
directory mask = 0770
#restrictions
dont descend = /proc,/dev,/etc
hosts allow = 10.222.222. 127.0
hide unreadable = yes
max smbd processes = 100
min print space = 1
# do not allow files with CLSID extensions to be open
veto files = /*.{*}/
# case sensitivity stuff
mangle case = no
case sensitive = no
default case = lower
preserve case = yes
short preserve case = yes
snip
here is a snip from the relevant named file on the same server:
snip
venus IN A 10.222.222.2
marsIN A 10.222.222.3
filesnewIN A 10.222.222.3
hpvec1 IN A 10.222.222.167
hpvec2 IN A 10.222.222.168
snip
hpvec1 and hpvec2 are XP home and XP pro clients respectively
venus is not running samba currently
any help would be appreciated.
--
___cliff [EMAIL PROTECTED]http://www.genwax.com/
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
hi bradley,
first off - thanks for the help.
Bradley W. Langhorst wrote:
I'm saying that your samba server may be correctly configured...
however in order to switch a computer from workgroup to domain mode
you first need to leave the GENWAX.TEST workgroup
join the ICANTTHINKOFANAME workgroup
then join the GENWAX.TEST domain...
ok - did that. joined workgroup WORKGROUP.
rebooted (what else).
then attempted to change to domain GENWAX.TEST.
i received the same error message as previously.
it's a windows problem.
that's an understatement.
brad
On Wed, 2002-12-11 at 21:37, ___cliff rayman___ wrote:
Bradley W. Langhorst wrote:
On Wed, 2002-12-11 at 20:24, ___cliff rayman___ wrote:
if i use the workgroup setting of GENWAX.TEST, then i can browse
the server, read and write files, and it seems to be working
fine. if i try to change to a domain setting of GENWAX.TEST, then
it fails with the DNS and SRV record message same as above but
with GENWAX.TEST in place of mydomain.
you can't have the workgroup and the domain with the same name...
ok - but samba is setup as a primary domain controller.
there are NO other servers on the network, so there is
not a workgroup and a domain. i assume that all windows
95/98/me and XP home clients are going to see the domain as
a workgroup, and that XP Pro/NT clients will see it as a
domain and logon accordingly. this is a test server. only
it, and two pc's are currently hooked to the network for
testing purposes. one pc has XP home, and calls GENWAX.TEST
a workgroup, and the other has XP pro. when i tell it to
connect to the GENWAX.TEST workgroup, it works fine, when
i tell it to connect as a domain, it fails with the DNS/SRV
message.
here is a relative snipped from my smb.conf file:
snip
[global]
# samba build string
# ./configure --prefix=/usr/local/samba_2.2.7 --mandir=/usr/local/man --with-smbmount --with-pam --with-pam_smbpass --with-ssl --with-libsmbclient make
# server name and group stuff
workgroup = genwax.test
netbios name = filesnew
server string = files server TESTING ONLY
interfaces = 10.222.222.0/24 127.0.0.1/32
bind interfaces only = yes
# passwords and domain logions
encrypt passwords = yes
unix password sync = true
pam password change = true
passwd chat = *password* %n\n*passwd* %n\n*successful*
domain logons = yes
domain master = yes
logon drive = Z:
logon home = \\%L\%u
logon path = \\%L\profile\%u
logon script=logon.bat
os level = 99
preferred master = yes
security = user
path = /home/%s/samba
# logging directives
log file = /usr/local/samba/var/logs/%m
log level = 3
# file and directory masks
create mask = 0660
directory mask = 0770
#restrictions
dont descend = /proc,/dev,/etc
hosts allow = 10.222.222. 127.0
hide unreadable = yes
max smbd processes = 100
min print space = 1
# do not allow files with CLSID extensions to be open
veto files = /*.{*}/
# case sensitivity stuff
mangle case = no
case sensitive = no
default case = lower
preserve case = yes
short preserve case = yes
snip
here is a snip from the relevant named file on the same server:
snip
venus IN A 10.222.222.2
marsIN A 10.222.222.3
filesnewIN A 10.222.222.3
hpvec1 IN A 10.222.222.167
hpvec2 IN A 10.222.222.168
snip
hpvec1 and hpvec2 are XP home and XP pro clients respectively
venus is not running samba currently
any help would be appreciated.
