Thanks for the input Adam,
In my case I've full control of the AD domain and just run net ads
join which is successful, shows up in AD.
Here's my current config, can you see anything in it that I should
consider adding or removing?
[global]
workgroup = PRESIDIO
password server =
Thanks for the input Adam,
In my case I've full control of the AD domain and just run net ads
join which is successful, shows up in AD.
Here's my current config, can you see anything in it that I should
consider adding or removing?
[global]
workgroup = PRESIDIO
password server
Going to try this a bit more tomorrow with a fresh install, please see
inline responses.
I'm thinking that I may have some kerberos stuff hanging around, I
noticed that there's a smb_krb5 directory with kdc data in
/var/lib/samba.
On Wed, Sep 23, 2009 at 11:37 PM, Adam Nielsen
So I reverted back to an old snapshot and gave this a quick test.
Without any kerberos configuration I get the following error-message
when I try to join the domain:
[r...@presidio3 ~]# net ads join -U Administrator
Enter Administrator's password:
[2009/09/23 23:58:48, 0]
[r...@presidio3 ~]# net ads join -U Administrator
Enter Administrator's password:
[2009/09/23 23:58:48, 0] libads/kerberos.c:ads_kinit_password(362)
kerberos_kinit_password administra...@garnser.se failed: Cannot find
KDC for requested realm
Failed to join domain: failed to connect to AD:
Hi all,
I've been working on getting Samba to authenticate via ADS for the
past few weeks with some lack of success. I had somewhat of a
breakthrough the other day realizing that the problem was related to
the kerberos authentication between Samba and the Win 2008 R2 AD
server. Trying to fix this
Also, looking further at this, shouldn't winbind use the realm rather
than the workgroup for this?
Thanks
/Jonathan
On Wed, Sep 23, 2009 at 11:04 AM, Jonathan Petersson
jpeters...@garnser.se wrote:
Hi all,
I've been working on getting Samba to authenticate via ADS for the
past few weeks
As it seams the server tries to authenticate as pdc$ rather than
presidio3$ which is the hostname of the server and the name it's
registered as. What could the cause of this be?
smb.conf:
workgroup = PRESIDIO
password server = pdc.domain.com
realm = DOMAIN.COM
security = ads
This specific instance is intended to host shares for which users
authenticate with their AD credentials, the normal authentication for
the system works fine and so does joining the domain. As mentioned
earlier initializing kinit and wbinfo returns the expected results and
the server shows up as a
This specific instance is intended to host shares for which users
authenticate with their AD credentials, the normal authentication for
the system works fine and so does joining the domain. As mentioned
earlier initializing kinit and wbinfo returns the expected results and
the server shows up
The kerberos stuff is for the PAM auth although I though this was
necessary for the Samba stuff too.
Also, as far as the workgroup-name goes it's true it's the shorter
name but in my case the short name is PRESIDIO.
Could you send me a copy of your config? I'm obviously a bit off
hacking
The kerberos stuff is for the PAM auth although I though this was
necessary for the Samba stuff too.
Winbind is also an alternative for this, by making all the AD users
visible as if they were accounts on the local machine. Having winbind
working is also crucial to being able to grant AD
Hi,
how do I tell winbind to use UserId from AD, and not doing own mapping
of ID's ?
AD is win2003 R2 Std with sfu.
What I did/tried:
current (this did not work):
# winbind separator = \
winbind use default domain = Yes
winbind nested groups = Yes
# winbind cache time
-Original Message-
From: samba-boun...@lists.samba.org
[mailto:samba-boun...@lists.samba.org] On Behalf Of Christian
Sent: Thursday, 17 September, 2009 10:01
To: samba
Subject: [Samba] winbind idmap question
Hi,
how do I tell winbind to use UserId from AD, and not doing
After a bunch of reading, the most information I can find on turning
these off is that they will speed up certain tasks, and this warning:
Warning: Turning off group enumeration may cause some programs to
behave oddly.
