RE: [Samba] PDC: Problems making the win2k client join domain
Try adding root to smbpasswd and then when adding the domain use root and root's passwd. -Original Message- From: akshay rawat [mailto:[EMAIL PROTECTED]] Sent: Monday, December 09, 2002 3:07 AM To: [EMAIL PROTECTED] Subject: [Samba] PDC: Problems making the win2k client join domain I am having problems making the client win2k machine join the domain . My Samba PDC is configured as follows : 1>added trust account to the smbpasswd file (account to the win2k machine name). 2>set the global admin parameter to "student" (student acnt exists on smb server) Client is configured as follows : 1>user 'student' has been created . Problem : When I change the option of workgroup to domain , the Win2k client is able to recognize the domain but it is giving problems authenticating the usename/passwwd . Which username/passwd am i supposed to give here . The manual that the samba administrative usrname/passwd should be given here , is this the global admin parameter = "student" usrname/passwd earlier set in the samba PDC or is it something else ? I`m using Samba 2.2.3a .The error message shown is 'unknown username or bad password'. Thank You , Akshay -- __ http://www.linuxmail.org/ Now with POP3/IMAP access for only US$19.95/yr Powered by Outblaze -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems...
On Sun, Nov 24, 2002 at 01:09:02AM +, Brett Cook wrote: > I've checked all the settings in the smb.conf against the man pages, > all seem correct. > > What else could I be missing? Why can't it see the server? At the samba maschine command line: Is the client pc pingable? Is there a running firewall config which permits/denies services? Can you access via smbclient your samba machine? "smbclient //tatty/root -U root -W THEMOLE" Make sure that "root" is a valid smnbpasswd account. If one of the answers is no, you have a local problem (networking/sambaconfig). What unix/linux do you use? What samba version do you use? Do you compile Samba by your self or have you installed a package from your distri? If you have installed ap package, which one (fullname). -- Frank Matthieß[EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems...
On Sat, 2002-11-23 at 20:09, Brett Cook wrote: I don't see an obvious problem with your conf file... the nmbd log you posted looks okay too. please post the log.smbd of a machine trying to join the domain. what kind of failure do you see? does it fail to log on, what is the client, etc? brad -- Bradley W. Langhorst <[EMAIL PROTECTED]> -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems...
I've checked all the settings in the smb.conf against the man pages, all seem correct. What else could I be missing? Why can't it see the server? The following is my config file. /etc/samba/smb.conf [global] workgroup = THEMOLE netbios name = TATTY netbios aliases = PDC server string = Samba Server %v encrypt passwords = Yes log file = /var/log/samba/log.%m max log size = 50 printcap name = lpstat domain logons = Yes os level = 64 preferred master = Yes domain master = Yes dns proxy = No wins support = Yes preload = pdf-generator printing = cups security = user local master = yes [homes] comment = Home Directories read only = No browseable = No [print$] path = /var/lib/samba/printers write list = @adm root [pdf-generator] comment = PDF Generator (only valid users) path = /var/tmp printable = Yes print command = /usr/share/samba/scripts/print-pdf %s ~%u %L%u %m %I & [netlogon] path = /home/netlogon write list = root -- ::TheMole::. "did i mistake your words? did i betray your well worn trust?" http://themole.yi.org ~ http://www.buhsnarf.net -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems...
On Fri, Nov 22, 2002 at 02:34:18PM +, [EMAIL PROTECTED] wrote: > Just saw this in my System log. > > Nov 22 > > 14:20:09 nmbd query_name: Failed to send packet trying to query name > THEMOLE<1d> > > (with the <1d> on the end) <1d> is for local master browser. "Samba-HOWTO-Collection.pdf" section 2.3 page 9 (14/88) In my first answer i give you the hint to add "local master broswer = yes". Do you forgot this in your smb.conf? Please make a crosscheck from your actual samba config(no - not the smb.conf, try testparm to get _all_ parm's) and the "Samba-HOWTO-Collection.pdf". Do a "testparm > samba.config". You must press _one_ key to dump this to the file ;-) It will save a loot of your time if you check all unknown parm's in testparm output with "man smb.conf" in another console/terminal window. I've learned much about samba with this crosscheck. Every parameter you don't understand will left with default values. > > What's that about? Could it have something to do with anything? I think so. Please make sure that your samba server is the only pdc for THEMOLE and the only one wins server for your network. Are there runnning nt server systems? Do the serve wins or the domain? There can only by one wins server in your network. samba is abelt to use a nt wins server with the globale smb.conf parm "wins server". It is preferred to use the nt winsserver if you have one. > > Thanks. This questions should be send to the sambalist, because this is helpfull for all other new people, which want to setup a samba server as pdc. For you there is a better chance to get approbiate answers. Think about timzone diff's ;-). -- Frank Matthieß[EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems...
On Fri, Nov 22, 2002 at 09:07:48AM +, [EMAIL PROTECTED] wrote: > >Do you use the docu from the Samba howto collection? > > Yes. I used the "How to Configure Samba 2.2 as a Primary Domain > Controller" HOWTO. > > >Did you check your running config (get this with testparm) and verified > it > >against docu and "man smb.conf". > > Yes, all seems to be fine. Is there any other configs I should change? I think no. > > All workstations are on the same subnet, server by the DHCP server > (Samba machine) which gives out the WINS server address as itself. Do you try to setup the machine account manually on the samba pdc? > > I just don't understand what it could be. It's so frustrating! > Does the local connection funtion properly? Make it running first. Than you are sure, that all other problems must be client and/or network problems. What happend, if you try to "browse" via smbclient from samba server commandline to your samba service? smbclient -L samabservername -U adminusername -W domainname With smbclient //samabservername/sharename -U adminusername -W domainname you are logon and get another commandline ontop of samba in the named share. What happend? Any error messages? Which? -- Frank Matthieß[EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems...
On Thu, Nov 21, 2002 at 03:49:16PM +, [EMAIL PROTECTED] wrote: > I've added all those and still no joy :( > > Any other hints? > Do you use the docu from the Samba howto collection? Did you check your running config (get this with testparm) and verified it against docu and "man smb.conf". -- Frank Matthieß[EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems...