--
___cliff [EMAIL PROTECTED]http://www.genwax.com/
--
___cliff [EMAIL PROTECTED]http://www.genwax.com/
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
Hi Cliff,
I don't know if this will work, but short of the DNS error, you seem to be
having a problem that I encoutered some time ago, (I used to get a user
does not exist error) and I fixed it as follows.
The smbpasswd file contains the usernames and computers.
I found that opening it in a text editor and moving the Win2K computername
entry that couldn't join up to below the root user. (include all unix and
windows hash.)
Then I saved the file, and tried again. And it worked. I don't know why
this is, but it seems that if computers are far down in the list, they
aren't found by samba. (or windows times out, I don't know which).
Sean
PS: I had posted a question about this to the list zonks ago, but got no
answers.
On 12/12/02 12:03 PM, ___cliff rayman___ [EMAIL PROTECTED] wrote:
hi bradley,
first off - thanks for the help.
Bradley W. Langhorst wrote:
I'm saying that your samba server may be correctly configured...
however in order to switch a computer from workgroup to domain mode
you first need to leave the GENWAX.TEST workgroup
join the ICANTTHINKOFANAME workgroup
then join the GENWAX.TEST domain...
ok - did that. joined workgroup WORKGROUP.
rebooted (what else).
then attempted to change to domain GENWAX.TEST.
i received the same error message as previously.
it's a windows problem.
that's an understatement.
brad
On Wed, 2002-12-11 at 21:37, ___cliff rayman___ wrote:
Bradley W. Langhorst wrote:
On Wed, 2002-12-11 at 20:24, ___cliff rayman___ wrote:
if i use the workgroup setting of GENWAX.TEST, then i can browse
the server, read and write files, and it seems to be working
fine. if i try to change to a domain setting of GENWAX.TEST, then
it fails with the DNS and SRV record message same as above but
with GENWAX.TEST in place of mydomain.
you can't have the workgroup and the domain with the same name...
ok - but samba is setup as a primary domain controller.
there are NO other servers on the network, so there is
not a workgroup and a domain. i assume that all windows
95/98/me and XP home clients are going to see the domain as
a workgroup, and that XP Pro/NT clients will see it as a
domain and logon accordingly. this is a test server. only
it, and two pc's are currently hooked to the network for
testing purposes. one pc has XP home, and calls GENWAX.TEST
a workgroup, and the other has XP pro. when i tell it to
connect to the GENWAX.TEST workgroup, it works fine, when
i tell it to connect as a domain, it fails with the DNS/SRV
message.
here is a relative snipped from my smb.conf file:
snip
[global]
# samba build string
# ./configure --prefix=/usr/local/samba_2.2.7 --mandir=/usr/local/man
--with-smbmount --with-pam --with-pam_smbpass --with-ssl --with-libsmbclient
make
# server name and group stuff
workgroup = genwax.test
netbios name = filesnew
server string = files server TESTING ONLY
interfaces = 10.222.222.0/24 127.0.0.1/32
bind interfaces only = yes
# passwords and domain logions
encrypt passwords = yes
unix password sync = true
pam password change = true
passwd chat = *password* %n\n*passwd* %n\n*successful*
domain logons = yes
domain master = yes
logon drive = Z:
logon home = \\%L\%u
logon path = \\%L\profile\%u
logon script=logon.bat
os level = 99
preferred master = yes
security = user
path = /home/%s/samba
# logging directives
log file = /usr/local/samba/var/logs/%m
log level = 3
# file and directory masks
create mask = 0660
directory mask = 0770
#restrictions
dont descend = /proc,/dev,/etc
hosts allow = 10.222.222. 127.0
hide unreadable = yes
max smbd processes = 100
min print space = 1
# do not allow files with CLSID extensions to be open
veto files = /*.{*}/
# case sensitivity stuff
mangle case = no
case sensitive = no
default case = lower
preserve case = yes
short preserve case = yes
snip
here is a snip from the relevant named file on the same server:
snip
venus IN A 10.222.222.2
marsIN A 10.222.222.3
filesnewIN A 10.222.222.3
hpvec1 IN A 10.222.222.167
hpvec2 IN A 10.222.222.168
snip
hpvec1 and hpvec2 are XP home and XP pro clients respectively
venus is not running samba currently
any help would be appreciated.