Does anyone have any more information on what programs may behave
oddly? Is
Hello all,
We get a weird error on our 3.4.0 samba server. The log.winbind-idmap shows the
following entries:
[2009/08/24 16:35:53, 0] winbindd/idmap.c:201(smb_register_idmap_alloc)
idmap_alloc module ldap already registered!
[2009/08/24 16:35:53, 0]
HI,
After a quite long period wehere samba was wroking well, sudenly, with
an apparently good reason started do not work. This mean the user are
not able to connect to server, to samba shares.
this is something i could find in logs.
I google it for something like:
[2009/08/21 13:59:16, 0]
On Tue, 2009-08-18 at 14:44 +0100, Alex Crow wrote:
. For example: 1 time
return 0xc0c3 ( NT_STATUS_INVALID_NETWORK_RESPONSE) or 0x1c010002 (???)
and much others. I realized one thing: when the response is Broken Pipe
the ntlm responds OK on first after try and back to the errors after
This is now on Bugzilla, bug 6646.
--
This message is intended only for the addressee and may contain
confidential information. Unless you are that person, you may not
disclose its contents or use it in any way and are requested to delete
the message along with any attachments and notify us
Greetings
We've moved from using NIS/SFU to using Samba/Winbind connecting to our
Windows 2003 AD domain with an Openldap idmap backend on our Redhat 4/5
servers. We managed to get this mostly working in that users can
authenticate using their domain accounts (thank you Samba team!!!). We do
command with a valid user, you will see
a huge dump.
net --user=myuser ads search '(objectCategory=group)'
it's not working:
getent group
getent password
or to authenticate a group..
another thing:
we have:
samba, winbind, kerberos, time
than to be able to let an AD group to have access
So, is there a way I can specify that winbind only uses the CSS domain and
does not try and connect to the other trusted domains?
allow trusted domains = no
Thanks for the suggestion, but this didn't make a difference.
However, I've managed to find the answer / workaround:
The following
hi:)
in my case it's working:
wbinfo Shows winbind is doing lookups from ADS
wbinfo -u
wbinfo -g
wbinfo -a mydomain+myuser%mypassword
and i get an error here:
kinit tests
kinit(v5): Client not found in Kerberos database while getting initial
credentials
any advice here?
gabi
On
in...
-Original Message-
From: samba-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org]
On Behalf Of Gabriel Petrescu
Sent: Thursday, July 30, 2009 8:39 AM
To: John Stile
Cc: samba@lists.samba.org
Subject: Re: [Samba] winbind and getent
hi:)
in my case it's
-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org]
On Behalf Of Gabriel Petrescu
Sent: Thursday, July 30, 2009 8:39 AM
To: John Stile
Cc: samba@lists.samba.org
Subject: Re: [Samba] winbind and getent
hi:)
in my case it's working:
wbinfo Shows winbind is doing lookups from ADS
]
On Behalf Of Gabriel Petrescu
Sent: Thursday, July 30, 2009 8:39 AM
To: John Stile
Cc: samba@lists.samba.org
Subject: Re: [Samba] winbind and getent
hi:)
in my case it's working:
wbinfo Shows winbind is doing lookups from ADS
wbinfo -u
wbinfo -g
wbinfo -a mydomain+myuser
Hi,
I have a samba share on centos5 that uses AD authentication. I can do
wbinfo -u and it returns the AD users.. but getent only returns the local
centos users.
Any pointers on where i have gone wrong?
I am trying to chown to an AD user/group, but it is now working.. is the
format chown
i had the same problem with samba 3.0.28a on ubuntu and nobody could
answer me what's worng...
so.. if you find a solution, please let me know.
i have no resolution..
gabi
On Wed, Jul 29, 2009 at 1:33 PM, tsgtsg.sa...@gmail.com wrote:
Hi,
I have a samba share on centos5 that uses AD
The different behaviours are caused by the fact that the two methods
do different things...
They use different libraries and configuration files.
I'm not near a linux box with SaMBa today so I can't show you examples.
You should tell us more about what you're running...
In any case, the first
Hi Quinn,
I was following the doco at
http://wiki.samba.org/index.php/Samba__Active_Directory
There is no mention there of ldap/tls etc.