On Thu, Nov 21, 2002 at 02:30:05PM +, [EMAIL PROTECTED] wrote: > Hi all, > > I've looked through the archives and I can't seem to find a solution, so > here's my problem. > > I have three Win2k clients and one Samba server which I set up as a PDC > (or at least I thought so.) > > The domain is "THEMOLE" yet when I try to join the domain from the > clients it says; > > "The following error occured validaing the name "THEMOLE" > > The specified domain either does not exist or could not be contacted." > > I've included my smb.conf below and was just wondering if I've done > something stupidly wrong? Add "security = user". In samba 2.2 this is default. > > Thanks in advance. > > --- > > My smb.conf is : > > # Global parameters > [global] > workgroup = THEMOLE > netbios name = TATTY > netbios aliases = PDC > server string = Samba Server %v > encrypt passwords = Yes > log file = /var/log/samba/log.%m > max log size = 50 > printcap name = lpstat > domain logons = Yes Ack. > os level = 64 Ack. > preferred master = True True? I prefer "Yes", possibly it run's with "True". Check with the testparm command, all settings as you expect. > domain master = True Yes. Add "local master = Yes". Take a look in Samba-HOWTO-Collection.pdf Page 49/88 > dns proxy = No > wins support = Yes Ack. Make sure that your clients will use this wins server. Frank. -- Frank Matthieß[EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems 2
On Wed, 20 Nov 2002, Michele Santucci wrote: > BTW if I try to login after having 'sucessfully' joined the domain and > rebooted the system I got this: > > "Cannot login! The remote user doesn't exist and/or the password is invalid" > > (with every user registered onto the pdc) > > > P.S. I patched the workstation (W2K SP3) with the plainpassword.reg fix... Sorry. Domain security is NOT compatible with plain-text password only servers. You need to enable encrypted passwords and enter each machine and user into your smbpasswd database. Follow the directions in the Entire-HOWTO-Collection on the samba home page. - John T. -- John H Terpstra Email: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems 2
BTW if I try to login after having 'sucessfully' joined the domain and rebooted the system I got this: "Cannot login! The remote user doesn't exist and/or the password is invalid" (with every user registered onto the pdc) P.S. I patched the workstation (W2K SP3) with the plainpassword.reg fix... C.ya -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems
> Michele Santucci wrote: > > I got the problem clear: > > when i try to join the domain (as root) smb reports in the machine log > > that guest is trying to do something and it fails authentication... > > You never mentioned that you couldn't join the domain. You should get a > "Welcome to the Domain" message if it worked. I now assume you > didn't get one. Not at all I got the Welcome to the domain CCGM but in the logs I got this: [2002/11/20 19:57:44, 0] smbd/service.c:make_connection(381) make_connection: root logged in as admin user (root privileges) [2002/11/20 19:57:44, 2] rpc_server/srv_samr_nt.c:_samr_lookup_domain(2050) Returning domain sid for domain CCGM -> S-1-5-21-739079523-194949929-328313008 3 [2002/11/20 19:57:46, 0] smbd/password.c:authorise_login(863) authorise_login: rejected invalid user guest [2002/11/20 19:57:47, 2] smbd/service.c:make_connection(331) Invalid username/password for ipc$ [guest] [2002/11/20 19:58:45, 0] smbd/password.c:authorise_login(863) authorise_login: rejected invalid user guest [2002/11/20 19:58:45, 2] smbd/service.c:make_connection(331) Invalid username/password for ipc$ [guest] [2002/11/20 19:59:46, 2] smbd/server.c:exit_server(461) Closing connections All these lines comes during the domain joining of the workstation.. > Please remember, the more information you give about your problem, the > easier it is for other people to help you. Of course... that's the way I 'd attached the smb.conf file :-) (this time I wrote it by hand with pico) > $ smbclient -L -U root yep and I got this: Domain=[CCGM] OS=[Unix] Server=[Samba 2.2.6] Sharename Type Comment - --- public Disk Public Folder ccgm Disk CCGM Folder satyagra Disk Satya Gra Folder IPC$ IPC IPC Service (Samba Server 2.2.6) ADMIN$ Disk IPC Service (Samba Server 2.2.6) root Disk Home Directories Server Comment ---- ARCHIVIO CCGMSERVER Samba Server 2.2.6 GFX RECEPTION SERVER-CCGM Samba Server 2.2.6 VIDEO WorkgroupMaster ---- CCGM CCGMSERVER WORKGROUPGFX smb.conf Description: Binary data
Re: [Samba] PDC Problems
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Michele Santucci wrote: > I got the problem clear: > when i try to join the domain (as root) smb reports in the machine log > that guest is trying to do something and it fails authentication... You never mentioned that you couldn't join the domain. You should get a "Welcome to the Domain" message if it worked. I now assume you didn't get one. Please remember, the more information you give about your problem, the easier it is for other people to help you. > > I partially fixed it mapping the guest user on root but this's not what > security manuals suggest ;-) > > Hope someone can clarify me now... > >bye by(t)e[s]TuX! Can you connect normally to the server as root? $ smbclient -L -U root (you can try this on the server itself). If not, you need to add an smbpasswd for root. As root, do: # smbpasswd -a Then try it again. If it works, you should now be able to join the domain. This is all covered in the documetation that ships with samba, and the webpage I sent a link to you about: http://ranger.dnsalias.com/mandrake/muo/connect/csamba6.html Regards, Buchan - -- |Registered Linux User #182071-| Buchan MilneMechanical Engineer, Network Manager Cellphone * Work+27 82 472 2231 * +27 21 8828820x121 Stellenbosch Automotive Engineering http://www.cae.co.za GPG Key http://ranger.dnsalias.com/bgmilne.asc 1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7 -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE925tFrJK6UGDSBKcRAiWMAJ446EqOEN4pMQA5MgsJ5PF6ZGom+QCghDCu IYZuihUfFVckmxIymvjSdiQ= =PVY5 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems
