Adrian Chow wrote:
Hi Igor (and samba team),
I have done the following:-
-I have upgraded the samba versions of the both servers to be the same.
-The ldap servers are in the same version.
-DomainAPDC and DomainBPDC has winbind in nsswitch
-wbinfo all works.
-"getent group" and "getent passwd" shows
Adrian Chow wrote:
Hi Igor,
Got some logs from the Domain_A_PDC on the domain_A_XP when domain_B
user (grade2) logs into domain_B on domain_A_XP.
[2004/11/05 11:18:45, 3] auth/auth.c:check_ntlm_password(219)
check_ntlm_password: Checking password for unmapped user
[EMAIL PROTECTED] with the
6. Do you have pam_winbind in your pam.d directory files (e.g login,
ssh...)?
No, I don't use pam_winbind (no winbind in any of the /etc/pam.d/*
files). To be honest, I don't even know what it could be used for.
On related note - I did have problem with user login when I had 'obey
_B,dc=org
sambaHomeDrive: H:
sambaHomePath: \\server_B\homes
Hope to hear from you on this... thanks a lot.
adrian
p/s: hope you got my previous mail cos I forgotten to cc to sambalists
Yes, I did. I apologize for delays - I work with Samba only in my spare
time.
Igor
Igor Belyi wrote:
== (He
I would guess that it means that DomainA trust DomainB but DomainB does
not trust DomainA. Can you verify that trust is mutual between them?
Check 'net rpc trustom list' on both machines.
No, I do not use winbind for NSS (no winbind in /etc/nsswitch.conf).
Winbind is used only by Samba when it
If you are _not_ on FreeBSD, check your /etc/nsswitch.conf setup. Do you
see those users with 'getent passwd'?
Igor
Misty Stanley-Jones wrote:
On Thursday 28 October 2004 13:13, Igor Belyi wrote:
Can you list shares as a guest - without -U option and with empty
password? Does your Sa
Can you list shares as a guest - without -U option and with empty
password? Does your Samba listen on 'lo' interface?
Igor
Misty Stanley-Jones wrote:
On Thursday 28 October 2004 11:33, Igor Belyi wrote:
What error do you see in smbd log? Did you try to add "-W "
to smbclie
What error do you see in smbd log? Did you try to add "-W "
to smbclient command?
Igor
Misty Stanley-Jones wrote:
Is this setup possible? I am converting an old server to look on LDAP for its
UNIX account info. I am able to auth in every way with a LDAP-only user
(login, telnet, ssh, su). H
e "add user script = " will be
activated. You can prevent users from being created if u do not
specify "add user script" in the smb.conf.
adrian
Igor Belyi wrote:
I've tried to login with a user testB which exists in DomainB but not
in DomainA (Client XP is a DomainA member) an
7;ll keep you posted.
Igor
Igor Belyi wrote:
Adrian Chow wrote:
Hi Igor,
Thanks for your prompt reply.
Just curious whether you have read my previous email regarding the
different setup for my side. I have :-
Domain A controller :- openldap 2.1.23 (slave), samba 3.04 (PDC)
Domain B controller
hanged? The reason I
ask was because I already got a domain member server under domain A
(samba 3.04) and I do not want to lose the SID cos I have like 260
users's home directory in that domain member server (windows 2003
server).
Thanks in advance.
Regards,
adrian
Igor Belyi wrote:
So
x27;s attempt to look for a group with this gid may
indicate an incorrect check for an error in the code.
Let's do it together, shall we? :)
Igor
Igor Belyi wrote:
Ilia Chipitsine wrote:
Dear Sirs,
I did the following command (against ldapsam backend):
net groupmap add rid=3002 unixgroup=wheel
Sorry... Got busy with something else. I'll try to do the test with
different users tomorrow. There could be a problem with my previous test
since the user present in both Domains also has the same password and
this may allow credentials from one domain to somehow be used in another.
If you wou
ere are other processes which rely on these files being owned by this
particular user, not 'root' .
