A. On Sat, 2013-09-28 at 15:49 +0100, Rowland Penny wrote:
[SNIP]
If you do a google search for 'uidNumber' for instance, you will find
this webpage:
http://msdn.microsoft.com/en-us/library/windows/desktop/ms680511%28v=vs.85%29.aspx
This plainly shows that the earliest windows
On Tue, 2013-10-01 at 11:27 +0100, Rowland Penny wrote:
[SNIP]
Wrong, the first windows server that had 'uidNumber' as standard was
2003R2 .
That is what I said. However there where lots of 2003 and even 2000
servers that had uidNumbers in their schema. What you cannot do is
conclude
On Tue, 2013-10-01 at 12:44 +0100, Rowland Penny wrote:
[SNIP]
Here we go again, your logic is flawed, just because you personally know
of lots of windows 2003 2000 servers that have 'uidNumbers' does not
mean Samba 4 is level 2003.
No my logic is not flawed. You can *NEVER* determine
On Fri, 2013-09-27 at 01:33 -0700, Jeremy Allison wrote:
[SNIP]
Please remember the Mac client developers do hang out on
this list, so please make criticism constructive about
actual bugs (although I do understand the need to let
off steam occasionally). The Linux and smbclient clients
On Fri, 2013-09-27 at 05:22 -0400, Thomas Harold wrote:
Running Samba 4.0.9, we have added a pair of Samba4 domain controllers
to an existing Win2003 domain.
How do we determine whether RFC2037 attributes already exist in the
domain? And how would we go about adding them to an already
On 26/09/13 19:13, Jeremy Allison wrote:
[SNIP]
Just as a guess, turn off unix extensions (unix extensions = no)
in the [global] section of your smb.conf and then restart smbd.
While that will probably do the trick the piece of sh*t that is the Mac
OSX smb client can still do wacko things
On Mon, 2013-09-23 at 11:45 +0200, Bart-Jan van Hummel wrote:
I am using Samba 3.6.6 on Debian Wheezy.
I want to be able to change www files on my dev server using my macbook.
That is your problem right there. The MacOS X smb client does not
generally respect force user/group parameters when
On Tue, 2013-08-13 at 10:06 +0200, Markus Gillmeister wrote:
Steve, thanks a lot, I finally got sssd (version 1.8.4) on debian wheezy
working with samba 4 (Version 4.0.8-SerNet-Debian-5.wheezy)!
But one last question regarding unix attributes in the AD stays: I noticed
that uidnumber/gid...
On 09/08/13 11:31, David Blaney wrote:
[SNIP]
When I list users using getent all users in the domain appear but
there UID and GID are out by 99000 (e.g. 4108 on my machine should
be 103108)
I know this is to do with idmap but the man pages and online post
have not lead me to a solution.
On 29/07/13 00:48, Nico Kadel-Garcia wrote:
On Sun, Jul 28, 2013 at 5:39 PM, Marc Muehlfeldsa...@marc-muehlfeld.de wrote:
Hello,
Am 06.07.2013 15:26, schrieb Wong siu yu:
I had a RedHat 5.2 need to trust domain the Windows Server 2008 R2 (forest
level 2003).
Which package I need to install
On 25/07/13 17:59, dahopk...@comcast.net wrote:
1) will the unixHomedirectory be honored?
2) will I be able to easily add users so that the unix settings will
be properly configured? I currently use the IDEALX smbldap tools.
Being able to script account creation is very important to me ..
On 25/07/13 20:14, dahopk...@comcast.net wrote:
[SNIP]
Step 6: I already have samba-common, and samba-common-bin (latest for
10.04) installed. I'd assume I need to uninstall these and install
samba4 instead (especially as step 8 is to join the domain).
Not familiar with Ubuntu, but that is
On Wed, 2013-07-24 at 00:49 +0200, steve wrote:
[SNIP]
For the record, sssd pulls all it's info from AD.
I never said otherwise.
A user does not need a gidNumber, it is drawn from the
primaryGroupID.For Linux clients it is vital that whatever the
primaryGroupID is contains the gidNumber
On Wed, 2013-07-24 at 14:09 +0200, steve wrote:
[SNIP]
Hum, according to Rowland it uses the gidNumber in the users DN,
He was correct. I was wrong in assuming that you needed no gidNumber in
the user DN. It is indeed the gidNumber that is used for rfc2307,
exactly as openLDAP.