There doesn't seem to be a complete tutorial on setting up samba AD on the
web.. Plenty of doco on it, but all different, and implemented in a
different
based on all the info i found: books and how to's
if you have a samba server member of the domain you don't need ldap / openldap.
you need samba, samba-common, winbind
add samba server to domain and authentificate user / groups from domain.
i wanted to one samba share to be accesible to only
On Wed, Jul 29, 2009 at 10:22:28PM +1000, tsg wrote:
passwd: files winbind
shadow: files winbind
group: files winbind
Could you explain the difference between wbinfo getent?
You did see the winbind enum users and winbind enum
groups parameters in smb.conf?
Volker
signature.asc
Hi Volker,
Yes in smb.conf i have:
winbind enum users = Yes
winbind enum groups = Yes
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Wed, 2009-07-29 at 22:33 +1000, tsg-samba wrote:
Hi Volker,
Yes in smb.conf i have:
winbind enum users = Yes
winbind enum groups = Yes
getent Shows nsswitch is correct, to resolve ADS users and groups.
getent passwd
getent group
wbinfo Shows winbind is doing
Hi,
I've managed to configure winbind to use RPC instead of AD to
authenticate users. I was able to do a few auths and from nothing
winbind started to crash with the following error message:
Any hint on what may be the error?
I've already deleted all tdb files and restarted the services,
I've highered log level and got that the dump occurs only when I try
to use pam authentication. Using wbinfo (-t/-u/-g) works.
[2009/07/29 15:04:57, 3] winbindd/winbindd_pam.c:winbindd_pam_auth(827)
[ 3010]: pam auth root
*** glibc detected *** /usr/sbin/winbindd: double free or corruption
On Wed, Jul 29, 2009 at 03:24:24PM -0300, Herbert G. Fischer wrote:
I've highered log level and got that the dump occurs only when I try to
use pam authentication. Using wbinfo (-t/-u/-g) works.
[2009/07/29 15:04:57, 3] winbindd/winbindd_pam.c:winbindd_pam_auth(827)
[ 3010]: pam auth root
It's stock Ubuntu 9.04 package.
samba 3.3.2-1u
On 29/julho/2009, at 15:31, Jeremy Allison wrote:
On Wed, Jul 29, 2009 at 03:24:24PM -0300, Herbert G. Fischer wrote:
I've highered log level and got that the dump occurs only when I
try to
use pam authentication. Using wbinfo (-t/-u/-g)
input from the gurus on this list.
Many thanks in anticipation.
Julian
From: jrmailgate-sa...@yahoo.co.uk jrmailgate-sa...@yahoo.co.uk
To: samba@lists.samba.org
Sent: Thursday, 23 July, 2009 13:12:37
Subject: [Samba] Winbind issue connecting to trusted domain
So, is there a way I can specify that winbind only uses the CSS domain and
does not try and connect to the other trusted domains?
allow trusted domains = no
I'm running CentOS 5.3 with Samba 3.0.33-3.7.el5 with the following
smb.conf:
[global]
workgroup = CSS
realm =
Hi.
The quick question: Is there a way of forcing a Samba server that is an Active
Directory member server to limit lookups to it's local domain only and not all
trusted domains?
The question in more detail:
I have a Samba server that is joined to my local AD domain
(css.ad.example.com).
Hello,
Currently I'm running FC11 with samba 3.0.STABLE15.
I'm using samba with squid to log NTLM authentication.
Well, just about every week, my /var/log/samba/log.wb-$DOMAIN file
starts to get full with these lines.
[2009/07/09 07:11:24, 0]
Hello,
we're using Samba 3.0.28 on big sun hardware with solaris 10, and an connction
to an 3 dc windows domain with winbind.
I've found some entries that for using samba with winbind the nscd must be
turned off. But in detail I found descriptions, winbind caches only passwd and
group entries,
Hello there, I am having weird issue. The problem is when a wrong password
entered when I login or use sudo as AD user, the system uses the same wrong
password next three times and exits , and does not prompt for password
again.