Gary R. Webster
Igor Belyi <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
10/16/04 01:38 AM
To: David Rankin <[EMAIL PROTECTED]>
cc: [EMAIL PROTECTED]
Subj
I'd guess that you either have nscd running on your PDC or Administrator
with that password does not exists in PDC user database.
In first case you will need either stop or restart nscd. In second -
create such user or check its password.
Hope it helps,
Igor
Tomasz Chmielewski wrote:
Hello,
I'm
Run "/usr/sbin/useradd -m veronika" from the command line and see what
error prevents it from creating such a user.
Igor
Šopík Bronislav wrote:
Dear all,
I have a problem with adduser script in smb.conf.
I traing to log in WinXP as a user from trusted domain. But it writes
me alwais this fail:
us
Miguel Angel Díaz Armentia wrote:
I've got a ldap+samba server and I should like to import ther users accounts
from my old smbpasswd from another server to ldpasam.
Any idea?
Assuming that SID of the domain is the same:
pdbedit --import smbpasswd --export ldapsam
Igor
--
To unsubscribe from this li
Ilia Chipitsine wrote:
Dear Sirs,
I did the following command (against ldapsam backend):
net groupmap add rid=3002 unixgroup=wheel type=local ntgroup=Marketoids
comment=Mm -d 10
I just wanted to add new group. But instead of that I saw many-many-many
records:
lib/smbldap.c:smbldap_search(963)
pas
Any error messages in smbd log?
Igor
F. Latorre wrote:
Hi
We setup a samba server (3.02a ) under Debian, acting as PDC.
Clients are w98 S.E. and XP sp1.
Server name is box-p
In smb.conf we configure:
[clouds]
...
[homes]
...
msdfs root = yes
We create dfs links in home directory of users : ln -s
m
mainA on this
ClientXP I get home mapped on Z: and files are from ServerA. When I
login as a user 'user' into DomainB I get home mapped on X: and files
are from ServerB.
I haven't try this yet with users present only in one domain and not in
the other.
BTW, can you share your smbd
Greg Adams wrote:
So am I up a creek on this issue?
Gerald (Jerry) Carter wrote:
Yup. That's my change. But since the NTLM authentication
is succeeding, then I'll assume that the token sent back
was an NTLMSSP tocken as well. So for some reason the client
either can't or won't obtain a
Is it possible that account has "User Cannot Change Password" set?
Igor
Steve Simeonidis wrote:
Error when you try to change your password
from Windows XP, SP1, latest patches
(ctrl-Alt-Del)
Server configuration
Fedora Core 1
samba-3.0.7-2FC1
Samba is configured as PDC with roaming profiles.
I've j
Igor Belyi wrote:
I can give a shoot at explaining the behavior and if I'm too off I hope
I'll be corrected.
When you select Domain into which you want to login you specify the
Domain where your credentials (username and password) should be verified
but shares specified without Doma
I can give a shoot at explaining the behavior and if I'm too off I hope
I'll be corrected.
When you select Domain into which you want to login you specify the
Domain where your credentials (username and password) should be verified
but shares specified without Domain will be retrieved from the
As far as I know smbfs uses uid and gid only for those shares which do
not have their own access attributes. If server exports access
attributes smbfs obeys them.
You can play with 'force user' and 'force group' attribute for this
share to force access to be by uid and gid known on server.
Igo
Flewid Productions wrote:
Hi All,
I'm not sure if this is a problem specific to samba, or to cups, or to
something else. I have a samba 3.0.7 server acting as a PDC, and print
server for my wonderfully overcomplicated home network setup. The
problem is when I send a PDF to the cups server to be
Do you use smbfs or smbclient to view Windows files?
Igor
Joseph Earl wrote:
All,
I can view the Samba shares on any Windows system. I can not view Windows
files on my Linux system. Below is my config file.
Thanks in advance,
Jearl
# Global parameters
[global]
workgroup = DLSMIS
Is it possible that 'ldap admin dn' used in your smb.conf does not have
write access to 'ou=Computers,dc=unimix,dc=com,dc=br'? What was the
error in smbd log when machine failed to join the Domain?
