Hi,
Even if you are scared of death of samba-technical I'm posting it there
as well, maybe someone can answer the questions which arise when I tried
to check out your use case.
So I've tried first:
# ldapsearch -H ldap://samba4.kzsdabas.hu cn=Administrator -LLL -Y GSSAPI
gives:
SASL/GSSAPI authe
On 19 January 2012 21:50, Charles Tryon wrote:
> I just tried again this morning, and other than needing to clean up some of
> the mess I made thrashing around the past couple of days, it appears to be
> fixed.
>
> **THANKS!!**
I suppose you should thank metze for that :)
> One oddity is that, t
I have set up a 2 node linux cluster and wish to share a ocfs2 mount on san
storage. I have configured ctdb, samba and Kerberos and am able to map the
share on my windows workstation when I hit the ip of each of the two nodes.
I am able to mount this share via nfs on other linux servers ok.
How
At Thu, 19 Jan 2012 11:10:18 +0700 (WIT),
Hendra Manto Sitorus wrote:
> I have upgrade my samba from 3.0.33 to 3.3.3, that proces are success but I
> have a problem for samba-vscan.
samba-vscan does not support Samba 3.2 and later.
My samba-virusfilter supports Samba 3.5 and 3.6.
https://git
Dear All,
I have upgrade my samba from 3.0.33 to 3.3.3, that proces are success but I
have a problem for samba-vscan.
Error :
[2012/01/16 10:32:00.074547, 0] smbd/vfs.c:167(vfs_init_custom)
error probing vfs module 'vscan-clamav': NT_STATUS_UNSUCCESSFUL
[2012/01/16 10:32:00.074559, 0] sm
Hi all,
I have an openLDAP backend on my Samba installation, and it's using the LDAP
attribute sambaNTPassword to store the NT hashed password for the users.
This is allowing for windows users to auth against the PDC and linux users are
authenticating through the samba PAM module
Now, I want t
Hi there,
libnetapi.so is heavily linked against ldap, kerberos and sasl2 libs. I
don't think you can compile it against the 'original' solaris versions of
these libs at least I never succeded ;)
The easiest way is to install the necessary products from sunfreeware.com,
you need at least:
So I have Samba 3.5 set up to use pam to authenticate against kerberos. This
seems to be working fine when I connect to the from a linux system using
smbclient. However, when I try to connect from a windows system, it fails. I
cranked up the debug level, but I'm unable to figure why this does
Hello Chris,
I checked my smb.conf and do not have store dos attributes enabled.
Kind regards,
Raymond
-samba-boun...@lists.samba.org wrote: -
To: samba@lists.samba.org
From: x20120...@brindabella.org
Sent by: samba-boun...@lists.samba.org
Date: 01/12/2012 10:14PM
Subject: Re: [Samba]
I am trying to integrate Samba with our Active Directory server and map
Active Directory groups to local unix groups.
The problem is that our AD server does not allow anonymous users or
computer objects to query infomation about users or groups. For this
reason, using the net command to join the A
On Monday 09 of January 2012 06:43:59 TAKAHASHI Motonobu wrote:
> From: Hubert Kario
> Date: Sun, 8 Jan 2012 19:42:54 +0100
>
> > On Sunday 08 of January 2012 08:41:18 TAKAHASHI Motonobu wrote:
> > > From: Hubert Kario
> > > Date: Thu, 5 Jan 2012 23:36:58 +0100
> > >
> > > > Unfortunately, I'm un
On Sunday 08 of January 2012 08:41:18 TAKAHASHI Motonobu wrote:
> From: Hubert Kario
> Date: Thu, 5 Jan 2012 23:36:58 +0100
>
> > Unfortunately, I'm unable to set the primary group using windows file
> > permissions dialog, I can only add and remove ACL groups.
>
> Have your groups manupulated fro
2012-01-20 06:03 keltezéssel, Andrew Bartlett írta:
> On Thu, 2012-01-19 at 18:35 +0100, Gémes Géza wrote:
>>> Progress:
>>> klist -k /etc/krb5.keytab | grep host-account
>>>1 host-acco...@hh3.site
>>>1 host-acco...@hh3.site
>>>1 host-acco...@hh3.site
>>>
>>> cat /etc/default/nslcd
>>>
On Thu, 2012-01-19 at 18:35 +0100, Gémes Géza wrote:
>
> > Progress:
> > klist -k /etc/krb5.keytab | grep host-account
> >1 host-acco...@hh3.site
> >1 host-acco...@hh3.site
> >1 host-acco...@hh3.site
> >
> > cat /etc/default/nslcd
> > K5START_START="yes"
> > # Options for k5start.