Thank you
On Tue, 2013-07-23 at 10:15 +0200, steve wrote:
[SNIP]
+1
sssd just works: there is plain English documentation available and you
get rfc2307 out of the box. The same day;)
otoh, if you must stick with winbind there are reports of success here.
Just one more thought to bugzilla it.
On Tue, 2013-07-23 at 11:25 +0200, steve wrote:
On Tue, 2013-07-23 at 10:05 +0100, Jonathan Buzzard wrote:
It's probably still not working for him because he needs to clear the
now poluted cache/database that winbind has created from previous
attempts. Using net cache flush might work
On Tue, 2013-07-23 at 11:06 +0100, Rowland Penny wrote:
[SNIP]
OK, I see where you are coming from, but until testparm starts saying
'this will not work because' people will keep on having problems with
winbind, also why do you need to set up the ranges anyway.
testparm does not guarantee
On Tue, 2013-07-23 at 11:55 +0100, Rowland Penny wrote:
[SNIP]
I thought that testparm did exactly that, it tested all the parameters
in smb.conf, so if the ranges overlap, it should report the error.
You thought wrong then. It tests to see if they are valid so 1000-akjf
is
On Tue, 2013-07-23 at 11:25 +0200, steve wrote:
On Tue, 2013-07-23 at 10:05 +0100, Jonathan Buzzard wrote:
It's probably still not working for him because he needs to clear the
now poluted cache/database that winbind has created from previous
attempts. Using net cache flush might work
On Tue, 2013-07-23 at 14:20 +0100, Rowland Penny wrote:
OK, the documentation is better but people still get it wrong probably
because it is more complex than it needs to be, I personally find it
easier to set sssd up, but that is just me.
Why use a word like orthogonal?, just who knows
On Tue, 2013-07-23 at 14:39 +0100, Rowland Penny wrote:
Could this be yet another reason to use sssd instead of winbind?
sssd does use the account gidNumber
testuser
primaryGroupID: 513
uidNumber: 3001106
gidNumber: 20513
getent passwd testuser
On Tue, 2013-07-23 at 15:23 +0100, Rowland Penny wrote:
On 23 July 2013 15:04, Jonathan Buzzard jonat...@buzzard.me.uk
wrote:
Not what I said. The primaryGroupID is an identifier for a
group in AD,
bit like a SID is (I don't get that either). So primaryGroupID
On 23/07/13 17:10, Rowland Penny wrote:
[SNIP]
But if the group identified by primaryGroupID 513 has gidNumber 20513
(which would be in my opinion best practice) without looking in the
source code of sssd you don't know whether sssd took the gidNumber of
the user or took the
On 05/07/13 16:10, Brian H. Nelson wrote:
On 7/3/2013 4:54 PM, Jonathan Buzzard wrote:
My guess is this is related to the Unix extensions. Basically certain
versions of OS X; I can't remember which ones but 10.5 sticks in my
mind but that might be related to symbolic links and it was 10.6
On Wed, 2013-07-10 at 11:38 -0300, Nicolas Pagliaro wrote:
Samba 3.0.6.9 is the version I have in yum.
No you don't.
Is this version ok to act as a member server? Or I should install 3.0.2?
Eh, what are you talking about. If you have the latest CentOS 6.4 then
yum should be bringing in a
On Tue, 2013-07-09 at 07:35 -0300, Nicolas Pagliaro wrote:
Hi Nico, thanks for your answer. I don't need to have an AD server installed
in my centos.
I just needs to connect to my Windows DC that have AD because I need to have
samba shares with AD users permissions.
Now I remove all
On Tue, 2013-07-02 at 09:28 +0200, steve wrote:
[SNIP]
Do I have this?
1. is a domain controller and a file server.
2. is a member server and a file server.
Yes, that is what you have.
Another question, why do you say:
'...its a domain server (or domain controller).'
Which _is_ it?
On 03/07/13 19:56, Brian H. Nelson wrote:
[SNIP]
I have a situation currently where it looks like I will need to
implement the above 'force' settings in my samba 3.x environment to deal
with some misbehaving OS X clients that insist on stripping group
permissions from files in certain
On Mon, 2013-07-01 at 09:59 -0400, Gaiseric Vandal wrote:
[SNIP]
A domain controller can be a file server, although in many cases a
domain controller will only provide authentication and logon
functions.It does need to have file shares to provide access to to
the logon scripts and
On 01/07/13 19:56, steve wrote:
[SNIP]
Yes. We take stand alone machines and network them by adding a DC and
what we call a file server. What I'd like to know is why some guys here
call what seems to be what we call a file server, a member server. I
feel we're missing out on something.