Igor
Fernando Ribeiro wrote:
Hi all,
I have smb.conf with:
add machine script = /usr/l
Igor Belyi wrote:
Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Igor Belyi wrote:
| No, wait! Samba checks only the first OID! And this is the
| reason for NTLM! Here's the comment from source/smbd/sesssetup.c:
|
|/* only look at the first OID for determ
Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Igor Belyi wrote:
| No, wait! Samba checks only the first OID! And this is the
| reason for NTLM! Here's the comment from source/smbd/sesssetup.c:
|
|/* only look at the first OID for determining the mech
Igor Belyi wrote:
Igor Belyi wrote:
Here's maybe even more relevant part of the log:
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 3 6 1 4 1 311 2 2 10
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 2 840 48018 1 2 2
[2004/
Igor Belyi wrote:
Here's maybe even more relevant part of the log:
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 3 6 1 4 1 311 2 2 10
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 2 840 48018 1 2 2
[2004/10/18 08:08:04, 3]
Here's maybe even more relevant part of the log:
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 3 6 1 4 1 311 2 2 10
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 2 840 48018 1 2 2
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_s
Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Greg Adams wrote:
| I tried to send a level 10 log from the moment of connection to the
| user that should be mapped touching a file, but the attachment was too
| large and the messages bounced, awaiting moderator approval.
Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Greg Adams wrote:
| I'm sorry, I still don't quite follow you.
|
| I have "security = ads", and, as far as I can tell,
| a working kerberos installation, so that means I'm
| using kerberos authentication, right?
Correct.
| F
Ilia Chipitsine wrote:
Dear Sirs,
I installed OpenLDAP and smbldap-tools by IDEALX.
samba is 3.0.7, smbldap is 0.8.5
what else did I do:
1) smbldap-populate
2) pdbedit -i smbpasswd:/usr/local/private/smbpasswd -e
ldapsam:ldap://127.0.0.1
3) smbpasswd -w
what is not very clear, should I use th
I think you will be interested in recent Andreas's experience with KDE:
http://lists.samba.org/archive/samba-technical/2004-October/037685.html
Igor
Eric Murray wrote:
-| PDC - Login isnow Slow...
-| -| winbind enum users = yes
-| winbind enum groups = yes
remove those two...
Mit freun
-Jones wrote:
On Tuesday 19 October 2004 09:32, Igor Belyi wrote:
There could be number of reasons why you can't join domain. The best way
to investigate your problem is to look in smbd log for error messages.
There are no errors in the log. See the entire level 10 log for the time wh
There could be number of reasons why you can't join domain. The best way
to investigate your problem is to look in smbd log for error messages.
Igor
Misty Stanley-Jones wrote:
On Monday 18 October 2004 14:51, Misty Stanley-Jones wrote:
W2K reports "User not found" when I try to join the domain.
Can you be a little bit more specific?
What do you mean by 'users cannot change their passwords"? Does it mean
that they cannot change it via Windows' "Change Password" dialog? What
error message they get? Can Administrator do it for them? Can they
change it under Linux with smbpasswd? Is there
Have you tried to browse this share with smbclient?
Igor
Jason Pirok wrote:
This problem began a couple months ago with my new install of (you
guessed it) XP sp2. Now, when i mount a share from the xp machine to
my debian box, everyone, including rot, gets a permission denied
trying to ls the dir.
You can start more than one samba server without a problem if you
specify explicitly what configuration file each of them use by adding
'-s ' option to smbd and nmbd daemons.
If you need each of those servers to bind to a particular interface add
'interfaces = ' and 'bind interfaces only = yes'
Can you provide 'smbclient -d 5' log for the problem?
Igor
P.Saffrey wrote:
I am running a Samba server on Debian testing. Each day, I run an
automatic update via apt. Up until recently, the server was working fine;
I am assuming that the update has upgraded to a non-working version.
I can log onto
It sounds like a locking problem to me...
Have you tried 'blocking locks = no' and 'oplocks = no' share parameters?