I got the problem clear: when i try to join the domain (as root) smb reports in the machine log that guest is trying to do something and it fails authentication... I partially fixed it mapping the guest user on root but this's not what security manuals suggest ;-) Hope someone can clarify me now... bye by(t)e[s]TuX! -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Michele Santucci wrote: > Ok this time I attached all the involved files. > > I try to explain the incident from the very beginning: > > I have a linux server (Mandrake Pro Suite 8.2 updated to the latest fixes > etc.) > I removed the supplied 2.2.3 samba distrib. and reinstalled the new 2.2.6 > (mandrake 8.2 rpm taken from the binary distribution of samba.org) It's normally best *not* to remove a package, but just to upgrade it, but this shouldn't make much of a difference. > , the > attached smb.conf show how I set it up to act as a PDC. I haven't looked at it in detail now, but FYI, the default smb.conf that ships with the samba RPMS on Mandrake needs about 6 lines uncommented to turn it into a domain controller with many features. I don't like swat because it removes all these well-tested examples which are configured for Mandrake including the directory layout we use. > The domain must be CCGM and the server netbios name CCGM-SERVER > I just added an alias for backward compatibilities... > I created all the users (since we have two distinct kind of users I created > two > groups i.e. "ccgm" and "satyagra") and 'passed' everyone to smbpasswd. > Now I have to join a W2K PRO SP3 workstation called 'video' to this domain, > it run just TCP/IP (no NETBeui neither IPX). > Before attempting to join the domain I set the workstation to act as a > standalone pc > & then rebooted it (I also restarted smbd & nmbd) I logged in as > administrator, then > I start the network ID configuration (I supplied root as the username (with > it's password) > VIDEO as the computer name and CCGM as the domain name), the procedure goes > on > haging a little just before the last step after that I found these lines on > log.video but the > w2k worstation at this time reported no errors: > >[2002/11/19 13:13:28, 0] smbd/password.c:authorise_login(863) > authorise_login: rejected invalid user guest > > After joining the domain the network ID procedure wizard asked me to add a > local user I always use the procedure that I have made animated screenshots of here: http://ranger.dnsalias.com/mandrake/muo/connect/csamba6.html#join I don't trust wizards ;-). > so I tried to import a domain account and I got these lines in the log.video > file: > > [2002/11/19 13:47:03, 0] smbd/service.c:make_connection(381) > make_connection: root logged in as admin user (root privileges) > > [2002/11/19 13:47:08, 0] smbd/password.c:authorise_login(863) > authorise_login: rejected invalid user guest > > This time the w2k workstation reported me the infamous error: > "Cannot add user the trust relationship has failed" > > I really cannot understand what's going on... > But have you rebooted the machine and tried to log in? Also, we don't run SP3 yet, we currently only run up to SP2 due to issues with the EULA ... Buchan - -- |Registered Linux User #182071-| Buchan MilneMechanical Engineer, Network Manager Cellphone * Work+27 82 472 2231 * +27 21 8828820x121 Stellenbosch Automotive Engineering http://www.cae.co.za GPG Key http://ranger.dnsalias.com/bgmilne.asc 1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7 -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE92lM5rJK6UGDSBKcRAtwfAJ411872z9AjPaOgZrqjM+MoL6oNYgCfTM1B qoBOfGF0M8QuDUd/k241wcM= =AXzu -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems
Try read and aply /usr/share/doc/samba/readme.w2ksp2 . - Original Message - From: "Michele Santucci" <[EMAIL PROTECTED]> To: "Buchan Milne" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Tuesday, November 19, 2002 2:04 PM Subject: Re: [Samba] PDC Problems > Ok this time I attached all the involved files. > > I try to explain the incident from the very beginning: > > I have a linux server (Mandrake Pro Suite 8.2 updated to the latest fixes > etc.) > I removed the supplied 2.2.3 samba distrib. and reinstalled the new 2.2.6 > (mandrake 8.2 rpm taken from the binary distribution of samba.org), the > attached smb.conf show how I set it up to act as a PDC. > The domain must be CCGM and the server netbios name CCGM-SERVER > I just added an alias for backward compatibilities... > I created all the users (since we have two distinct kind of users I created > two > groups i.e. "ccgm" and "satyagra") and 'passed' everyone to smbpasswd. > Now I have to join a W2K PRO SP3 workstation called 'video' to this domain, > it run just TCP/IP (no NETBeui neither IPX). > Before attempting to join the domain I set the workstation to act as a > standalone pc > & then rebooted it (I also restarted smbd & nmbd) I logged in as > administrator, then > I start the network ID configuration (I supplied root as the username (with > it's password) > VIDEO as the computer name and CCGM as the domain name), the procedure goes > on > haging a little just before the last step after that I found these lines on > log.video but the > w2k worstation at this time reported no errors: > >[2002/11/19 13:13:28, 0] smbd/password.c:authorise_login(863) > authorise_login: rejected invalid user guest > > After joining the domain the network ID procedure wizard asked me to add a > local user > so I tried to import a domain account and I got these lines in the log.video > file: > > [2002/11/19 13:47:03, 0] smbd/service.c:make_connection(381) > make_connection: root logged in as admin user (root privileges) > > [2002/11/19 13:47:08, 0] smbd/password.c:authorise_login(863) > authorise_login: rejected invalid user guest > > This time the w2k workstation reported me the infamous error: > "Cannot add user the trust relationship has failed" > > I really cannot understand what's going on... > > > >bye by(t)e[s] TuX! > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems
Ok this time I attached all the involved files. I try to explain the incident from the very beginning: I have a linux server (Mandrake Pro Suite 8.2 updated to the latest fixes etc.) I removed the supplied 2.2.3 samba distrib. and reinstalled the new 2.2.6 (mandrake 8.2 rpm taken from the binary distribution of samba.org), the attached smb.conf show how I set it up to act as a PDC. The domain must be CCGM and the server netbios name CCGM-SERVER I just added an alias for backward compatibilities... I created all the users (since we have two distinct kind of users I created two groups i.e. "ccgm" and "satyagra") and 'passed' everyone to smbpasswd. Now I have to join a W2K PRO SP3 workstation called 'video' to this domain, it run just TCP/IP (no NETBeui neither IPX). Before attempting to join the domain I set the workstation to act as a standalone pc & then rebooted it (I also restarted smbd & nmbd) I logged in as administrator, then I start the network ID configuration (I supplied root as the username (with it's password) VIDEO as the computer name and CCGM as the domain name), the procedure goes on haging a little just before the last step after that I found these lines on log.video but the w2k worstation at this time reported no errors: [2002/11/19 13:13:28, 0] smbd/password.c:authorise_login(863) authorise_login: rejected invalid user guest After joining the domain the network ID procedure wizard asked me to add a local user so I tried to import a domain account and I got these lines in the log.video file: [2002/11/19 13:47:03, 0] smbd/service.c:make_connection(381) make_connection: root logged in as admin user (root privileges) [2002/11/19 13:47:08, 0] smbd/password.c:authorise_login(863) authorise_login: rejected invalid user guest This time the w2k workstation reported me the infamous error: "Cannot add user the trust relationship has failed" I really cannot understand what's going on... bye by(t)e[s] TuX! smbusers Description: Binary data smb.conf Description: Binary data log.nmbd Description: Binary data log.smbd Description: Binary data log.video Description: Binary data passwd Description: Binary data group Description: Binary data smbpasswd Description: Binary data
Re: [Samba] PDC Problems
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 > Message: 18 > From: "Michele Santucci" <[EMAIL PROTECTED]> > To: "Samba" <[EMAIL PROTECTED]> > Date: Mon, 18 Nov 2002 21:34:13 +0100 > Subject: [Samba] PDC Problems > > Hello, > > That's what I got trying to join a Win2K workstation to my domain (managed > by a linux/samba server), > after I joined the domain the system refuse to logon/add any domain user > reporting a trust relationship failure... > 1) All the clients are Windows 2000 sp3 machines (tcp + netbeui) > 2) Linux server use a Mandrake 8.2 pro suite running samba 2.2.6 > > /etc/passwd > > video$:x:504:421:Machine Account:/dev/null:/bin/false > > /etc/samba/smbpasswd > > video$:504:DD8EB67612E73F3842517E31664A1C6C:BC3911425DC8A72332F814FC212ABE91 > :[W > ]:LCT-3DD8E642: > > ^ seems like it created the machine account correctly > > > > [root@server samba]# more log.video > [2002/11/18 14:08:17, 0] smbd/service.c:make_connection(381) > make_connection: root logged in as admin user (root privileges) > > As long as I add machine accounts it just show this > > [2002/11/18 14:09:18, 0] smbd/password.c:authorise_login(863) > authorise_login: rejected invalid user guest > [2002/11/18 14:10:30, 0] smbd/password.c:authorise_login(863) > authorise_login: rejected invalid user guest > > these lines appear after the procedure created the machine account and I try > to add a new local account (called michele) taking it from the domain. Explain this more please. Are you trying to log in with a domain account that exists on the samba server, which has been given an smbpasswd? The user is being mapped to 'guest' which seems to not exist. > > [root@server samba]# more log.smbd > [2002/11/18 14:06:42, 0] smbd/server.c:main(707) > smbd version 2.2.6 started. > Copyright Andrew Tridgell and the Samba Team 1992-2002 > [2002/11/18 14:07:42, 0] smbd/server.c:open_sockets(238) > Got SIGHUP > > > > This's my CONFIGURATION file ... > > [root@server samba]# more /etc/samba/smb.conf > # Samba config file created using SWAT > # from 0.0.0.0 (0.0.0.0) > # Date: 2002/11/18 13:52:01 > > # Global parameters > [global] > workgroup = CCGM-DOM > netbios name = CCGM-SERVER > server string = Samba Server %v > encrypt passwords = Yes > update encrypted = Yes > null passwords = Yes > pam password change = Yes You may want to disable unix password sync and pam password change until you have this working. You haven't got a 'passwd chat' configured, which could cause this to fail. > username map = /etc/samba/smbusers > unix password sync = Yes > admin log = Yes > log file = /var/log/samba/log.%m > max log size = 50 > time server = Yes > socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 > printcap name = lpstat > domain admin group = @smb-admin > domain guest group = @users > add user script = /usr/sbin/useradd -d /dev/null -g machines -c > 'Machine Account' -s /bin/false -M %u > domain logons = Yes > os level = 64 > preferred master = Yes > domain master = Yes > wins proxy = Yes > wins support = Yes > guest account = guest > valid users = @smb-admin @ccgm @satyagra > admin users = @smb-admin > read list = @ccgm @satyagra > write list = @smb-admin > printer admin = @smb-admin > printing = cups > > [homes] > comment = Home Directories > read only = No > browseable = No > > [printers] > comment = All Printers > path = /var/spool/samba > create mask = 0700 > guest ok = Yes > printable = Yes > print command = lpr-cups -P %p -o raw %s -r # using client side > printer drivers. > browseable = No > > [print$] > path = /var/lib/samba/printers > write list = @smb-admin > > > > - -- |Registered Linux User #182071-| Buchan MilneMechanical Engineer, Network Manager Cellphone * Work+27 82 472 2231 * +27 21 8828820x121 Stellenbosch Automotive Engineering http://www.cae.co.za GPG Key http://ranger.dnsalias.com/bgmilne.asc 1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7 -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE92gi9rJK6UGDSBKcRAjgsAKDDTIkG6nlPjohDHtP6mDlzXg7X7wCgrSwU fmYQJKCcYdUK7wp7er5ILAo= =WU74 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems
In your conf miss netlogon share ... - Original Message - From: "Michele Santucci" <[EMAIL PROTECTED]> To: "Samba" <[EMAIL PROTECTED]> Sent: Monday, November 18, 2002 9:34 PM Subject: [Samba] PDC Problems > Hello, > > That's what I got trying to join a Win2K workstation to my domain (managed > by a linux/samba server), > after I joined the domain the system refuse to logon/add any domain user > reporting a trust relationship failure... > 1) All the clients are Windows 2000 sp3 machines (tcp + netbeui) > 2) Linux server use a Mandrake 8.2 pro suite running samba 2.2.6 > > /etc/passwd > > video$:x:504:421:Machine Account:/dev/null:/bin/false > > /etc/samba/smbpasswd > > video$:504:DD8EB67612E73F3842517E31664A1C6C:BC3911425DC8A72332F814FC212ABE91 > :[W > ]:LCT-3DD8E642: > > ^ seems like it created the machine account correctly > > > > [root@server samba]# more log.video > [2002/11/18 14:08:17, 0] smbd/service.c:make_connection(381) > make_connection: root logged in as admin user (root privileges) > > As long as I add machine accounts it just