--
___cliff [EMAIL PROTECTED]http://www.genwax.com/
Sean Roulet
Technology Manager
Artradis Fund Management Pte Ltd
#11-01 Royal Brothers Building
Raffles Place, 22 Malacca Street
Singapore 048980
Tel: +65 6538 1998
Fax: +65 6538 8331
-
This message is strictly confidential and intended solely for the use of the
intended recipient(s). The recipient of this communication should not copy,
disclose or distribute this communication without permission from Artradis
Re: [Samba] samba PDC problems
On Thu, 12 Dec 2002, Sean Roulet wrote:
Hi Cliff,
I don't know if this will work, but short of the DNS error, you seem to be
having a problem that I encoutered some time ago, (I used to get a user
does not exist error) and I fixed it as follows.
The smbpasswd file contains the usernames and computers.
I found that opening it in a text editor and moving the Win2K computername
entry that couldn't join up to below the root user. (include all unix and
windows hash.)
Then I saved the file, and tried again. And it worked. I don't know why
this is, but it seems that if computers are far down in the list, they
aren't found by samba. (or windows times out, I don't know which).
I tried this with about 200 entries in the smbpasswd file and found it
made no difference. I suspect something else was spooking you. It would be
nice to know what!
- John T.
Sean
PS: I had posted a question about this to the list zonks ago, but got no
answers.
On 12/12/02 12:03 PM, ___cliff rayman___ [EMAIL PROTECTED] wrote:
hi bradley,
first off - thanks for the help.
Bradley W. Langhorst wrote:
I'm saying that your samba server may be correctly configured...
however in order to switch a computer from workgroup to domain mode
you first need to leave the GENWAX.TEST workgroup
join the ICANTTHINKOFANAME workgroup
then join the GENWAX.TEST domain...
ok - did that. joined workgroup WORKGROUP.
rebooted (what else).
then attempted to change to domain GENWAX.TEST.
i received the same error message as previously.
it's a windows problem.
that's an understatement.
brad
On Wed, 2002-12-11 at 21:37, ___cliff rayman___ wrote:
Bradley W. Langhorst wrote:
On Wed, 2002-12-11 at 20:24, ___cliff rayman___ wrote:
if i use the workgroup setting of GENWAX.TEST, then i can browse
the server, read and write files, and it seems to be working
fine. if i try to change to a domain setting of GENWAX.TEST, then
it fails with the DNS and SRV record message same as above but
with GENWAX.TEST in place of mydomain.
you can't have the workgroup and the domain with the same name...
ok - but samba is setup as a primary domain controller.
there are NO other servers on the network, so there is
not a workgroup and a domain. i assume that all windows
95/98/me and XP home clients are going to see the domain as
a workgroup, and that XP Pro/NT clients will see it as a
domain and logon accordingly. this is a test server. only
it, and two pc's are currently hooked to the network for
testing purposes. one pc has XP home, and calls GENWAX.TEST
a workgroup, and the other has XP pro. when i tell it to
connect to the GENWAX.TEST workgroup, it works fine, when
i tell it to connect as a domain, it fails with the DNS/SRV
message.