Igor
Brodsky Denis-RM08520 wrote:
Hello All,
I have Samba 3.0 and 3.0.7 servers that have similar problem ,
the problem occures once a week ~aprox,
all about 1 per minute sa
Is there any error message reported on Samba side in smbd or nmbd logs?
Igor
ip.guy wrote:
i'm having the same problem with my samba server and photoshop 7.0
strangely enought though, the problem only exists on one of the two
mounted file systems (both identically formatted and mounted)
[EMAIL P
[netlogon] is a special share. I would guess Windows mounts it more than
once when user logins but you should see it then with 'log level = 5' as
'cmd=/home/samba/scripts/create-login-script.sh adrian.h' line in smbd
logs. Have you tried to put this 'root preexec' into [home] share instead?
Igo
This error message is reported by smbfs kernel module, it has nothing to
do with Samba... Probably, the error code reported in this message can
give you move information.
I just want to add that pagefile.sys is a special file (swap) under
Windows which is handled somewhat special and you can ge
Could you try something like that:
in /etc/fstab:
/// /mnt/point smbfs
workgroup=,credentials=/etc/smbpassword 0 0
in /etc/smbpassword:
username=
password=
Note that you should not add domain to the in credentials file
but put it as a separate option for smbmount.
Hope it helps,
Igor
Michael W
You may want to start looking at the smbd logs instead of ethereal. If
the problem isn't obvious from the default log level, try to increase it
up to 5 and see why Samba doesn't like to give a user access.
If smbd log doesn't say much to you I can try to help looking through it
- just send it s
Ok, the logic goes like this...
If you want to use root for Domain administration purposes it has to be
in the Domain user database.
If it's a Domain user its primary group should be a Domain group.
All Domain groups in Samba are mappings from UNIX groups into SIDs.
If mapping for a particular gid
The trick is in you picking SID by yourself. :o)
sambaPrimaryGroupSID: should always be either explicit mapping of
gidNumber in the groupmap or implicit arithmetic mapping: (gidNumber *
2) + 'rid base' + 1. Your problem is that you have inconsistency in you
root's setup. As a result its primary
bill eight wrote:
Hi,
Ok - win95 systems were on Samba 2.2.x
Now, added XP pro systems...
added user account on XP desktop
AND on samba/linux server and
did a "smbpasswd -a"
c:\>net use \\ipaddr\share /user:"user"
works ..
but on the XP system (logged in as that
user) I CAN't see the network, even
Greg Adams wrote:
Yeah, that solved the problem for valid users. Thanks.
However, I now have a different problem. The same kind of logic should
apply to the username map, right? But it doesn't seem to.
smb.conf:
***
Have you tried setting 'use sendfile = no' for the share in your smb.conf?
Igor
Jim Canfield wrote:
Greetings,
I have a Gentoo Linux machine running samba 3.0.7-r2
It's a member of a win2k ADS domain...all that seems to be working fine.
Problem:
When I share a directory on the Samba machine ADS mem
ll getting this infamous
'user does not exist'
thanks for the help :)
Igor Belyi wrote:
Any smbd log you want to share?
I'd expect some kind of error in there? :)
Igor
Mark Rutherford wrote:
ok, changed the computers name and added it just as I added 'test'
then, deleted the &
Any smbd log you want to share?
I'd expect some kind of error in there? :)
Igor
Mark Rutherford wrote:
ok, changed the computers name and added it just as I added 'test'
then, deleted the 'test' machine
the new machine I called 'mark'
and, it was already in a workgroup.. so I rebooted it
no change.
Holger Krull wrote:
It's more like an ext3 question...
NTFS has create, modify, and access timestamps whereas
ext3 has change, modify, and access ones.
According to my experiments on NTFS:
'create' really never changed.
'modify' changes whenever file is saved.
'access' changes whenever property of
Laurenz, Dirk wrote:
Hello everybody,
i have two questions concerning samba.
1st Topic - file times
NTFS has three file times for each file,
the create time, the change time and the
access time. The create time will never be
modified, the change time will be changed
- you'd better trust 'theusername' as
if it were 'root'.