show this > > [2002/11/18 14:09:18, 0] smbd/password.c:authorise_login(863) > authorise_login: rejected invalid user guest > [2002/11/18 14:10:30, 0] smbd/password.c:authorise_login(863) > authorise_login: rejected invalid user guest > > these lines appear after the procedure created the machine account and I try > to add a new local account (called michele) taking it from the domain. > > [root@server samba]# more log.smbd > [2002/11/18 14:06:42, 0] smbd/server.c:main(707) > smbd version 2.2.6 started. > Copyright Andrew Tridgell and the Samba Team 1992-2002 > [2002/11/18 14:07:42, 0] smbd/server.c:open_sockets(238) > Got SIGHUP > > > > This's my CONFIGURATION file ... > > [root@server samba]# more /etc/samba/smb.conf > # Samba config file created using SWAT > # from 0.0.0.0 (0.0.0.0) > # Date: 2002/11/18 13:52:01 > > # Global parameters > [global] > workgroup = CCGM-DOM > netbios name = CCGM-SERVER > server string = Samba Server %v > encrypt passwords = Yes > update encrypted = Yes > null passwords = Yes > pam password change = Yes > username map = /etc/samba/smbusers > unix password sync = Yes > admin log = Yes > log file = /var/log/samba/log.%m > max log size = 50 > time server = Yes > socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 > printcap name = lpstat > domain admin group = @smb-admin > domain guest group = @users > add user script = /usr/sbin/useradd -d /dev/null -g machines -c > 'Machine Account' -s /bin/false -M %u > domain logons = Yes > os level = 64 > preferred master = Yes > domain master = Yes > wins proxy = Yes > wins support = Yes > guest account = guest > valid users = @smb-admin @ccgm @satyagra > admin users = @smb-admin > read list = @ccgm @satyagra > write list = @smb-admin > printer admin = @smb-admin > printing = cups > > [homes] > comment = Home Directories > read only = No > browseable = No > > [printers] > comment = All Printers > path = /var/spool/samba > create mask = 0700 > guest ok = Yes > printable = Yes > print command = lpr-cups -P %p -o raw %s -r # using client side > printer drivers. > browseable = No > > [print$] > path = /var/lib/samba/printers > write list = @smb-admin > > > > > bye by(t)e[S]...TuX! > > > --- > Questo messaggio è certificato Virus Free - AVG 6 Free Edition > Checked by AVG anti-virus system (http://www.grisoft.com). > Version: 6.0.419 / Virus Database: 235 - Release Date: 13/11/2002 > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems (read this the first one is incomplete)
> Sorry, I just want to clarify, does it fail when adding a computer > account in the domain? No... it fails after that... when the system ask to create a local profile for a Domain user... it happens with all the users, normal ones and admins... > > In the machine specific log file if found this: > > > > [2002/10/31 10:14:32, 0] smbd/password.c:authorise_login(863) > > authorise_login: rejected invalid user guest > > [2002/10/31 10:14:32, 0] smbd/password.c:authorise_login(863) > > authorise_login: rejected invalid user guest > > > > When you were trying to do what? When I try to create a local profile for a Domain user... > > I already set the w2k workstations to send non encrypted password to third > > parties smb server. > > I checked /etc/passwd, group and /etc/samba/smbpasswd file and they're > > correcly updated with machine and user accounts. > > > > You cannot join a windows 2000 machine to a domain if you have set it to > use clear text passwords, and you smb.conf is set for encrypted passwords. U're right it seemed strage to me too but I found notes about setting encryption in the smb.conf file in the samba PDC faq & howto and also hints about unsetting the encryption for third party PDCs in similar documentation... and anyway this fix another problem: when u try to add a Domain user in a local machine u can specify it manually or u can browse it from the PDC... if don't enable the password encryption for third parties server the user list browsing fails... > Can you be more clear on exactly which "procedure" you are using? About what? bye by(t)e[S]...TuX! -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems (read this the first one is incomplete)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 > Message: 3 > From: "Michele Santucci" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Date: Thu, 31 Oct 2002 10:25:34 +0100 > Subject: [Samba] PDC Problems (read this the first one is incomplete) > > Sorry but I've posted an incomplete message before that: > > I've got a big problem with my PDC (Mandrake 8.2 with samba 2.2.5): > when I try to join the domain from a W2KPRO (sp3) workstation the procedure > goes on well until it require to create a local account for a Domain user > ... the system let me browse all > the user account on the domain controller but when I try to add it reports > this error: Sorry, I just want to clarify, does it fail when adding a computer account in the domain? > "The trust relationship between this workstation and the primary domain is > failed" (probably the english text is different but this should be the > meaning since > I'm traslating it from italian). > > In the machine specific log file if found this: > > [2002/10/31 10:14:32, 0] smbd/password.c:authorise_login(863) > authorise_login: rejected invalid user guest > [2002/10/31 10:14:32, 0] smbd/password.c:authorise_login(863) > authorise_login: rejected invalid user guest > When you were trying to do what? > I already set the w2k workstations to send non encrypted password to third > parties smb server. > I checked /etc/passwd, group and /etc/samba/smbpasswd file and they're > correcly updated with machine and user accounts. > You cannot join a windows 2000 machine to a domain if you have set it to use clear text passwords, and you smb.conf is set for encrypted passwords. > Anyway these are smb.conf, group,passwd and smbpasswd interested rows: > Which show that you have successfully added machines with the name video and gfx to the domain. FYI, if you have any pre-sp3 machines, please test with those first ... And, with the default smb.conf (such as http://ranger.dnsalias.com/mandrake/samba/smb.conf), you only have to uncomment about 10 lines to get a working smb.conf for a domain controller (such as this file http://ranger.dnsalias.com/mandrake/samba/smb-domain-controller.conf) on any recent version of Mandrake linux. Can you be more clear on exactly which "procedure" you are using? And to answer Mike Rambo's replies, when samba runs in 'security = user', add user script is used when samba creates a new machine account. Mandrake ships with the following example for a domain controller not using LDAP backend: # Script for domain controller for adding machines: ; add user script = /usr/sbin/useradd -d /dev/null -g machines -c 'Machine Account' -s /bin/false -M %u Regards, Buchan (PDC runs Mandrake 8.2 / samba-2.2.6). - -- |Registered Linux User #182071-| Buchan MilneMechanical Engineer, Network Manager Cellphone * Work+27 82 472 2231 * +27 21 8828820x121 Stellenbosch Automotive Engineering http://www.cae.co.za GPG Key http://ranger.dnsalias.com/bgmilne.asc 1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7 -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE9wVCnrJK6UGDSBKcRAkCVAKDG2nBdlKZa2fgDyYlmwgM1eGow1gCfRCfp fNQBqm1r6+AMhgk25iRwy7g= =YKzg -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems (read this the first one is incomplete)