here is a relative snipped from my smb.conf file:
snip
[global]
# samba build string
# ./configure --prefix=/usr/local/samba_2.2.7 --mandir=/usr/local/man
--with-smbmount --with-pam --with-pam_smbpass --with-ssl --with-libsmbclient
make
# server name and group stuff
workgroup = genwax.test
netbios name = filesnew
server string = files server TESTING ONLY
interfaces = 10.222.222.0/24 127.0.0.1/32
bind interfaces only = yes
# passwords and domain logions
encrypt passwords = yes
unix password sync = true
pam password change = true
passwd chat = *password* %n\n*passwd* %n\n*successful*
domain logons = yes
domain master = yes
logon drive = Z:
logon home = \\%L\%u
logon path = \\%L\profile\%u
logon script=logon.bat
os level = 99
preferred master = yes
security = user
path = /home/%s/samba
# logging directives
log file = /usr/local/samba/var/logs/%m
log level = 3
# file and directory masks
create mask = 0660
directory mask = 0770
#restrictions
dont descend = /proc,/dev,/etc
hosts allow = 10.222.222. 127.0
hide unreadable = yes
max smbd processes = 100
min print space = 1
# do not allow files with CLSID extensions to be open
veto files = /*.{*}/
# case sensitivity stuff
mangle case = no
case sensitive = no
default case = lower
preserve case = yes
short preserve case = yes
snip
here is a snip from the relevant named file on the same server:
snip
venus IN A 10.222.222.2
marsIN A 10.222.222.3
filesnewIN A 10.222.222.3
hpvec1 IN A 10.222.222.167
hpvec2 IN A 10.222.222.168
snip
hpvec1 and hpvec2 are XP home and XP pro clients respectively
venus is not running samba currently
any help would be appreciated.
--
___cliff [EMAIL PROTECTED]http://www.genwax.com/
Sean Roulet
Technology Manager
Artradis Fund Management Pte Ltd
#11-01 Royal Brothers Building
Raffles Place, 22 Malacca Street
Singapore
Re: [Samba] samba PDC problems
On Wed, 2002-12-11 at 23:03, ___cliff rayman___ wrote: ok - did that. joined workgroup WORKGROUP. rebooted (what else). then attempted to change to domain GENWAX.TEST. i received the same error message as previously. bummer - i thought that would be it. i assume you get the welcome to WORKGROUP and welcome to GENWAX.TEST message boxes after you change the machine props? # server name and group stuff workgroup = genwax.test netbios name = filesnew i've never tried this - did you try logging in without the netbios name param? Are your sure your clients are looking at the dns server you mentioned? you might try putting the ip address into the hosts file on the pro machine.. brad -- Bradley W. Langhorst [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
On Thu, 12 Dec 2002, Bradley W. Langhorst wrote: You might try to set a more DNS friendly domain name. ie: One without the '.' in it. Could be a problem. - John T. On Wed, 2002-12-11 at 23:03, ___cliff rayman___ wrote: ok - did that. joined workgroup WORKGROUP. rebooted (what else). then attempted to change to domain GENWAX.TEST. i received the same error message as previously. bummer - i thought that would be it. i assume you get the welcome to WORKGROUP and welcome to GENWAX.TEST message boxes after you change the machine props? # server name and group stuff workgroup = genwax.test netbios name = filesnew i've never tried this - did you try logging in without the netbios name param? Are your sure your clients are looking at the dns server you mentioned? you might try putting the ip address into the hosts file on the pro machine.. brad -- John H Terpstra Email: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
thanks for the try sean, but that did not work either. Sean Roulet wrote: I found that opening it in a text editor and moving the Win2K computername entry that couldn't join up to below the root user. (include all unix and windows hash.) -- ___cliff [EMAIL PROTECTED]http://www.genwax.com/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba PDC problems
On Wed, 11 Dec 2002, ___cliff rayman___ wrote: John H Terpstra wrote: On Thu, 12 Dec 2002, Bradley W. Langhorst wrote: You might try to set a more DNS friendly domain name. ie: One without the '.' in it. Could be a problem. ok - i tried GENWAXTEST. didn't help. i also removed the netbios name and tried both at the same time. no luck. Are you using LDAP? If so, then you need to put all user and machine accounts into the LDAP database. the servers fully qualified name is MARS.GENWAX.TEST. test is like com or org or net. i use my own root names all the time for testing. Providing you are not using LDAP for Samba, use in smb.conf: workgroup = genwax netbios name = mars Also, first stop samba, the remove your secrets.tdb file. Also, remove the browse.dat (and if you have one, wins.dat), then restart samba, wait at least 5 minutes before you try to get your MS Windows client to join the domain. Also, I strongly recommend that you run Samba as your