> >
On Fri, Jan 20, 2012 at 2:15 AM, Helmut Hullen wrote:
> Hallo, John,
>
> Du meintest am 20.01.12:
>
> > root@hayek:~# smbpasswd john
> > New SMB password:
> > Retype new SMB password:
> > Failed to find entry for user john.
>
> > This is despite the existence of the user
> > root@hayek:~# cat /et
Hi everyone
I'm using nslcd to connect to Samba 4 LDAP. If I specify the binddn and
bindpw in /etc/nslcd.conf no problem getent passwd works and everything
is mapped just fine.
But when I try try to do a kerberized bind to Samba 4 LDAP, I get this:
ldb_wrap open of secrets.ldb
Kerberos: TGS-R
On 19/01/12 21:59, Angel Bosch wrote:
We're running s3/LDAP with uid:gid, shell and home directory all in
LDAP. No winbind anywhere.
is this the only samba server? do you have any samba server as member of that
one?
anyway, i've read more carefully the docs and found that(1):
"it stores map
On Thu, Jan 19, 2012 at 02:16:08PM -, Andersen, Jan wrote:
> This subject has probably been brought many times now, on this list, but I
> haven't quote been able to find anything that quite addresses my problem: I
> have a samba server (ver 3.0) that it would be very awkward to change in
> o
> I tried to remove everything related to printing and didnt change a thing.
> Can still print from every pc directly via lan and that error message keeps
> filling up my logs.
>
> What did I miss?
>
> hosts equiv = 10.0.0.1/24
Remove the above line.
John
--
To unsubscribe from this li
> We're running s3/LDAP with uid:gid, shell and home directory all in
> LDAP. No winbind anywhere.
is this the only samba server? do you have any samba server as member of that
one?
anyway, i've read more carefully the docs and found that(1):
"it stores mappings between UNIX UIDs, GIDs, and
Jan 19 19:46:56 KiD2 smbd[30971]: [2012/01/19 19:46:56.988144, 0]
param/loadparm.c:7969(lp_do_parameter)
Jan 19 19:46:56 KiD2 smbd[30971]: Ignoring unknown parameter "hosts equiv"
How can I get rid of that? I dont want to print via samba to my network printer
and my linux boxes use cups.
I
hi,
2012/1/19 Jeremy Allison :
> winbindd shouldn't terminate in these circumstances, just keep
> probing until it can re-establish a connection.
Thank you for replying.
Mh, ok I will test it. I wondering if it possible that samba could
resolve users on the reachables KDC (different domains).
G
On Thu, Jan 19, 2012 at 09:12:01AM +0100, Bjoern Meier wrote:
> hi,
>
> we have here a multi-domain environment and my question is: is that a
> wanted behavior, that winbind crashed with "error looking up domain
> users" if a KDC isn't available and winbind had to be restarted to
> work again?
> W
Hello,
does (will) Samba 4 support Control Panel Settings in Group Policy
Management Console? According to
http://technet.microsoft.com/en-us/library/cc725580.aspx it should be
supported from Windows Server 2008 R2.
Thank you,
Josef
--
To unsubscribe from this list go to the following
On 19/01/12 19:11, steve wrote:
http://www.cmf.nrl.navy.mil/CCS/people/kenh/kerberos-faq.html#badpass
I'm working as client and host on the same box here. Could this be the
cause of the
Decrypt integrity check failed
??
Cheers
Steve
Just to confirm:
samba-tool spn delete host
samba-tool spn
http://www.cmf.nrl.navy.mil/CCS/people/kenh/kerberos-faq.html#badpass
I'm working as client and host on the same box here. Could this be the
cause of the
Decrypt integrity check failed
??
Cheers
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://
On 19/01/12 18:35, Gémes Géza wrote:
Progress:
klist -k /etc/krb5.keytab | grep host-account
1 host-acco...@hh3.site
1 host-acco...@hh3.site
1 host-acco...@hh3.site
cat /etc/default/nslcd
K5START_START="yes"
# Options for k5start.
K5START_BIN=/usr/bin/k5start
K5START_KEYTAB=/etc/
> Progress:
> klist -k /etc/krb5.keytab | grep host-account
>1 host-acco...@hh3.site
>1 host-acco...@hh3.site
>1 host-acco...@hh3.site
>
> cat /etc/default/nslcd
> K5START_START="yes"
> # Options for k5start.
> K5START_BIN=/usr/bin/k5start
> K5START_KEYTAB=/etc/krb5.keytab
> K5START_
Hi
I'm using Samba 4 to serve Linux and win 7 clients.