Michele Santucci wrote: > > > > "The trust relationship between this workstation and the primary domain > is > > > failed" (probably the english text is different but this should be the > > > meaning since > > > I'm traslating it from italian). > > > > > > security = USER > > > add user script = /usr/sbin/adduser -n -g machines -c Machine -d > > > /dev/null -s /bin/false %m$ > > > > According to the smb.conf man page security has to be DOMAIN or SERVER > > to use the add user script option. > > I don't know what man page u're reading but mine says that the only security > option not useable for the adduser script is 'SHARE' > anyway the 'USER' option is compulsory since I have got to set the samba > server to act as a PDC. > > Anyone else listening > > c'ya ... TUX Sorry - only tried to help... SMB.CONF(5) SMB.CONF(5) NAME smb.conf - The configuration file for the Samba suite SYNOPSIS The smb.conf file is a configuration file for the Samba suite. smb.conf contains runtime config uration information for the Samba programs. The smb.conf file is designed to be configured and administered by the swat(8) program. The complete description of the file format and possible parameters held within are here for reference purposes. add user script (G) This is the full pathname to a script that will be run AS ROOT by smbd(8) under special circumstances described below. Normally, a Samba server requires that UNIX users are created for all users accessing files on this server. For sites that use Windows NT account databases as their primary user database creating these users and keeping the user list in sync with the Windows NT PDC is an onerous task. This option allows smbdto create the required UNIX users ON DEMAND when a user accesses the Samba server. >>> In order to use this option, smbd must be set to security = server or >security = domain and add user script must be set to a full pathname for a script that will create a UNIX user given one argument of %u, which expands into the UNIX user name to create. When the Windows user attempts to access the Samba server, at login (session setup in the SMB protocol) time, smbdcontacts the password server and attempts to authenticate the given user with the given password. If the authentication succeeds then smbd attempts to find a UNIX user in the UNIX password database to map the Windows user into. If this lookup fails, and add user script is set then smbd will call the specified script AS ROOT, expanding any %u argument to be the user name to create. If this script successfully creates the user then smbd will continue on as though the UNIX user already existed. In this way, UNIX users are dynamically created to match existing Windows NT accounts. See also security, password server, delete user script. Default: add user script = Example: add user script = /usr/local/samba/bin/add_user %u This box has samba 2.2.2 - has it changed with newer/older versions? -- Mike Rambo [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems (read this the first one is incomplete)
> > "The trust relationship between this workstation and the primary domain is > > failed" (probably the english text is different but this should be the > > meaning since > > I'm traslating it from italian). > > > > security = USER > > add user script = /usr/sbin/adduser -n -g machines -c Machine -d > > /dev/null -s /bin/false %m$ > > According to the smb.conf man page security has to be DOMAIN or SERVER > to use the add user script option. I don't know what man page u're reading but mine says that the only security option not useable for the adduser script is 'SHARE' anyway the 'USER' option is compulsory since I have got to set the samba server to act as a PDC. Anyone else listening c'ya ... TUX -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems (read this the first one is incomplete)
Michele Santucci wrote: > > I've got a big problem with my PDC (Mandrake 8.2 with samba 2.2.5): > when I try to join the domain from a W2KPRO (sp3) workstation the procedure > goes on well until it require to create a local account for a Domain user > ... the system let me browse all > the user account on the domain controller but when I try to add it reports > this error: > "The trust relationship between this workstation and the primary domain is > failed" (probably the english text is different but this should be the > meaning since > I'm traslating it from italian). > > security = USER > add user script = /usr/sbin/adduser -n -g machines -c Machine -d > /dev/null -s /bin/false %m$ According to the smb.conf man page security has to be DOMAIN or SERVER to use the add user script option. man smb.conf Search for add user script for details. -- Mike Rambo [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems
On the client machine; Control Panel > Administration Tools > Local Security Policy > Local Policy > Security Options > Send unencrypted password to third-party SMB servers = enabled Michele Santucci wrote: >>Are the user and machine$ added to your /etc/passwd and smbpasswd files? >> >> > >all the user already added, I'm trying to add machine$ automatically (via >adduser) > > > >>Also do you have send unencrypted passwd to third party smb servers >>enabled in you local security policy settings? >> >> > >How? > >Something like that? > > encrypt passwords = Yes > > > >bye by(t)e[S]...TuX! > > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC Problems