Igor
Igor Belyi wrote:
Hm... Interesting idea... Since access is necessary only to smb.conf
than probably changing share's path to
'path = /etc/samba' could be a better alternative...
But then ag
above). If you can limit the path to say /home or wherever the files of
concern are, you would be much better off.
--
David C. Rankin, J.D., P.E.
Rankin * Bertin, PLLC
510 Ochiltree Street
Nacogdoches, Texas 75961
(936) 715-9333
www.rankin-bertin.com
- Original Message -
From: "Igor
[EMAIL PROTECTED] wrote:
Hello.
I need to allow one of my users to add & delete shares on my Samba server
through the 'server manager' applet on his client .
This same user also writes some files to the same Samba server.
I don't want the files that he writes to be owned/written by 'root' .
The w
Greg J. Zartman, P.E. wrote:
I'm attempting to start smbd and nmbd using the -F -S flags, but get the
following:
added interface ip=127.0.0.1 bcast=127.255.255.255 nmask=255.0.0.0
added interface ip=192.168.0.1 bcast=192.168.0.255 nmask=255.255.255.0
standard input is not a socket, assuming -D op
Mario Ohnewald wrote:
Hello List,
yet another OpenLDAP/Samba problem...
OpenLDAP: slapd 2.2.17
Samba: Version 3.0.7
Debian stable with 2.4.27
I am trying to do this howto (smb auth via ldap):
http://www.idealx.org/prj/samba/smbldap-howto.en.html
Even IF the user does not exits in my ldap table, wh
Have you tried to print from the same machine where cups-server runs
without invoking Samba? If it has the same problem - you will need to
ask help on cups list: http://www.cups.org/newsgroups.php
Igor
Karsten Dello wrote:
good evening,
if i print to our cups-server from a winxp-machine via the
Greg Adams wrote:
I've got a Samba 3.0.7 member server of an ADS domain. Is there some
way to map everyone in an ADS group to a single user for the purposes
of Unix permissions? I thought I could do this with an smb.conf entry
of:
usernam map = /opt/samba/etc/username.map
and an entry in the userna
Have you tried to ask on Heimdal list?
[EMAIL PROTECTED]
Igor
L. Mark Stone wrote:
Trying to follow Chapter 9.3.3 of S3BE to create a SuSE 8.2 Active Directory
domain member server.
9.3.3 says heimdal >= .6 is required. I installed the Sernet packages and saw
0.6.2 source is included. Running .
I use usrmgr.exe on WinXP Pro without a problem. Did you check for any
error message in smbd log and in Window's "Event Viewer"?
Igor
Aaron Rosenblum wrote:
Hi,
I installed UsrMgr.exe (downloaded from the MS support site) on an XP
client, joined the client to the domain hosted by the Samba 3 PDC
I think it's a good idea to ask this question on a Nautilus list:
http://mail.gnome.org/mailman/listinfo/nautilus-list
Igor
Steve Blackwell wrote:
Hi,
I'n using the nautilus file browser in a GNOME desktop environment on a
FC2 system.
If I enter smb:/// in the location bar in nautilus I can see
[EMAIL PROTECTED] wrote:
Is there a way to add the linux user to the system on the fly while you
run smbpasswd -a and even set the password so you do not have to do two
steps or to have adduser or useradd add a user to smb by default with the
same password if created. Many of the users in a sma
Can you provide 'log level = 5' of smbd for the time you open the share.
Also provide at least one name of the folder which is present in this
share but is not shown in Windows.
