Well known groups are things like "Domain Administrators" and
"Administrators" - they always have the same SID or RID (relative ID.)
With an LDAP backend, you may have windbind/idmap automatically allocating
unix group id's so this may be hidden from you. In my environment I
support linux client
Marc,
thank you for your reply.
On Thu, 17 May 2012 18:38:05 +
"Cain, Marc" wrote:
> There are many causes for this behavior. In Windows 7 the typical
> reason is a service or process has locked a resource in the profile
> and is not releasing it at logoff. Try looking in the profile to s
Jack Bates wrote:
On 06/06/12 01:35 AM, Jonathan Buzzard wrote:
On Wed, 2012-06-06 at 06:47 +, Dirk Traenapp wrote:
[SNIP]
With this configuration i can force every new folder or file belonging
to default-group of the parent folder.
But won't stop me *changing* the ownership of file o
For some odd reason a user with the specific sambasid
S-1-5-21-1545272169-3882205488-3325164475-21006
can not login on our PDC. The user gets the error "group policy client
service failed the logon"
If I increment the users RID to 21007 they can login.
I can not find any other users with the RID 21
Ok, the problem is that I have a specific sambasid that will not allow
a user to login.
The problem is not with LAM specifically.
Conclusion, the "group policy client service failed the logon" error
occures only when a user has a specific sambasid. I will close this
thread and start a new one.
On
Finally, I have settled on the cause of the problem.
The SambaSID is causing problems when created through LAM.
I am not sure why it was working but now has a problem, but the issue
appears to be the SambaSID range that the new users are created in.
However older users in the same range have no iss
On 06/06/12 01:35 AM, Jonathan Buzzard wrote:
On Wed, 2012-06-06 at 06:47 +, Dirk Traenapp wrote:
[SNIP]
With this configuration i can force every new folder or file belonging
to default-group of the parent folder.
But won't stop me *changing* the ownership of file or folder.
Right,
You may need to set up unix groups and domain mappings for some
additional windows "well known groups" (google for windows well known
groups.)
on my server I can see my group mappings:
# net groupmap list
.
Domain Users (S-1-5-21-x--x-513) -> Domain Users
Administrators (S-1-
Are the XP machines domain members?
What are the permissions set on the , for example, Murthy directory?
Either your permissions are set wrong OR samba is not correctly mapping
your "samba" user to the underlying unix account.Just because the
share permissions are correct doesn't mean the fi
Hi All,
I have the following setup.
Samba Server: Scientific Linux 6.2 with the following samba config. I am able
to ping the samba server from both a Mac and Windows XP machines. I can even
connect to the samba share.
However when I try to access files in the directory I get the error Access
 if correct,
what is the output of :
getent passwd
and
getent group
if no output, you forgot the something
mayby
# /etc/nsswitch.conf
passwd: compat ldap
group: compat ldap
shadow: compat ldap
hosts: files dns
networks: files
protocols:
On Tue, Jun 5, 2012 at 9:33 AM, Chris Weiss wrote:
> On Mon, Jun 4, 2012 at 10:16 PM, Janantha Marasinghe
> wrote:
> > Hi all,
> >
> > I'm wondering what is the best way to access samba shares securely over
> the
> > net. I saw sslbridge and davenport but they don't seem to be managed
> > proper
You can still separate your DC from your file server. You then join the
file server to the domain, and use winbindd (not nss_ldap).
WINS need not be connected, but we need to have certain entries in the
DNS server, and for dynamic DNS registration (which AD clients will want
to do) you will ne
Hello, hello
I'm writing you this email because when i want to set up a password policy
with LDAP, this one isn't recognize by samba.
In the log i've got this :
ldapsam_getgroup: Did not find group, filter was
(&(objectClass=sambaGroupMapping)(sambaSID=S-1-5-11))
ldapsam_getgroup: Did not fi
 This is solved.
Problem was, incorrect settings in slapd.conf and dynamic / config file setup
was mixed.
str2entry: invalid value for attributeType objectClass #1
(syntax 1.3.6.1.4.1.1466.115.121.1.38)
slapcat: bad configuration file!
The core.schema and the core.ldif are bit different.
Can I setup a slave server for dlz zone create with samba4 installation ?
German Molano
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Wed, 2012-06-06 at 02:02 -0700, Derek Lewis wrote:
> Jorell,
>
> I installed the packages from your list and attempted to build with your
> configuration. I still get errors during build referring to swrap_close or
> nwrap_getgrnam.
>
> Also I did not use. /autogen.she, just config and make
17 matches
Mail list logo
