[Samba] Adding RFC2307 attributes to an existing Win2003 AD domain?

Running Samba 4.0.9, we have added a pair of Samba4 domain controllers to an existing Win2003 domain. How do we determine whether RFC2037 attributes already exist in the domain? And how would we go about adding them to an already existing domain? -- To unsubscribe from this list go to the fo

Re: [Samba] vfs_recycle folder limit management

On 9/26/2013 10:24 AM, Kevin Field wrote: Thanks John, but I meant more so is there a way to have it look at the total size of the recycle dir too? I.e. only delete stale files when it needs to to stay within a limit, and also even delete not-so-stale files if it needs to because there have bee

Re: [Samba] Samba4: where are ACLs stored?

On 9/26/2013 10:12 AM, Klaus Hartnegg wrote: Hi, most file access rights sync between ACLs of linux and the security tab of windows file properties, but not all. Where are the other infos stored? I tried in linux 'getfattr -d' and 'samba-tool ntacl get', but neither output changed when using wi

Re: [Samba] samba-tool join domain fails

On 9/23/2013 12:17 PM, Axel wrote: Hi folks, big problem with my testint environment... my windows 2003-domain exists since 2004 and the credentials are correct, guaranteed. This problem is actually same on Ubuntu 12.04.3 and Debian 7... (I just added Samba4 to an existing Windows 2003 Active

Re: [Samba] samba 4.0.9 Build Error

On 9/25/2013 4:00 AM, Thomas Zeitinger wrote: Hi there, I tried to build samba 4.0.9 on a Debian Wheezy 7.1 x86 fresh install and got this error: [2717/3935] Compiling source3/smbd/scavenger.c ../source3/smbd/scavenger.c: In function ‘scavenger_timer’: ../source3/smbd/scavenger.c:482:3: error:

Re: [Samba] Samba4 DNS - setting up forwarding zones (or how to configure clients)?

On 9/25/2013 7:52 AM, Thomas Harold wrote: #2 - Can Samba4 DNS be setup to forward all queries that are not for "addomain.example.com" to the firewall BIND DNS server? Or should we continue to point our DHCP clients at the firewall as their primary DNS server? http://www

[Samba] Samba4 DNS - setting up forwarding zones (or how to configure clients)?

Let's assume that we have a network with: domain = "addomain.example.com" .1 - firewall server that runs BIND9, is not in the domain, but can resolve all DNS queries. It is setup to forward any queries for the "addomain.example.com" to the internal Samba4 server. .8 - Samba4 server (sernet

Re: [Samba] Sernet Samba-4 Howto for Centos 6.4

On 7/2/2013 7:23 AM, schmero...@gmail.com wrote: I have registered at https://portal.enterprisesamba.com, but am unclear regarding which packages to install for a fully functioning samba4 installation, or if there are prerequisites such as krb5. I am starting with a minimal install of Centos 6.4.

Re: [Samba] Samba4: Can't create shares outside sysvol and netlogon

On 9/17/2013 6:45 AM, "Th. Söldenwagner" wrote: Hi, I am trying to create shares for my users in our new Samba4 domain, but with no luck so far. Which flavor of Linux are you trying this on? If CentOS/RHEL, one thing I always forget to check is SELinux issues. Maybe you have as well? # get

[Samba] Is the internal Samba4 DNS server capable of DNSSEC?

Is the internal Samba4 DNS server capable of DNSSEC? Or do we need to hook Samba4 up to BIND 9.8 or BIND 9.9? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 AD with bind DNS / TKEY is unacceptable

On 9/12/2013 2:00 AM, Stefan Schäfer wrote: Sorry my English isn't as good as it should be. ;-) Am 12.09.2013 00:01, schrieb Patrick Gray: Is your existing server SBS by any chance? What's the meaning of this sentence? SBS = Small Business Server - Which was always a cut-down version of th

Re: [Samba] Samba4 and iptables

On 8/15/2013 10:36 AM, Kevin Field wrote: Hi everyone, I had posted recently about getting Samba4 to work on CentOS 6.4 but having changes only replicating in one direction, from the Win2k3 AD but not back to it. I solved the problem, this time, by disabling iptables. I find it a bit hard to

[Samba] samba4 anonymous read-only access to a server share

I suspect, based on the conversation about this back in May 2013 in the thread titled "\"map to guest = bad user\" ignored in Samba 4?", that this is still an issue? What I'm trying to do is setup a samba4 file server with the following options in the [global] area of smb.conf: [global]

Re: [Samba] Setting password expiration policy

On 5/13/2013 11:23 AM, Gerry Reno wrote: Can I use samba-tool to globally set passwords to never expire like this: /usr/local/samba/bin/samba-tool domain passwordsettings set --max-pwd-age=0 Or do I have to set max age to some positive value and set expiration in ADUC when creating each

Re: [Samba] Samba4 - Win7 RSAT tools - global catalog (GC) cannot be contacted

Thanks, Marc Whether something else is missing, you can see, if you check on which ports the Samba daemons are listening: # netstat -taunp | egrep "tcp.*LISTEN|udp" | grep "samba|smbd" # netstat -taunp | egrep "tcp.*LISTEN|udp" | egrep "samba|smbd" tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN

[Samba] Samba4 - Win7 RSAT tools - global catalog (GC) cannot be contacted

Fresh install of 4.0.6 from source on CentOS 6 minimal. Provisioning worked fine as did adding a Win7 Pro machine to the domain. Now trying to use the RSAT (Remote System Administration Tools), specifically the Active Directory Users and Computers tool. When looking at the properties for the