Thanks,
Igor
Mario Bittencourt wrote:
Hi,
at least for me no changes. I've added those hide
unreadable/unwriteable =
Kris Van Bruwaene wrote:
When trying to connect to a new machine on our
internal network I first got:
session setup failed: NT_STATUS_PASSWORD_MUST_CHANGE
I searched the list archives and found the following
solution, which gave me a new error:
smbpasswd -U bruwaek -r //rto.be
Old SMB password:
New
Monty wrote:
I am running MD 10 (Community) as a file server on a Shuttle SB61G2. This
setup worked very well under Mandrake 9.2 however, everytime I try to copy
files larger than say <550 ~650MB using MD 10, my linux box freezes and must
be rebooted. I can FTP the same file(s) perfectly fine to
Adrian Hicks wrote:
Firstly, the man page says to use "add machine script"... AND
Can someone tell me why my thinking is wrong. Isn't %u the username of the
current service, if any, as described in the smb.conf man page?
If so, why do the doc's (including the man page) put %u in the command for
Jim C. wrote:
I use firefox over a Samba share mapped to a network drive.
If samba had interpreted the link correctly, then shouldn't an attempt
to write to it have written the file it points to, specifically the
bookmarks file?
I'd guess it just removes the old bookmarks file and creates a new o
Can you also provide smbd log showing the error message during your
attempts?
Igor
Brian Witowski wrote:
Hello,
I have a perplexing problem. Im running Mandrake 10.0 and samba 3.0 setup
as a domain controller. My client machines are XP Pro. I can join the
domain and my "Homes" directory connec
Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ryan Suarez wrote:
| Greetings Admins,
|
| The howto details setting the device mode using a windows client:
|
http://us4.samba.org/samba/docs/man/Samba-HOWTO-Collection/printing.html#id2552900
|
|
| Is there a way to scri
rt this computer for the changes to take
effect." popups I reboot and have computer as a domain member.
Do you join domain some other way?
Igor
Michael Liebl wrote:
Am Mittwoch, den 13. Oktober 2004 schrubte Igor Belyi:
Using: Debian/unstable x86 Linux 2.6.5
Samba: Version 3
Please, read carefuly Samba doc regarding Interdomain Trust:
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/InterdomainTrusts.html
Interdomain trust implies that one Domain will trust another that a user
logged into it correctly. Your assumption that user from one Domain
should be abl
Users (S-1-5-32-545) is a local group. Domain users should have Domain
group from their domain as their primary group. I would recommend to
change mapping by removing 'Users -> users' map and adding 'Domain Users
-> users' one.
The problem can be also caused if you already have 'Domain Users ->
Users (S-1-5-32-545) is a local group. Domain users should have Domain
group from their domain as their primary group. I would recommend to
change mapping by removing 'Users -> users' map and adding 'Domain Users
-> users' one.
The problem can be also caused if you already have 'Domain Users ->
Michael Liebl wrote:
Domainname: MITTELERDE
PDC:ISENGART
Machinename I added: TESTMACHINE
My Command:
add machine script = /usr/sbin/useradd -c Samba-Computer -d /dev/null -g machines -s
/bin/false %u
If I change 'set primary group script' to "/bin/true" the machine will
stay in Group mac
Tilo Lutz wrote:
I got a problem with groupmapping. It doesn't work correct:
Wilma2:/home/root # net groupmap list | grep 512
Domain Admins (S-1-5-21-3371203057-3264423045-2392767973-512) -> domadm
ldapsearch -x cn=domadm:
# domadm, groups, wms-hn.de
dn: cn=domadm,ou=groups,dc=my-domain
objectClass
Different people have different reason for this failure but in your case
you need to remember that besides finding Administrator Samba need to
find machine trust account as well. If it can't find it the same error
message "Can't find user" is reported back to Windows.
Check that machine account
Different people have different reason for this failure but in your case
you need to remember that besides finding Administrator Samba need to
find machine trust account as well. If it can't find it the same error
message "Can't find user" is reported back to Windows.
Check that machine account
What 'getent group domadm' returns you? I suspect that it does not have
tilo as a member. If you have the same posixGroup defined both in
/etc/group and in LDAP and what to have definition (and member list) to
be taken from LDAP instead of local file you need to list 'ldap' before
'files' in yo
Can you provide smbd log showing the error message you receive on login
attempts?
Does your 'pdbedit -L' lists machine accounts as well as user's one?
How did you migrate your user database into LDAP (you may lost your
password during migration)?
