Hi Quinn,
I just tried your solution (my machine is also multi-homed). However it
doesn't work for me. The man-page of sshd_config also states, that the
behavior of GSSAPIStrictAcceptorCheck may depend on the used
krb5 libraries.
Could you please have a look at the krb5 and openssh versions
Hi Marcel,
On the client machine (Ubuntu 12.04 LTS) I have (dpkg -l) :
ii krb5-config
2.2 Configuration files for Kerberos
Version 5
ii krb5-locales
1.10+dfsg~beta1-2ubuntu0.1 Internationalization support for
MIT Kerberos
ii krb5-user
Btw, forgot to mention, when testing, make sure on the client you do a
kinit user to get a valid ticket before doing your ssh login. You can
check if you have a valid ticket with the klist command.
br,
Quinn
On Wed, Jul 11, 2012 at 9:56 AM, Quinn Plattel qie...@gmail.com wrote:
Hi Marcel,
Question: Right now samba4 is great as in all-in-one solution (samba,
kerberos, ldap, dns) into one service.
Is it possible to split it up so that for example, I run openldap on one
server, kerberos on another server, and then dns/samba on a third server?
br,
Quinn
--
To unsubscribe from this
Thanks for the quick response.
So I guess if you wanted high availability, you would either have to
implement a PDC/BDC solution with samba4 or use samba4 on top of a
corosync/pacemaker cluster. Is this correct?
br,
Quinn
On Wed, Jul 11, 2012 at 10:43 AM, Gémes Géza g...@kzsdabas.hu wrote:
Thanks Robert.
I've tried switching over to the AD back-end (which does sound like what I
want), but I still receive only the errors:
failed to call wbcGetpwnam: WBC_ERR_DOMAIN_NOT_FOUND
I restarted both winbind and smbd after changing the config. Is there some
cache I have to flush, or
Hi,
I am currently trying out phpldapadmin against samba4's ldap server. I
copied the necessary attributes from samba/private/phpldapadmin-config.php
to phpldapadmin's config.php and I am successfully logging in as
Administrator via the tool.
The samba4 ldap tree comes up on the left window and
Hi Quinn,
Thanks for the quick response.
So I guess if you wanted high availability, you would either have to
implement a PDC/BDC solution with samba4 or use samba4 on top of a
corosync/pacemaker cluster. Is this correct?
br,
Quinn
On Wed, Jul 11, 2012 at 10:43 AM, Gémes Géza
Assuming samba 4 supports them, watch out for your FSMO roles; each role
will be specific to one server in the domain. Recovering from the loss of a
server that currenty owns one or more of the FMSO roles is a little
trickier than just booting another peer-DC to handle requests.
On Wednesday, 11
On 11/07/12 01:57, Nick Triantos wrote:
Thanks Robert.
I've tried switching over to the AD back-end (which does sound like what I
want), but I still receive only the errors:
failed to call wbcGetpwnam: WBC_ERR_DOMAIN_NOT_FOUND
I restarted both winbind and smbd after changing the config.
Hi Quinn,
thanks for your hint: I still had an old out-of-date /etc/krb5.keytab
from a former installation of samba4 :-(
I simply copied secrets.keytab to /etc/krb5.keytab an everything
worked as described.
I'd really be interested in your progress concerning NFS4 - I've
tried to get this
On 11/07/12 17:38, Nick Triantos wrote:
Hi Rowland,
Yes, I've added their unix attributes.
It looks like there is a long-open bug in winbind/samba 3.6.x that may be
causing the error below (https://bugzilla.samba.org/show_bug.cgi?id=8676). I'm
now stuck behind that so I'm trying to downgrade
Jonathan,
I appreciate the help you've given but you and I are having fundamentally
different experiences with 3.5. I've tried everything you've suggested, as
well as a bunch of conflicting suggestions from others, with no success.
I've narrowed the problem down to the idmap -- ad settings in
Too late to save grief, I've been grieving on this for weeks now.
I'm rolling back to 3.4.8 because I heard from several sources that idmap
against AD has broken at some point since then. I'd obviously prefer to
install 3.4.8 from an RPM or (even better) a yum repository somewhere but
can't seem
Hello everyone,
I have just joined this group (discussion board) and would like to know how it
works. Can I just put questions out there about my Samba difficulties and hope
someone can help me?
Sorry to sound naïve, but I do need help with my Samba config and I have spent
months, yes months,
Hi Miklós,
Hello everyone,
I have just joined this group (discussion board) and would like to know how it
works. Can I just put questions out there about my Samba difficulties and hope
someone can help me?
Sorry to sound naïve, but I do need help with my Samba config and I have spent
FWIW, I've just run the same compile steps against 3.6.6 with the same
results. Had to copy the libtalloc.so.1 file and link the binaries to /sbin
and now trying to start the daemon from the init.d script fails and directly
launching smbd returns no error but ps aux shows it's not running. debug
Hello there,
In general, you may save efforts using precompiled binaries from the SerNet
team.
For example: http://ftp.sernet.de/pub/samba/3.6/rhel/6/x86_64/
---
wbr, Denis.
--
To unsubscribe from this list go to the following URL and read the
instructions:
Hi;
can any one help me. i have 2 samba4 servers. one is PDC other ADC.
PDC is master server (hostname is file2.dom.com)
ADC is slave server (hostname is file.dom.com)
after add a machine in domain. when i check /var/log/messages. i see DNS
not update. this error comes in slave server.
Jul 12
Hi Miklos,
Hello Geza,
I stand chastised and apologize. I didn't mean to hijack someone's thread. I
also didn't plan to ask for help in Hungarian, and this is just a coincidence.
However, if you can help me I'll take whatever I can get, so thank you.
My question/problem is that I have no
The branch, master has been updated
via 8ee30be Add in the threaded async open engine.
from d81e206 Move set_thread_credentials_permanently() to
set_thread_credentials() as we need to keep the saved set uid/gid otherwise
there is an interaction with open[at]() and NO_ATIME
The branch, v3-6-test has been updated
via ceed322 Fix bug #9034 - Typo in set_re_uid() call when
USE_SETRESUID selected in configure.
from 3abaa9d s3:vfs_gpfs: be less verbose in get/set_xattr functions
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=v3-6-test
- Log
The branch, v3-5-test has been updated
via a224e4c Fix bug #9034 - Typo in set_re_uid() call when
USE_SETRESUID selected in configure.
from 4c8fdb5 s3:vfs_gpfs: be less verbose in get/set_xattr functions
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=v3-5-test
- Log
The branch, master has been updated
via 149cae8 build: fix some indentation (tabs/vs spaces) in
source3/wscript
via 5231d70 build: fix waf checks for seteuid on non-Linux platforms
from 8ee30be Add in the threaded async open engine.
The branch, master has been updated
via 73ede32 s3:vfs_gpfs: fix ACL length calculation
via 35ab9be s3:vfs_gpfs: Check softquota before gracetime
from 149cae8 build: fix some indentation (tabs/vs spaces) in
source3/wscript
The branch, master has been updated
via 2cc38ac mkversion: Remove quotes around SAMBA_VERSION_VENDOR_PATCH
string
from 73ede32 s3:vfs_gpfs: fix ACL length calculation
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log
26 matches
Mail list logo