When do you get this problem and what are your client settings. Are you moving an existing account to another machine or the same machine with a new os? Nick Michele Santucci wrote: >This's my conf file I still have problems but the error message is >different this time, it sounds like (translating it from italian): >"It's impossible to join this machine to the domain. There's a conflict >between the supllied credential and pre existent ones" > >P.S. When v3.0 will be released? > >bye by(t)e[S]...TuX! > > > > ># Samba config file created using SWAT ># from 0.0.0.0 (0.0.0.0) ># Date: 2002/10/25 17:42:26 > ># Global parameters >[global] > coding system = > client code page = 850 > code page directory = /var/lib/samba/codepages > workgroup = CCGM > netbios name = SERVER-CCGM > netbios aliases = > netbios scope = > server string = CCGM Samba Server > interfaces = eth0 > bind interfaces only = No > security = USER > encrypt passwords = Yes > update encrypted = No > allow trusted domains = Yes > hosts equiv = > min passwd length = 5 > map to guest = Never > null passwords = No > obey pam restrictions = No > password server = > smb passwd file = /etc/samba/smbpasswd > root directory = > pam password change = No > passwd program = /usr/bin/passwd > passwd chat = *new*password* %n\n *new*password* %n\n *changed* > passwd chat debug = No > username map = > password level = 0 > username level = 0 > unix password sync = Yes > restrict anonymous = No > lanman auth = Yes > use rhosts = No > admin log = No > log level = 0 > syslog = 1 > syslog only = No > log file = /var/log/samba/log.%m > max log size = 50 > timestamp logs = Yes > debug hires timestamp = No > debug pid = No > debug uid = No > protocol = NT1 > large readwrite = No > max protocol = NT1 > min protocol = CORE > read bmpx = No > read raw = Yes > write raw = Yes > nt smb support = Yes > nt pipe support = Yes > nt status support = Yes > announce version = 4.5 > announce as = NT > max mux = 50 > max xmit = 65535 > name resolve order = lmhosts host wins bcast > max packet = 65535 > max ttl = 259200 > max wins ttl = 518400 > min wins ttl = 21600 > time server = No > unix extensions = No > change notify timeout = 60 > deadtime = 0 > getwd cache = Yes > keepalive = 300 > lpq cache time = 10 > max smbd processes = 0 > max disk size = 0 > max open files = 1 > read size = 16384 > socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 > stat cache size = 50 > use mmap = Yes > total print jobs = 0 > load printers = Yes > printcap name = lpstat > disable spoolss = No > enumports command = > addprinter command = > deleteprinter command = > show add printer wizard = Yes > os2 driver map = > strip dot = No > mangling method = hash > character set = > mangled stack = 50 > stat cache = Yes > domain admin group = @ccgm-admin > domain guest group = > machine password timeout = 604800 > add user script = > delete user script = > logon script = > logon path = \\%N\%U\profile > logon drive = > logon home = \\%N\%U > domain logons = Yes > os level = 65 > lm announce = Auto > lm interval = 60 > preferred master = True > local master = Yes > domain master = True > browse list = Yes > enhanced browsing = Yes > dns proxy = Yes > wins proxy = Yes > wins server = > wins support = Yes > wins hook = > kernel oplocks = Yes > lock spin count = 3 > lock spin time = 10 > oplock break wait time = 0 > add share command = > change share command = > delete share command = > config file = > preload = > lock dir = /var/cache/samba > pid directory = /var/run/samba > utmp directory = > wtmp directory = > utmp = No > default service = > message command = > dfree command = > valid chars = > remote announce = > remote browse sync = > socket address = 0.0.0.0 > homedir map = auto.home > time offset = 0 > NIS homedir = No > source environment = > panic action = > hide local users = No > host msdfs = No > winbind uid = > winbind gid = > template homedir = /home/%D/%U > template shell = /bin/false > winbind separator = \ > winbind cache time = 15 > winbind enum users = Yes > winbind enum groups = Yes > winbind use default domain = Yes > comment = > path = > alternate permissions = No > username = guest > guest account = guest > invalid users = > valid users = @ccgm-admin, @ccgm, @satya > admin users = @ccgm-admin > read list = > write list = > printer admin = > force user = > force group = > read only = Yes > create mask = 0744 > force create mode = 00 > security mask = 0777 > force security mode = 00 > directory mask = 0755 > force directory mode = 00 > directory security mask = 0777 > force directory security mode = 00 > force unknown acl user = 00 > inherit permissions = No > inherit acls = No > guest only = No > guest ok = No > only user = No > hosts allow = > hosts deny = > status = Yes > nt acl support = Yes > block size = 1024 > max connections = 0 > min print space = 0 > strict allocate = No > strict sync
Re: [Samba] PDC Problems
When do you get this problem and what are your client settings. Are you moving an existing account to another machine or the same machine with a new os? Nick Michele Santucci wrote: This's my conf file I still have problems but the error message is different this time, it sounds like (translating it from italian): "It's impossible to join this machine to the domain. There's a conflict between the supllied credential and pre existent ones" P.S. When v3.0 will be released? bye by(t)e[S]...TuX! # Samba config file created using SWAT # from 0.0.0.0 (0.0.0.0) # Date: 2002/10/25 17:42:26 # Global parameters [global] coding system = client code page = 850 code page directory = /var/lib/samba/codepages workgroup = CCGM netbios name = SERVER-CCGM netbios aliases = netbios scope = server string = CCGM Samba Server interfaces = eth0 bind interfaces only = No security = USER encrypt passwords = Yes update encrypted = No allow trusted domains = Yes hosts equiv = min passwd length = 5 map to guest = Never null passwords = No obey pam restrictions = No password server = smb passwd file = /etc/samba/smbpasswd root directory = pam password change = No passwd program = /usr/bin/passwd passwd chat = *new*password* %n\n *new*password* %n\n *changed* passwd chat debug = No username map = password level = 0 username level = 0 unix password sync = Yes restrict anonymous = No lanman auth = Yes use rhosts = No admin log = No log level = 0 syslog = 1 syslog only = No log file = /var/log/samba/log.