Why do you use samba 2.x schema with Samba 3.0.7?
Michael Liebl wrote:
A machine account has not to be in a primary Samba group I think. That
would not make any sense to me.
I saw in the log that Samba grep'd the primary Samba group for the
machine$ (Domain Users) an then called "set primary group script".
Should I add the Log to the List or direc
Barbara M. wrote:
Anyone have a working conf (PDC+homes+public in samba 3.0.x)?
Ok, I finally noticed that you don't have "map to guest" in your
smb.conf which means it gets value "Never". I would recommend to set it
to "Bad User" and then all nonexisting in domain users will be silently
mapped
To prevent deletion you should remove write access on the directory
containing the file: chmod a-w /home/samba/public
Igor
Bruno Gimenes Pereti wrote:
Hi!
I'll try to explain all the situation to help you understand the
problem. I have a Samba 3.0.4 + LDAP + ACL PDC and I use poledit to
define
"security = DOMAIN" means that server is a member of a domain and not a
PDC. To set servera as a PDC you will need to use "security = USER"
(which is the default). Please, read Samba-HOWTO.
Igor
Šopík Bronislav wrote:
Hi,
it is my project in the school, I need to create this trust between two do
M Middleton wrote:
I've got several users I created with a blank password (only temporary
until I can get the system fully operational, long story behind that),
but for some reason when I try to access a share that a user with no
password is authorized for, NT 4 won't let me in to the share.
Any an
smbfs is not the same as Samba - they use although the same net
protocol. You can try to put files into share with smbclient to see if
Samba also has the same problem, but if it's smbfs specific you will
need to go to the correct maintainer. You can also try to mount share
with CIFS - they say
Chris St. Pierre wrote:
I did some further investigation, and it appears that in the
conditional on lines 250-254 of rpc_server/srv_netlog_nt.c in
get_md4pw() is where the failure point is. Namely, the account is not
disabled, and the pass is not null, but none of the trust checks pass.
(acct_ctrl
Chris St. Pierre wrote:
An update: I managed to get a domain entry added to my LDAP directory.
Still got the same error. Googled for it; found out that I had to put
my machine trust accounts in ou=people instead of ou=machines. Did
so. Still get the same message from Windows:
"The system canno
Leandro wrote:
is there log analyzer software for samba ?
i have log.smbd, log.nmbd, log.user, log.IP
i need a report , in plain text, html, etc like :
MACHINE : aaaUSER : bbbACTION : login/logoutDATE: 01/01/04 11:11:11
There's always Perl which was built exactly for this kind of job. :
Meli Marco wrote:
I have a NT4.0 PDC and samba 3.0.2 member domain, it store SID-UID mapping
in winbind_idmap.tdb file.I have read about a more scalability way to store
these informations in a ldap server.So I can install another member domain
to share the same mapping.
How it is work?Can I found a
Gary Green wrote:
I'm new to samba, but I've been reading a few guides and I think I have
it set up somewhat correct. Connecting to it via linux or windows on
the local lan is no problem, as long as the personal firewall settings
are allowing it.
Problem is I still can't get any computer off t
Chris St. Pierre wrote:
Is there any way to algorithmically convert a unix uid to an sid? I'd
like to just run a script through all of my users to grab the uid,
convert to an rid, prepend my system sid, and write it to the sambaSID
attribute.
User's RID = Base RID + 2 * UID
Group's RID = Base RID
rruegner wrote:
Hi Chuck now i think it is clear that your firewall is not envolved
anyway disable it until you fetch the bug.
at a short look
User bagginsadmin has Primary Group SID S-1-5-32-
> 544,
> which conflicts with the domain sid S-1-5-21-2763611909-969304523-
> 3334035465.
> Failing
Eric Stevenson wrote:
Is it possible to use samba and winbind with apache to require membership in
a specific Windows domain group to authenticate to a realm. Similar to using
'require groups' with an .htaccess file and a UNIX group, I'd like to use
'require group' in an .htaccess file and a Window
1 - 100 of 154 matches
Mail list logo