This is not the case when winbind is not used. I suspect this is
Christoph Kaminski schrieb:
Hi!
I have a problem with winbind 3.3.6 (debian sid pkg) and windows 2008 ad...
I can Join, I can see the ad users with wbinfo -u but I cant see them
with getent passwd...
see this errors in the log file:
[2009/07/04 12:44:53, 1]
On Tue, Jul 07, 2009 at 12:25:11PM +0200, Christoph Kaminski wrote:
Christoph Kaminski schrieb:
Hi!
I have a problem with winbind 3.3.6 (debian sid pkg) and windows 2008 ad...
I can Join, I can see the ad users with wbinfo -u but I cant see them
with getent passwd...
see this errors in
Volker Lendecke schrieb:
Try to properly set up /etc/krb5.conf.
Volker
Thats my Config, it is wrong somewhere?
[libdefaults]
default_realm = CHAOS.LOCAL
# The following krb5.conf variables are only for MIT Kerberos.
krb4_config = /etc/krb.conf
krb4_realms
On Tue, Jul 07, 2009 at 02:46:02PM +0200, Christoph Kaminski wrote:
Volker Lendecke schrieb:
Try to properly set up /etc/krb5.conf.
Volker
Thats my Config, it is wrong somewhere?
Looks ok. Sorry, out of ideas then.
Volker
signature.asc
Description: Digital signature
--
To unsubscribe
James Zuelow schrieb:
Christoph,
Does it work if you put an entry for your DC into /etc/hosts?
no :(
Greetz
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Tue, Jul 7, 2009 at 9:46 AM, Christoph Kaminskiman...@gmx.de wrote:
[realms]
CHAOS.LOCAL = {
kdc = beelzebub.chaos.local
admin_server = beelzebub.chaos.local
master_kdc = beelzebub.chaos.local
default_domain = chaos.local
Please see below my pam file which uses winbind.
The problem is when a wrong password entered, the system uses the same wrong
password next three times and exits , and does not prompt for password
again.
Any hint is appreciated.
authrequired pam_env.so
authsufficient
Hi!
I have a problem with winbind 3.3.6 (debian sid pkg) and windows 2008 ad...
I can Join, I can see the ad users with wbinfo -u but I cant see them
with getent passwd...
see this errors in the log file:
[2009/07/04 12:44:53, 1] libsmb/clikrb5.c:ads_krb5_mk_req(686)
ads_krb5_mk_req:
Ah forgotten to paste my config:
[global]
workgroup = CHAOS
realm = CHAOS.LOCAL
netbios name= moloch
server string
To: samba@lists.samba.org
Subject: Re: [Samba] Samba + Winbind + AD homes does not work
Am Dienstag, 30. Juni 2009 schrieb d...@briannassaladdressing.com:
Florian,
Try valid users = DOM+%S.
the more generalized form would be:
valid users = %D%w%S
#%D domain or workgroup name
Hello,
we use winbind to connect our Linux servers to our AD what is working
right now and we use samba to share some Linux directories to our
Windows clients what is also working as intended. The only thing we were
not able to get running are the [homes]. The authentication seems to be
wrong.
To: samba@lists.samba.org
Subject: [Samba] Samba + Winbind + AD homes does not work
Hello,
we use winbind to connect our Linux servers to our AD what is working
right now and we use samba to share some Linux directories to our
Windows clients what is also working as intended. The only thing we
, 30 Jun 2009 10:19:05 -0500
To: samba@lists.samba.org
Subject: [Samba] Samba + Winbind + AD homes does not work
Hello,
we use winbind to connect our Linux servers to our AD what is working
right now and we use samba to share some Linux directories to our
Windows clients what is also
Greetings,
I'm running Fedora 11 (Samba 3.3.2) and am trying to configure winbind
authentication against a Windows 2003 server.
I've run kinit and net join successfully, and can wbinfo -u, -g, and -t
successfully, as well as getent passwd and getent group successfully. I
can even
Hi,
Server: Debian Lenny with Samba 3.3.4 .
log.winbindd shows this:
[2009/06/10 09:01:13, 0] libsmb/namequery.c:saf_store(75)
saf_store: refusing to store 0 length domain or servername!