In
On Tue, 2013-06-18 at 12:37 +1000, Andrew Bartlett wrote:
On Wed, 2013-06-12 at 16:37 -0700, bogdan_bartos wrote:
Are these directives working for samba 4??? This looks like samba 3 to me.
We
need a fix for samba 4...
Samba 4.0 uses largely the same parameter set as Samba 3.x, because
On Mon, 2013-06-17 at 17:02 +0200, Helmut Hullen wrote:
[SNIP]
The problem seems to be that samba4 (running in samba3 mode) expects an
executable file (inherit mode) but the file Update.cmd had (under
Linux) no executable flag.
Under Samba 3.6 and older: no problem.
When I changed
On 06/06/13 16:10, samuel.feren...@barclays.com wrote:
[SNIP]
Hi Jeremy,
Version 3.0.33-3.39.el5_8
and
Version 3.6.9-151.el6
Package names suggest you are using a RHEL derivative. Do yourself a
favour and on your RHEL5 boxes install the Samba3x packages to get
something remotely recent.
On Tue, 2013-06-11 at 20:22 -0600, Tanveer Virani wrote:
Hi Marc,
Here is the information that you requested. When I say that all
permissions on a file are lost, this is at the windows level. In Windows
Explorer, we go to open the file in the default program, we get an Access
denied.
On Thu, 2013-06-06 at 10:25 +0200, steve wrote:
On Wed, 2013-06-05 at 23:13 +0100, Jonathan Buzzard wrote:
As far as I can tell sssd does not provide a mechanism for the smbd on
at least 3.5 (the 4.x series might be different but the OP is running
3.6) to see an incoming SID and work
On Wed, 2013-06-05 at 13:30 +0100, Rowland Penny wrote:
Hi, I gave up on winbind, it is just too complicated and most, if not all,
of the webpages I found via google are incomplete or just down right wrong.
It's actually dead simple, and these days the manual page is actually
accurate. Really
On Wed, 2013-06-05 at 15:42 +0100, Rowland Penny wrote:
I never said that I couldn't get it to work, I just said that it is
just too complicated. Yes I can read and there was no need to get
personal
You said you gave up because it was too complicated. Also if you are
setting up a Samba file
On 05/06/13 17:56, steve wrote:
On Wed, 2013-06-05 at 16:22 +0100, Jonathan Buzzard wrote:
On Wed, 2013-06-05 at 15:42 +0100, Rowland Penny wrote:
I never said that I couldn't get it to work, I just said that it is
just too complicated. Yes I can read and there was no need to get
personal
On Mon, 2013-04-29 at 07:05 -0700, Mauricio Alvarez wrote:
Michael,
I really don't want to repartition--again! But yes, your idea is intresting.
As a point of note that is what LVM is for, the 20th century called and
wants partitions back.
Getting back on topic why not consider using
On Tue, 2013-04-02 at 16:28 +0300, Deyan Stoykov wrote:
Hello everyone,
Samba 3.6.9 on CentOS 6.4. With security = ads, winbind doesn't
authenticate requests that prepend a not-existent domain to the
username. Users that have logged into the domain authenticate
transparently to squid
On Wed, 2013-03-06 at 06:33 -0500, Joseph, Matthew (EXP) wrote:
Hello,
We have a Red Hat 5.3 SAMBA 3.0.33-3.7 Server that shares a few directories
to 4 other servers.
The other servers are Red Hat 5.3 and one Solaris 10 server.
Stop right there. Nobody here could care less about someone
On Wed, 2013-03-06 at 08:28 -0500, Joseph, Matthew (EXP) wrote:
Hello JAB,
Thank you for taking the time to respond to this in a very helpful
manner... If the SAMBA community does not care about helping someone
with a wildly out of date server then they should state that before
letting
On Wed, 2013-03-06 at 08:28 -0500, Joseph, Matthew (EXP) wrote:
Hello JAB,
Thank you for taking the time to respond to this in a very helpful manner...
Actually it is helpful given the limited and insufficient information
you provided.
The basic problem is you are looking for a magic fix
On Wed, 2013-03-06 at 10:06 -0500, Simo wrote:
[SNIP]
Jonathan,
you are not being helpful here.
Actually I am being helpful, given the limited information provided.