%m max log size = 50 timestamp logs = Yes debug hires timestamp = No debug pid = No debug uid = No protocol = NT1 large readwrite = No max protocol = NT1 min protocol = CORE read bmpx = No read raw = Yes write raw = Yes nt smb support = Yes nt pipe support = Yes nt status support = Yes announce version = 4.5 announce as = NT max mux = 50 max xmit = 65535 name resolve order = lmhosts host wins bcast max packet = 65535 max ttl = 259200 max wins ttl = 518400 min wins ttl = 21600 time server = No unix extensions = No change notify timeout = 60 deadtime = 0 getwd cache = Yes keepalive = 300 lpq cache time = 10 max smbd processes = 0 max disk size = 0 max open files = 1 read size = 16384 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 stat cache size = 50 use mmap = Yes total print jobs = 0 load printers = Yes printcap name = lpstat disable spoolss = No enumports command = addprinter command = deleteprinter command = show add printer wizard = Yes os2 driver map = strip dot = No mangling method = hash character set = mangled stack = 50 stat cache = Yes domain admin group = @ccgm-admin domain guest group = machine password timeout = 604800 add user script = delete user script = logon script = logon path = \\%N\%U\profile logon drive = logon home = \\%N\%U domain logons = Yes os level = 65 lm announce = Auto lm interval = 60 preferred master = True local master = Yes domain master = True browse list = Yes enhanced browsing = Yes dns proxy = Yes wins proxy = Yes wins server = wins support = Yes wins hook = kernel oplocks = Yes lock spin count = 3 lock spin time = 10 oplock break wait time = 0 add share command = change share command = delete share command = config file = preload = lock dir = /var/cache/samba pid directory = /var/run/samba utmp directory = wtmp directory = utmp = No default service = message command = dfree command = valid chars = remote announce = remote browse sync = socket address = 0.0.0.0 homedir map = auto.home time offset = 0 NIS homedir = No source environment = panic action = hide local users = No host msdfs = No winbind uid = winbind gid = template homedir = /home/%D/%U template shell = /bin/false winbind separator = \ winbind cache time = 15 winbind enum users = Yes winbind enum groups = Yes winbind use default domain = Yes comment = path = alternate permissions = No username = guest guest account = guest invalid users = valid users = @ccgm-admin, @ccgm, @satya admin users = @ccgm-admin read list = write list = printer admin = force user = force group = read only = Yes create mask = 0744 force create mode = 00 security mask = 0777 force security mode = 00 directory mask = 0755 force directory mode = 00 directory security mask = 0777 force directory security mode = 00 force unknown acl user = 00 inherit permissions = No inherit acls = No guest only = No guest ok = No only user = No hosts allow = hosts deny = status = Yes nt acl support = Yes block size = 1024 max connections = 0 min print space = 0 strict allocate = No strict sync = No sync always = No write cache size = 0 max print jobs = 1000 printable = No postscript = No printing = cups print command = lpr -r -P%p %s lpq comm
Re: [Samba] PDC Problems
This's my conf file I still have problems but the error message is different this time, it sounds like (translating it from italian): "It's impossible to join this machine to the domain. There's a conflict between the supllied credential and pre existent ones" P.S. When v3.0 will be released? bye by(t)e[S]...TuX! # Samba config file created using SWAT # from 0.0.0.0 (0.0.0.0) # Date: 2002/10/25 17:42:26 # Global parameters [global] coding system = client code page = 850 code page directory = /var/lib/samba/codepages workgroup = CCGM netbios name = SERVER-CCGM netbios aliases = netbios scope = server string = CCGM Samba Server interfaces = eth0 bind interfaces only = No security = USER encrypt passwords = Yes update encrypted = No allow trusted domains = Yes hosts equiv = min passwd length = 5 map to guest = Never null passwords = No obey pam restrictions = No password server = smb passwd file = /etc/samba/smbpasswd root directory = pam password change = No passwd program = /usr/bin/passwd passwd chat = *new*password* %n\n *new*password* %n\n *changed* passwd chat debug = No username map = password level = 0 username level = 0 unix password sync = Yes restrict anonymous = No lanman auth = Yes use rhosts = No admin log = No log level = 0 syslog = 1 syslog only = No log file = /var/log/samba/log.%m max log size = 50 timestamp logs = Yes debug hires timestamp = No debug pid = No debug uid = No protocol = NT1 large readwrite = No max protocol = NT1 min protocol = CORE read bmpx = No read raw = Yes write raw = Yes nt smb support = Yes nt pipe support = Yes nt status support = Yes announce version = 4.5 announce as = NT max mux = 50 max xmit = 65535 name resolve order = lmhosts host wins bcast max packet = 65535 max ttl = 259200 max wins ttl = 518400 min wins ttl = 21600 time server = No unix extensions = No change notify timeout = 60 deadtime = 0 getwd cache = Yes keepalive = 300 lpq cache time = 10 max smbd processes = 0 max disk size = 0 max open files = 1 read size = 16384 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 stat cache size = 50 use mmap = Yes total print jobs = 0 load printers = Yes printcap name = lpstat disable spoolss = No enumports command = addprinter command = deleteprinter command = show add printer wizard = Yes os2 driver map = strip dot = No mangling method = hash character set = mangled stack = 50 stat cache = Yes domain admin group = @ccgm-admin domain guest group = machine password timeout = 604800 add user script = delete user script = logon script = logon path = \\%N\%U\profile logon drive = logon home = \\%N\%U domain logons = Yes os level = 65 lm announce = Auto lm interval = 60 preferred master = True local master = Yes domain master = True browse list = Yes enhanced browsing = Yes dns proxy = Yes wins proxy = Yes wins server = wins support = Yes wins hook = kernel oplocks = Yes lock spin count = 3 lock spin time = 10 oplock break wait time = 0 add share command = change share command = delete share command = config file = preload = lock dir = /var/cache/samba pid directory = /var/run/samba utmp directory = wtmp directory = utmp = No default service = message command = dfree command = valid chars = remote announce = remote browse sync = socket address = 0.0.0.0 homedir map = auto.home time offset = 0 NIS homedir = No source environment = panic action = hide local users = No host msdfs = No winbind uid = winbind gid = template homedir = /home/%D/%U template shell = /bin/false winbind separator = \ winbind cache time = 15 winbind enum users = Yes winbind enum groups = Yes winbind use default domain = Yes comment = path = alternate permissions = No username = guest guest account = guest inva