[2009/06/10 09:01:23, 0] libsmb/clientgen.c:cli_receive_smb(165)
Receiving SMB: Server stopped
I have an annoying problem I'm hoping to get some guidance on.
I am able to use winbind with our local domain, however it does not work
with a remote trusted domain (it works fine for a local trusted domain).
From the looks of things, winbind requires port 445 or 139 to be open to the
remote
On Mon, Jun 08, 2009 at 11:31:05AM -0700, Nick Bartos wrote:
I have an annoying problem I'm hoping to get some guidance on.
I am able to use winbind with our local domain, however it does not work
with a remote trusted domain (it works fine for a local trusted domain).
From the looks of
Hello,
on my member server I only see the mapped GID through winbind on my
filesystem. Owner are displayed fine. Only the group isnt resolved. Access is
possible because the GIDs are fine.
Example:
-rw-r--r-- 1 muehlfeld 30006 429 26. Aug 2008 testfile.txt
wbinfo -g returns:
On Fri, May 29, 2009 at 10:28 AM, Mailing pigna luca...@gmail.com wrote:
I solved the problem.
In the file smb.conf I put the parameter
smb port = 139
changing the parameter
smb ports = 445 139
Everything is back to work.
But do not understand 3 things:
1) before winbind is working
Hi all.
I have a problem whith winbind authentication.
I have 2 samba domains, DOMA and DOMB, and these domains have trust in one
another.
On both pdc winbind is installed.
I installed a proxy server using squid with ntlm authentication. I install
on the server:
squid
samba
winbind
I have modify
with ntlm authentication. I install
on the server:
squid
samba
winbind
I have modify the smb.conf on proxy:
[global]
workgroup = DOMA
server string = PROXY DOMA
password server = xxx.xxx.xxx.xxx,yyy.yyy.yyy.yyy
security = domain
encrypt passwords = yes
winbind separator = +
winbind uid
Hi Volker, Hi Chuck,
Le 12 mai 09 à 16:12, Volker Lendecke a écrit :
On Mon, May 11, 2009 at 12:21:34PM -0400, Chuck Noga - CAN wrote:
We have a configuration and audit application called Tripwire
Enterprise
(7.5) that is running on a Red Enterprise Linux 5.2 server. On this
On Mon, 2009-05-18 at 22:20 +0200, Nicolas Dorfsman wrote:
I used TW for servers.
It is a really heavy application which is probably use
getent()
extensively.
I'm afraid they're talking about have a MTed winbindd.
Is there a chance to elminate
Le 18 mai 09 à 22:58, simo a écrit :
On Mon, 2009-05-18 at 22:20 +0200, Nicolas Dorfsman wrote:
I used TW for servers.
It is a really heavy application which is probably use
getent()
extensively.
I'm afraid they're talking about have a MTed winbindd.
Is there a
To: Chuck Noga - CAN
Cc: sa...@samba.org
Subject: Re: [Samba] Multithreaded SAMBA/Winbind
On Mon, May 11, 2009 at 12:21:34PM -0400, Chuck Noga - CAN wrote:
We have a configuration and audit application called Tripwire
Enterprise
(7.5) that is running on a Red Enterprise Linux 5.2 server
Hi.
We have a configuration and audit application called Tripwire Enterprise
(7.5) that is running on a Red Enterprise Linux 5.2 server. On this
server, we are using winbind (samba version 3.0.33) for authentication
(against Windows AD). When we try to run a configuration check on users
and
Hi List,
I'm evaluating the use of samba/winbind to join our linuxhosts into active
directory. We use win2k3 R2 with rfc2307 schema fields populated on the server
side. For the most part the project is humming along nicely.