There are a whole host of issues with Samba and NFS fixed between
RHEL5.3 and RHEL5.8/5.9 that are likely to be related to his
On Mon, 2013-02-18 at 13:52 +0100, Alexander Födisch wrote:
When a file is created with samba 3.5.x or 3.6.x, it is created effective
read-only:
~ # getfacl Microsoft\ Word-Dokument\ \(neu\).docx
# file: Microsoft\040Word-Dokument\040(neu).docx
# owner: root
# group: 11816
user::rwx
On Tue, 2013-02-19 at 20:50 +0100, Ray wrote:
Hi,
at home I only use Linux, so no problem there. Even all my Squeezebox
radios haven't got any problem with special characters, which is not
really a surprise, because under the hood they also run Linux.
But I also run a site-to-site VPN
On 18/02/13 19:16, Ray wrote:
Hi,
I suppose this question must have been posted a hundred times, but
Google brings up nothing useful:
Consider The Wall from Pink Floyd in an MP3 collection. There's In
The Flesh.mp3 and In The Flesh?.mp3 as tracks. Or, another example in
an MP3 collection:
On Wed, 2013-02-13 at 16:31 +, Orlando Richards wrote:
Hi folks,
In our happy adventures in ID mapping between windows and Unix, I've
come across an odd issue with the idmap : script mapping method when
using tdb2.
Basically - my idmap script behaves like this:
#idmap.sh IDTOSID
On Thu, 2013-01-31 at 15:41 -0500, Andras Frankel wrote:
Hello,
I am using the vfs_gpfs samba module to map ACLs through samba. It works
fine on files, but directory ACLs are ignored. Ex:
getfacl /sb/share/myplace/
file: sb/share/myplace/
owner: root
group: root
user::rwx
On 26/12/12 15:18, Novosielski, Ryan wrote:
RHEL 3 I believe reached end of support (by RedHat, not Samba) in
2010. I believe RHEL 4 has since reached end of support as well. So
unless the client is paying for RedHat extended life-cycle service or
is off the network (unlikely he wants to
Jim Gallagher wrote:
Hi,
Is there an easy way to get Samba v3.4.3 to respond to client requests to
change the read-only attribute by setting/unsetting the unix write bits?
For the shares in question, the unix permissions are not really important,
but managing the RO attribute is. It appears
On 08/08/12 08:49, steve wrote:
On 08/08/2012 12:35 AM, Jonathan Buzzard wrote:
steve wrote:
On 07/08/12 16:15, Jonathan Buzzard wrote:
On 07/08/12 15:10, steve wrote:
On 04/08/12 22:06, NdK wrote:
Il 04/08/2012 21:13, steve ha scritto:
Uh? wide links seems a bad idea to me... At least
On 08/08/12 13:36, Rowland Penny wrote:
[SNIP]
More info, with 'winbind use default domain = yes' in smb.conf on the
client, 'getent group linuxusers' returns the info. Remove 'winbind use
default domain = yes' from smb.conf and restart nmbd,smbd winbind,
'getent group linuxusers' now
On 08/08/12 16:41, steve wrote:
On 08/08/12 10:40, Jonathan Buzzard wrote:
On 08/08/12 08:49, steve wrote:
On 08/08/2012 12:35 AM, Jonathan Buzzard wrote:
steve wrote:
On 07/08/12 16:15, Jonathan Buzzard wrote:
On 07/08/12 15:10, steve wrote:
On 04/08/12 22:06, NdK wrote:
Il 04/08/2012 21
On 08/08/12 15:13, Rowland Penny wrote:
On 08/08/12 14:45, Jonathan Buzzard wrote:
On 08/08/12 13:36, Rowland Penny wrote:
[SNIP]
More info, with 'winbind use default domain = yes' in smb.conf on the
client, 'getent group linuxusers' returns the info. Remove 'winbind use
default domain
On 07/08/12 15:10, steve wrote:
On 04/08/12 22:06, NdK wrote:
Il 04/08/2012 21:13, steve ha scritto:
Uh? wide links seems a bad idea to me... At least from a security
perspective.
Why a single home directory? We have a single NFS share containing
folders for the two domains and inside those
steve wrote:
On 07/08/12 16:15, Jonathan Buzzard wrote:
On 07/08/12 15:10, steve wrote:
On 04/08/12 22:06, NdK wrote:
Il 04/08/2012 21:13, steve ha scritto:
Uh? wide links seems a bad idea to me... At least from a security
perspective.
