The glob is evaluated on the client, even with SMB, IIRC. That would
mean the problem is on the client.
___
cifs-discuss mailing list
cifs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
On Thu, Mar 8, 2012 at 1:28 PM, Michael Farnbach wrote:
> Does anyone know exactly what modification to the machine trust account it
> smb_join tries to make? That same account, I can say, created the machine
> account, and has made many changes to it via windows RSAT. If I knew the
> exact change
On Wed, Mar 7, 2012 at 10:07 PM, Michael Farnbach
wrote:
> Mar 7 20:55:59 indi smbd[11053]: [ID 232655 daemon.notice] ldap_modify: DSA
> is unwilling to perform
This means that the DC rejected the modification of the machine trust
account. This is probably because your administrator account is
On Fri, Sep 2, 2011 at 4:12 AM, Marc Bevand wrote:
> On my domain controller, I created an AD user account plus a keytab file for
> this account using ktutil.exe, which was then copied to the Linux NFSv4
> client as /etc/krb5.keytab. This client has the standard Kerberos tools
> installed and i
On Mon, Aug 29, 2011 at 2:16 PM, Marc Bevand wrote:
> Nico wrote:
>> Given the name-based mapping rules that you give below, do you have a Unix
>> user account called "myuser"?
>
> In this test, no, I did not have a Unix account "myuser". Therefore it is not
> a bug in nss_ad.
>
> As Jordan conc
On Mon, Aug 29, 2011 at 6:58 PM, Jordan Brown wrote:
> On 08/29/11 12:16, Marc Bevand wrote:
>> I wish Oracle would
>> fix this. In the mean time I can live with having to create the local
>> Unix account to prevent files owned by nobody.
>
> As Nico said, we'd like to fix it too - or, rather, we'
On Wed, Aug 24, 2011 at 4:44 PM, Marc Bevand wrote:
> I run Solaris 11 Express, successfully joined an AD domain with "smbadm join"
> and with a proper Kerberos config like [1]. Can anybody tell me why files
> created by these users locally (on Solaris itself, not through CIFS!) end up
> with t
On Mon, Jul 18, 2011 at 8:25 PM, Jordan Brown wrote:
>> So you give the customer a hook for this, and let them do what they
>> have to to update NIS (or LDAP, or whatever).
>
> Possibly, but mostly I consider the "let the customer cobble together their
> own solution" to be an answer for the 1980s
On Mon, Jul 18, 2011 at 5:51 PM, Jordan Brown wrote:
> On 07/18/11 15:29, Nico Williams wrote:
>> To be fair we had the same problem with Kerberos. The way this is
>> solved is to create the necessary information. For Kerberos one way
>> to do that is to use the pam_krb5_mi
On Mon, Jul 18, 2011 at 11:05 AM, Jordan Brown wrote:
> The *implementation* reason for it is twofold: First, workgroup-mode
> authentication is based on NT hashed passwords. A UNIX system doesn't store
> the clear text of your password, only a UNIX-style one-way hash of the
> password, and so c
If you set the start method of the idmap service to this:
dtrace -w -n 'proc:::start/execname == "idmapd"/{stop(); system("truss
-o /tmp/idmapd-truss -v all -t all -fp %d", pid);}' -c /usr/lib/idmapd
You'll get a truss without interfering with the workings of SMF in the
least. Send that to Jorda
True that.
Nico
--
___
cifs-discuss mailing list
cifs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
On Tue, Mar 29, 2011 at 12:10 PM, Jordan Brown wrote:
> Speaking as the Oracle person that Nico is obliquely referring to... :-)
:)
> Other than that, what I would do is to try to collect a "truss" of idmapd
> running. Unfortunately, it's not convenient to get a truss of a service
> from its s
On Mon, Mar 28, 2011 at 2:38 PM, Marc Steinlein wrote:
>> I wasn't referring to permissions, but to /var being mounted
>> read-only. You're using 151a, so /var shouldn't be mounted read-only
>> (you must be using ZFS root, and ZFS starts with / and /var mounted
>> read-write). Do you have a sepa
On Sun, Mar 27, 2011 at 4:28 AM, Marc Steinlein wrote:
> The log says, that the daemon can't create the database /var/idmap/idmap.db.
>
> Well, when i search for this error, i found older threads from 2008 about
> this behavior, and
> they commend to disable the service, remove /var/idmap/idmap.d
Any workarounds for this? Will this be fixed in the support repo?
Nico
--
___
cifs-discuss mailing list
cifs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
16 matches
Mail list logo