A couple of days ago i noticed that the domaincontrollers get spammed
On Mon, May 11, 2009 at 12:21:34PM -0400, Chuck Noga - CAN wrote:
We have a configuration and audit application called Tripwire Enterprise
(7.5) that is running on a Red Enterprise Linux 5.2 server. On this
server, we are using winbind (samba version 3.0.33) for authentication
(against
Hello, I'm still testing Samba with security=ads. Everything runs fine
atm., but when I logon I'm getting this in pc's log:
[2009/05/07 13:17:58, 2] lib/access.c:check_access(406)
Allowed connection from (10.255.255.7)
[2009/05/07 13:17:58, 2] lib/access.c:check_access(406)
Allowed
Hello
In the organization where I work there are serveral labolatories, each
having its own, independent Active Directory Domain (there are no trust
relationships between them). We want to build a central 802.1x
authentication with users credentials being verified in these AD. To
achieve this we
Everyone,
We are currently seeing a very strange problem on our server.
Everything will be running along smoothly and then all of a sudden, nobody will
be able to login. Looking through the logs reveals the following messages...
Apr 24 10:55:15 LINUX-1 httpd2-prefork:
Hi
Anyone know if we can add a local user/pass cache directly to Winbind
for increase the performence ?
(for limit winbind = AD query)
thanks
J.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Hi
anyone know this error:
Mar 20 12:01:06 gw winbindd[14756]: [2009/03/20 12:01:06, 0]
sam/idmap_tdb.c:db_allocate_id(106)
Mar 20 12:01:06 gw winbindd[14756]: idmap Fatal Error: UID range
full!! (max: 2)
Mar 20 12:01:06 gw winbindd[14756]: [2009/03/20 12:01:06, 0]
On Fri, Mar 20, 2009 at 11:06 AM, Phibee Network Operation Center
n...@phibee.net wrote:
Hi
anyone know this error:
Mar 20 12:01:06 gw winbindd[14756]: [2009/03/20 12:01:06, 0]
sam/idmap_tdb.c:db_allocate_id(106)
Mar 20 12:01:06 gw winbindd[14756]: idmap Fatal Error: UID range full!!
I'm running Winbind 3.0.33 with FreeRadius for windows authentication. Has
anyone found a solution to these error messages in the samba.log?
[r...@pr01 log]# tail samba.log
[2009/03/12 09:28:33, 0] lib/util_sid.c:string_to_sid(242)
string_to_sid: Sid S-0-0 is not in a valid format.
Hi,
I'm using the ChrootDirectory option for the sshd daemon to jail my ssh
users. Additionally, I'm using the Match group option to only jail people
belonging to a specific active directory group. Here are the relevant lines
of the sshd_config file:
LogLevel Debug3
Subsystem sftp internal-sftp
It seems as though every weekend, when the log rotations start, our
Samba/Winbind services fail and need to be restarted. Is this normal?? (We're
using Winbind for AD integration)... Here is a copy from the messages file.
Mar 8 04:02:01 miux80 nmbd[]: [2009/03/08 04:02:01, 0]
nmbd
Hi!
Yeah, I have, but thanx.
Greetings from
Danny Petterson
Shadows and Dust
-Original Message-
From: John H Terpstra [mailto:j...@samba.org]
Sent: 24. februar 2009 14:42
To: samba@lists.samba.org
Subject: Re: [Samba] Winbind/PAM/SLES 8-problem
On Tuesday 24 February 2009 07:23
Hello, we are having this issue on two of our RHEL 5.2 servers. We have them
set up to authenticate to our Windows 2003 domain. Everything works well for a
while, but for some reason every few days the winbind service will stop
working, this is what we see in the log file:
[2009/02/25
Hi Gurus!
I'm working on getting some old SLES 8-serveres to use winbind, letting
users authenticate to our Windows AD. All the setup of samba, winbind,
adding the server to the AD etc. is working fine, and all kinds of
wbinfo returns what it is supposed to. BUT - when I try to login (using
On Tuesday 24 February 2009 07:23:41 danny.petter...@accenture.com wrote:
I'm working on getting some old SLES 8-serveres to use winbind, letting
users authenticate to our Windows AD. All the setup of samba, winbind,
adding the server to the AD etc. is working fine, and all kinds of
wbinfo
Hi everyone,
On a newly installed AIX-LPAR (oslevel 5.3.9) we added the current samba
version 3.2.8. Installation and configuration did not reveal any problem.