I'd like to use GSSAPI to bind to the Samba 4 LDAP to extract the
attributes I've added for the Linux clients. nslcd advertises such
support, but keeps telling me 'Unknown authentication method'. As a
workaround I've done this:
I'm usi
Hallo, John,
Du meintest am 20.01.12:
> root@hayek:~# smbpasswd john
> New SMB password:
> Retype new SMB password:
> Failed to find entry for user john.
> This is despite the existence of the user
> root@hayek:~# cat /etc/samba/smbpasswd
> #
> # SMB password file.
> #
> nobody:65534:XXX
Le 02/12/2011 00:06, Michael Adam a écrit :
Samba's tdb (with the machine password) is distributed in the
cluster by ctdb. Likewise does not use ctdb, so you need other
means to synchronize its databases contents in the cluster.
I don't know whether distributing databases would be enough,
maybe t
On 01/19/2012 03:37 PM, Angel Bosch wrote:
hi,
short: in a tipical Samba PDC + LDAP environment is winbind needed if i already
fulfill unix attributes?
long:
i've been runing Samba PDC with LDAP as backend without any problems. my
objects contains both sambaSamAccount and posixAccount (and
On Fri, Jan 20, 2012 at 02:01:29AM +1100, John Tate wrote:
> When I used smbpasswd it gives me the following error...
> root@hayek:~# smbpasswd john
> New SMB password:
> Retype new SMB password:
> Failed to find entry for user john.
>
> This is despite the existence of the user
> root@hayek:~# ca
When I used smbpasswd it gives me the following error...
root@hayek:~# smbpasswd john
New SMB password:
Retype new SMB password:
Failed to find entry for user john.
This is despite the existence of the user
root@hayek:~# cat /etc/samba/smbpasswd
#
# SMB password file.
#
nobody:65534:XX
hi,
short: in a tipical Samba PDC + LDAP environment is winbind needed if i already
fulfill unix attributes?
long:
i've been runing Samba PDC with LDAP as backend without any problems. my
objects contains both sambaSamAccount and posixAccount (and shadowAccount) with
uid, gid, homedirecto
Dear Andrew,
I know you may not have time for this, but I found a list message from you in
August ([cifs-protocol] Errors when doing a DsAddEntry ) where you show quite
the same error I get when I try to join Samba 4a17 to a W2003 domain.
I get to add partialy the server to the domain, but fails
This subject has probably been brought many times now, on this list, but I
haven't quote been able to find anything that quite addresses my problem: I
have a samba server (ver 3.0) that it would be very awkward to change in other
than a very limited way, as it is in constant use. Security is set
Hi Tom,
On 01/18/2012 08:57 PM, Tom Harvey wrote:
I have an openLDAP backend on my Samba installation, and it's using the LDAP
attribute sambaNTPassword to store the NT hashed password for the users.
This is allowing for windows users to auth against the PDC and linux users are
authenticating
All OK for me:
samba --version
Version 4.0.0alpha18-GIT-95c514a
Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On 01/18/2012 09:56 PM, Gémes Géza wrote:
2012-01-18 12:12 keltezéssel, steve írta:
On 01/17/2012 09:40 PM, Gémes Géza wrote:
Hi,
See comments inline:
Hi everyone
I'm trying to use kerberos to authenticate to Samba 4 ldap. At the
moment, I authenticate by specifying the binddn and password i
On 01/19/2012 09:23 AM, Michael Wood wrote:
On 19 January 2012 10:05, steve wrote:
Hi everyone
I've marked the thread as URGENT. Another post has reported similar during
provisioning.
Could someone on samba-technical send a copy there too?
It's been mentioned on samba-technical and I believe
On 19 January 2012 10:05, steve wrote:
> Hi everyone
>
> I've marked the thread as URGENT. Another post has reported similar during
> provisioning.
> Could someone on samba-technical send a copy there too?
It's been mentioned on samba-technical and I believe a fix was
committed yesterday/last nig
hi,
we have here a multi-domain environment and my question is: is that a
wanted behavior, that winbind crashed with "error looking up domain
users" if a KDC isn't available and winbind had to be restarted to
work again?
We have a maintainance rotation for server an network. So I wanted,
that Win
Hi everyone
I've marked the thread as URGENT. Another post has reported similar
during provisioning.
Could someone on samba-technical send a copy there too?
Thanks,
Steve
On 01/18/2012 08:40 PM, Charles Tryon wrote:
Ummm... no, unless it's with using ANY external bind rather than the
int
44 matches
Mail list logo