WINS server and set in the MS Windows Client TCP/IP config, the IP address of your samba server for the WINS primary _and_ secondary addresses. To enable WINS serving in samba in smb.conf [globals]: wins support = yes Also, restart the MS Windows machine, and when you log on as the local administrator, do NOT try to browse the network before you join the domain. Additionally, I presume you already have a root account in your smbpasswd file. You will need to use the 'Administrator' account to join the domain, and give it the password you entered when you added 'root' to smbpasswd. Let's see how that goes. - John T. here are some excerps from the ms help files: snip - Error: This computer could not locate a domain controller for the Active Directory domain displayed in the error message because the Domain Name System (DNS) servers used by this computer for name resolution failed to look up the service (SRV) resource record. Cause: The DNS SRV resource record is not registered in DNS. snip - then: Active Directory uses Domain Name System (DNS) to locate domain controllers, enabling computers joining the network to obtain a domain controller, and then begin the process of network authentication. Computers joining an Active Directory domain must satisfy the following three DNS requirements: The computer must be configured with the IP address of a preferred DNS server. (OK - and DNS works fine) The _ldap._tcp.dc._msdcs.DNSDomainName service (SRV) resource record must exist in DNS. (NOPE-don't have this) snip then: set type=srv _ldap._tcp.dc._msdcs.example.microsoft.com Server: dc1.example.microsoft.com Address: 10.0.0.14 _ldap._tcp.dc._msdcs.example.microsoft.com SRV service location priority = 0 weight = 0 port = 389 svr hostname = dc1.example.microsoft.com _ldap._tcp.dc._msdcs.example.microsoft.com SRV service location priority = 0 weight = 0 port = 389 svr hostname = dc2.example.microsoft.com snip port 389 in my /etc/services file is ldap. i am not sure what is causing it to want to do ldap on my computer and not on anyone else's. the server is mars.genwax.test. the win XP pro SP1 client that i am trying to join to the domain is hpvec2.genwax.test. when i try to join it to the domain by either using the wizard or the change button, this is the only interaction with the server that i see via tcpdump: 22:38:00.439236 hpvec2.genwax.test.1064 mars.genwax.test.domain: 16+ SRV ? _ldap._tcp.dc._msdcs.GENWAX.TEST. (50) 22:38:00.439664 mars.genwax.test.domain hpvec2.genwax.test.1064: 16 NXDomain*- 0/1/0 (101) (DF) i need to get this solved, so let me know if there is anything else i can provide that will help. cliff - John T. On Wed, 2002-12-11 at 23:03, ___cliff rayman___ wrote: ok - did that. joined workgroup WORKGROUP. rebooted (what else). then attempted to change to domain GENWAX.TEST. i received the same error message as previously. bummer - i thought that would be it. i assume you get the welcome to WORKGROUP and welcome to GENWAX.TEST message boxes after you change the machine props? # server name and group stuff workgroup = genwax.test netbios name = filesnew i've never tried this - did you try logging in without the netbios name param? Are your sure your clients are looking at the dns server you mentioned? you might try putting the ip address into the hosts file on the pro machine.. brad -- ___cliff [EMAIL PROTECTED]http://www.genwax.com/
[Samba] samba PDC problems
Hi all, I am having trouble setting up samba to act as a PDC. I am fairly new to red hat linux, and have just installedRH 7.3 running the default configuration. I updated samba to 2.2.7 using the online updating feature and followed a step by step tutorial to configure samba to become a PDC. When i try to connect to the domain with windows XP pro, it displays the message "a domain controller for the domain mydomain can not be located" when i choose details it says The error was: "DNS request not supported by name server."(error code 0x232C RCODE_NOT_IMPLEMENTED) The query was for the SRV record for _ldap._tcp.dc._msdcs.mydomain The network is simple, one windows XP pro machine with IP 192.168.1.6 and one RH 7.3 linux machine with IP 192.168.1.5. Connections are working because both machines succuessfully ping each other. I ran testparm with no errors andhave verified the samba server is running properly with "smbclient //mymachine/user -U user -W mydomain" I downloaded and ran the SignOrSeal reg patch for XP, and also disabled the "Domain member: Digitally encrypt or sign secure channel data (always)" option in the local security. I have triple checked the tutorial guide with my config file, and have manually created the required accounts What could be the problem? I have seen other people on this list with the same problem, but the threads seem to die out without a solution. Please help! -Tim