Why a single home directory? We have a single NFS
NdK wrote:
Il 04/08/2012 12:00, steve ha scritto:
You have many ways to obtain that same mapping objective. I chose to
use rid 'cause I couldn't modify my AD schema. But the preferred way is
extend AD schema and specify there the UIDs and GIDs.
You don't have to extend the schema. You can
On 03/08/12 07:01, steve wrote:
On 02/08/12 20:57, NdK wrote:
Il 02/08/2012 18:42, steve ha scritto:
The shares are mounted via kerberized nfs on the client and _did_ map
correctly before this thread started.
Are you sure you updated /etc/nnsswitch.conf to use winbind after
purging the old
On 02/08/12 10:09, NdK wrote:
Il 02/08/2012 10:49, NdK ha scritto:
map readonly = no
map archive = no
map system = no
map hidden = no
According to the man page, when store dos attributes is set, those
should be ignored. But I added 'em anyway.
Uhm...
On 02/08/12 16:01, steve wrote:
Hi everone.
Ubuntu 12.04 v3.6 clients with winbind joined to 12.04 Samba4 DC
Clients:
smb.conf
[global]
realm = polop.site
workgroup = POLOP
security = ADS
wide links = Yes
unix extensions = No
template shell = /bin/bash
winbind enum users = Yes
winbind enum
On 01/08/12 14:54, Michael B. Trausch wrote:
On 08/01/2012 03:59 AM, NdK wrote:
Il 30/07/2012 09:40, NdK ha scritto:
Seems I can't find the root cause of $subj.
When I store a file on my home, it gets chmodded ugo+x ...
Any hints?
See the documentation for map archive.[0]
Essentially, the
On 25/07/12 15:39, Anthony Boccia wrote:
Hello All,
I haven been having issues joining my windows 7 client to a samba
3.5.10-125 PDC. I have been doing some reading online and have found some
pages that suggest that samba3x plays better with windows 7. The PDC OS is
RHEL and i am using RHEL 6
On 14/07/12 17:50, Nick Triantos wrote:
Hi,
I'm still having trouble getting Samba 3.6.3 / Winbind to fetch UIDs from AD
2008 R2 with the Services for Unix feature installed. My users have uidNumber
fields which contain the UIDs I want. I'm on Ubuntu 12.04
The global part of my smb.conf.
On 13/07/12 02:36, Heather Choi wrote:
How is Samba 3.6 against ADS broken? I have Samba 3.6.6 on SL6.2 with
ADS and it's running great...
In general it is in my belief not broken, and even the generic Samba
packages that come with RHEL 6.2 and it's rebuilds work for me against
our 2008R2
On Thu, 2012-07-05 at 08:13 +0200, steve wrote:
Hi everyone
I can run winbindd on the server Ok but how do Install it on a client?
Do I have to install the whole of S4 and provision the client as
sever-role=member?
I would have said that running latest 3.5 or 3.6 would be more
apprioriate
On Wed, 2012-07-04 at 17:11 +0200, steve wrote:
[SNIP]
As to suggestions to use autofs on 2500 users, my advice is don't. Works
well at ~50 users but gets flacky at couple hundred users with random
things not working 100% of the time that will take you for ever to track
down to autofs
On Mon, 2012-07-02 at 18:20 +0200, steve wrote:
[SNIP]
I think I must be missing something here because as far as I can see,
winbindd puts all users into the directory specified in template
homedir. [homes] then picks out the user from there.
Yes you are stop using template homedir
On Mon, 2012-07-02 at 17:39 +0200, steve wrote:
Samba4 with Linux and Windows clients wanting to get the same home
folder data.
Hi
A college has students arranged with Linux home directories according to
which year they belong to and which class within that year, a or b or
whatever,
j...@brewtoncityschools.org wrote:
I have a server running samba-3.0.9-1.3E.10. And I'm trying to update that so I
can now add windows 7 pcs to my network. The server is a Dell Poweredge 2850
running Red Hat Enterprise Linux EX release 3 (taroon update 8). It's also
running Webmin version
Igor Cervo wrote:
Possibly not, try
# store DOS attributes in extended attributes
ea support = yes
store dos attributes = yes
map readonly = no
map archive = no
map system = no
Tks Jonathan,
Where I put this attributes? In Global attributes?