The problems show about 5 Minutes after services startup. After starting the
samba services the winbind daemon uses lots of CPU time
Hi everyone,
We just took one step forward. We changed the winbind entries for user
and group enumeration from yes to no and change the winbind cache
timeout to 60 seconds. That solved the talloc problem (or so it seems)
Will keep you updated
Regards
Volker
--
To unsubscribe from this list go
Hello,
I have a PDC and BDC servers with an OpenLDAP backend. It works fine
for a 500 users office.
I also have some servers with LDAP NSS and PAM and Samba with
idmap_nss backend. It also works fine. The configuration for theses
servers is:
[global]
workgroup = AURORA
...
idmap
Linux Addict wrote:
Once for all, go ahead with rid and keep the smb.conf consistent across
OR use rfc2307. RID is easier to manage.
Thanks very much for the advice Dale Linux Addict.
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be
Dale Schroeder wrote:
Which winbind idmap backend are you using?
The default tdb backend generates id's randomly (which appears to be
your case), meaning you will have to do a lot of chown commands on box B.
For consistent mappings, use something like idmap_rid.
Unfortunately, simply switching to idmap_rid at this point will not
rectify your immediate problem. Winbind will apply uid's and gid's via
a specific algorithm, which will once again be different from your
current mappings.
However, if you wish to ensure consistent mappings for the future (new
On Tue, Feb 10, 2009 at 1:27 PM, Dale Schroeder
d...@briannassaladdressing.com wrote:
Unfortunately, simply switching to idmap_rid at this point will not rectify
your immediate problem. Winbind will apply uid's and gid's via a specific
algorithm, which will once again be different from your
Hello all,
I have 2 boxes with identical smb.conf files apart from the netbios
name. The contents of the shares have been copied from one to the other
preserving the UNIX UIDs/GIDs and both boxes join to the AD domain
without problems. The domain sid is the same on both machines.
However,
Which winbind idmap backend are you using?
The default tdb backend generates id's randomly (which appears to be
your case), meaning you will have to do a lot of chown commands on box B.
For consistent mappings, use something like idmap_rid.
I have samba 3.0.28 installed on several servers and winbind dies every
couple of days on all of them. The deaths appear to correlate with the
following log messages:
[2009/01/25 04:02:09, 0] lib/util.c:smb_panic(1655)
PANIC (pid 13395): internal error
[2009/01/25 04:02:09, 0]
Hi all,
I have an odd situation on my hands:
* Two CentOS 5.2 boxes both joined to an AD domain.
* Same samba version (3.0.28-1.el5_2.1) smb.conf, only the netbios names
differ
* Can enumerate users and groups using winbind -{u,g} on both.
* nss doesn't enumerate users groups on one (same
Hi all,
I'm using Samba 3.2.7 with openldap 2.4.13 and have problems with
winbind.
If winbindd is started, he needs two minutes, until he is responding
to queries. That makes it hard to debug problems. May be winbindd
is waiting for WINS answers?
The problem,
the man page says this:
ldap
Could file the bug : Bug 6034
Thanks
François
On Tue, 16 Dec 2008 17:31:33 +0100, Michael Adam ob...@samba.org wrote:
Hi François,
yes, please file a bug report with this issue,
providing configuration detais and log files.
If possible, a more meaningful backtrace would be helpful:
node.
Only one node at a time is data master (has the authoritative
copy of the tdb data) but this changes as nodes try to write to a
tdb file.
To have samba+winbind working correctly you need to put winbind
into your /etc/nsswitch.conf file (this has nothing to do with ctdb
and applies to non
samba+winbind working correctly you need to put winbind
into your /etc/nsswitch.conf file (this has nothing to do with ctdb
and applies to non-clustered setups as well), e.g.:
~~
passdb: files winbind
group: files winbind
~~
[Tim] I
601 - 700 of 2426 matches
Mail list logo