Take your
Jack Bates wrote:
On 06/06/12 01:35 AM, Jonathan Buzzard wrote:
On Wed, 2012-06-06 at 06:47 +, Dirk Traenapp wrote:
[SNIP]
With this configuration i can force every new folder or file belonging
to default-group of the parent folder.
But won't stop me *changing* the ownership of file
On Wed, 2012-06-06 at 06:47 +, Dirk Traenapp wrote:
[SNIP]
With this configuration i can force every new folder or file belonging
to default-group of the parent folder.
But won't stop me *changing* the ownership of file or folder.
JAB.
--
Jonathan A. Buzzard
On Tue, 2012-06-05 at 10:01 -0300, Igor Cervo wrote:
Hello,
Many times when a user open, modifies and then close a Office 2010
document (Word, Excel, Power Point), the file keeps locked.
A different user tries to open the file and gets a error message related
to locking, read only
Jeremy Allison wrote:
On Tue, May 29, 2012 at 10:21:23PM -0700, Jack Bates wrote:
How can I prevent Samba clients from changing the group ownership of files?
With the security mask parameter I can prevent Samba clients from
changing some permission bits, but I can't find a parameter to
prevent
Jorell wrote:
On 6/5/2012 1:06 PM, Jonathan Buzzard wrote:
Jeremy Allison wrote:
On Tue, May 29, 2012 at 10:21:23PM -0700, Jack Bates wrote:
How can I prevent Samba clients from changing the group ownership of
files?
With the security mask parameter I can prevent Samba clients from
changing
This is a working smb.conf CentOS 6.2 latest aka 3.5.10-116.el6_2.x86_6
configuration against a Windows 2008R2 domain. Note we are using GPFS as
our underlying file system and CTDB. All I have changed is the names
[global]
netbios name = NEMO
security = ads
workgroup =
On Tue, 2012-05-29 at 15:41 -0700, Randy Rue wrote:
Can anyone tell me what's wrong with the below file? Or at least provide a
working example? Is there a complete howto anywhere for SMB3.5 and AD2008R2?
Yes, for starters where is the default writable backend that is required
as specified
On Sat, 2012-05-26 at 09:45 +0200, steve wrote:
On 24/05/12 19:52, Leonard Degollado wrote:
I have a 3-node GPFS on Linux Cluster (3.4.0-12) with Samba 3.6.5
The problem is with file locking across the Cluster.
Windows Client-1 maps the GPFS directory-1 from GPFS node-1 and initiates a
steve wrote:
[SNIP]
Under winbind we cannot see how to do it. So we have used the new
nss-pam-ldapd instead and store the unixHomeDirectory in the directory.
As it's available in both the 2008 and s4 schema it works quickly and
efficiently. With the homeDirectory [share] and
NdK wrote:
On 23/05/2012 15:30, steve wrote:
If the gidNumber for the gid is stored in AD (as the 2008 and samba4
schema allow) then there can be no clash. It is then no problem in
extracting it and applying it using normal /etc/nsswitch.conf format.
The AD schema is still 2003. And who
On Tue, 2012-05-22 at 12:34 +0300, Pacher Dragos wrote:
Thanks Jonathan,
I missed that.
So, zfsacl is provided by Oracle.
I have no idea as I don't use Solaris
Should I favor acl_xattr besides zfsacl ?
I would have thought that zfsacl which stores the ACL's as native NFSv4
On Fri, 2012-05-11 at 11:39 +0100, Zdenek SMetana wrote:
Hi,
I'm trying to set up samba share exporting gpfs filesystem and I strugle
with setting sharemode to yes. Samba is 3.6.5, gpfs version is 3.2.1-29
(the latest available for 3.2 branch). Everything works fine when sharemode
is set
On Fri, 2012-05-11 at 13:07 +0100, Zdenek SMetana wrote:
Christian,
Thank you for your reply, I really appreciate one. To summarize - gpfs 3.2
is unsupported in samba 3.6 branch. That triggers another question - is
there a combination of samba release and gpfs 3.2.x proven to work? I'm
On Sat, 2012-05-05 at 00:34 +0900, TAKAHASHI Motonobu wrote:
From: Jonathan Buzzard jonat...@buzzard.me.uk
Date: Thu, 03 May 2012 15:01:15 +0100
Some empirical testing shows that if I am using the idmap_ad module the
template homedir parameter in smb.conf is ignored. I would just like
Some empirical testing shows that if I am using the idmap_ad module the
template homedir parameter in smb.conf is ignored. I would just like to
determine if this is the correct behaviour or if I am doing something wrong.
JAB.
--
Jonathan A. Buzzard Email: jonathan (at)
On Thu, 2012-04-19 at 10:20 -0400, John Oliver wrote:
I'm trying to get AD authentication working on a RHEL 5.4 base system
I can wbinfo -[ug] and getent {passwd|group} with 3.0.33 Everything
appears to work just fine, except I could not actually authenticate...
I'd always get failed
On Thu, 2012-04-12 at 11:21 +0200, NdK wrote:
Hi all.
Is it just me or there's no way to restrict access to [homes] share to
members of an AD group? Or is it treated like an ordinary Unix group via
Winbind mapping? If I use valid users = %S (to give access to the home
only to the owner),
On Tue, 2012-01-17 at 08:27 +0100, Daniel Müller wrote:
THis is what is working:
Msdfs root and host msdfs and msdfs proxy are the things you need.
You have a server let's call A.
A is your redirection server to any share on other servers.
You need in you smb.conf ex:
[global]
host
On Tue, 2012-01-17 at 09:32 +0100, Daniel Müller wrote:
What do you mean with preferred one.
If you live with samba you will have one PDC I think and all other servers
are part of your domain.
So the users and groups are all the same in your domain and servers.
So if you logon to your PDC
On Sun, 2012-01-15 at 12:35 +0100, Michal Bruncko wrote:
Hello Jonathan,
thank you for answer. You have right, that is good idea with making
standalone (virtual) redirection server for all people. But here is
another question: it is possible creates this redirection shares on that
On Wed, 2012-01-11 at 19:28 +0100, Michal Bruncko wrote:
Hello list,
we have two samba servers on two localities with bigger distance between
them. On both localities there are organizational staff working. And I
am trying to configure homedirectories for all of staff in this way:
- all
On Fri, 2011-12-09 at 16:05 +0400, Dmitry Mordovin wrote:
[SNIP]
Samba config:
[global]
workgroup = HOME
security = share
max log size = 1024
store dos attributes = yes
map archive = no
map read only = no
map hidden = no
map system = no
create mode = 777
directory mode = 777
Jean-Yves Avenard wrote:
Hi
On 7 December 2011 22:06, Jean-Yves Avenard jyaven...@gmail.com wrote:
Is there a way to make so the uid/SID are matched in such a way that a
username keeps the same uid as before.
For example, editing on the domain controller the ldap entries that
contain the
On Tue, 2011-11-22 at 16:47 -0500, Freeman wrote:
[SNIP]
# this doesn't seem to work for some reason
# i am trying to use idmap_ad
# idmap backend = ad
idmap backend = tdb
idmap uid = 1000-500
idmap gid = 1000-500
idmap config AD : default = yes
idmap
Gary Greene wrote:
[SNIP]
Actually, that is true IIRC for all Linux ACL enabled file-systems
(they all use the same VFS code for ACL and EA manipulation.)
That would be incorrect.
The one that I am intimately familiar with IBM's GPFS uses it's own
special VFS layer. Given that GPFS holds
Jeremy Allison wrote:
On Mon, Nov 14, 2011 at 02:12:35PM +0100, adrian.berlin wrote:
Hi!
Does anyone know how to move/migrate ACLs from file_ntacls.tdb to another
machine?
I tried manually copy file_ntacls.tdb and restart samba but it doesn't work.
Also I tried to dump and restore tdb file
I think this is a recurrence of an old bug. Running Samba 3.5.4 with
CTDB on GPFS 3.4.0.6 with the vfs_gpfs module using CentOS 5.6. It is a
vanilla CentOS RPM's with the vfs_gpfs module a self compiled add on.
Running with NFSv4 ACL's.
Basically what happens is when a user saves a file in
I was reviewing the GPFS VFS module this afternoon after I had a request
to add Thumbs.db to the hide files option.
Now I was under the impression that the GPFS VFS module mapped this
through to the Windows attributes on the under lying file system. That
is assuming that your GPFS file
On Mon, 2011-07-25 at 19:51 -0400, simo wrote:
On Tue, 2011-07-26 at 00:32 +0100, Jonathan Buzzard wrote:
Jeremy Allison wrote:
[SNIP]
Test using a modern (i.e. much later than 3.0.33) smbclient.
To back that up he is using CentOS 5, so there is no excuse for using
1 - 100 of 111 matches
Mail list logo
