Hi,
I'm using the "ChrootDirectory" option for the sshd daemon to jail my ssh
users. Additionally, I'm using the "Match group" option to only jail people
belonging to a specific active directory group. Here are the relevant lines
of the sshd_config file:
LogLevel Debug3
Subsystem sftp internal-sf
I suspect you are using Ubuntu (and/or Debian), which have a bug
regarding the Winbind cache.
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/118977
On Tue, 2007-07-24 at 11:24 +0100, Simon Ashford wrote:
> Have just upgraded from 3.0.14a to 3.0.25b.
>
> On starting winbindd it puts the fol
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Simon Ashford wrote:
> Have just upgraded from 3.0.14a to 3.0.25b.
>
> On starting winbindd it puts the following in /var/log/messages:
>
> initialize_winbindd_cache: clearing cache and re-creating with version
> number 1
>
> All the winbind UID/
Have just upgraded from 3.0.14a to 3.0.25b.
On starting winbindd it puts the following in /var/log/messages:
initialize_winbindd_cache: clearing cache and re-creating with version number
1
All the winbind UID/GID mappings are lost and it starts again from
scratch. Hence all file ownership /
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Samuel Partida wrote:
> 1 Run 'groups aduser', the group membership for aduser
> is shown
> 2 Change 'aduser' membership on the AD server.
> 3 Run 'groups aduser', the group membership for aduser is
> shown but is not reflecting the changes made.
>
Hi all, we are having some troubles with the integration of some Solaris 9
Sparc servers on a Windows 2003 Server Active Directory domain.
When we made the tests on a Solaris 9 Intel server, everything run
successfully. After that we run some group membership tests, just changing
users from one
On Mon, 2005-11-28 at 12:31 -0600, Gerald (Jerry) Carter wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Adam Clark wrote:
>
> | http://lists.samba.org/archive/samba-technical/2003-February/027095.html
> |
> | Which confused me a bit.
>
> Ignore that mail. Out of date.
>
> | Is th
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Adam Clark wrote:
| http://lists.samba.org/archive/samba-technical/2003-February/027095.html
|
| Which confused me a bit.
Ignore that mail. Out of date.
| Is the argument to "winbind cache time" in seconds?
| And what is the default value for this
Heya,
We use ntlm_auth in conjunction with our squid proxy server.
Ntlm_auth authenticates against our Windows 2003 SP1 DC's.
Our AD domain requires users to change password every 90 days.
We sometimes have an issue where an expiring account (our users tend to
ignore the warning
And only change
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Nerijus Baliunas wrote:
> On Sat, 07 May 2005 11:20:14 -0500 "Gerald (Jerry) Carter" <[EMAIL
> PROTECTED]> wrote:
>
>>| BTW, it happens even if I restart winbind (i.e.
>>| changes to group membership reflect only after a few hours).
>>
>>Try removing
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Nerijus Baliunas wrote:
> On Sat, 07 May 2005 11:20:14 -0500 "Gerald (Jerry) Carter" <[EMAIL
> PROTECTED]> wrote:
>
>>| BTW, it happens even if I restart winbind (i.e.
>>| changes to group membership reflect only after a few hours).
>>
>>Try removing
On Sat, 07 May 2005 11:20:14 -0500 "Gerald (Jerry) Carter" <[EMAIL PROTECTED]>
wrote:
> | BTW, it happens even if I restart winbind (i.e.
> | changes to group membership reflect only after a few hours).
>
> Try removing the netsamlogon_cache.tdb file and see if the
> behavior is more consistent.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Nerijus Baliunas wrote:
| On Wed, 4 May 2005 03:37:52 +0300 (EEST) Nerijus Baliunas
<[EMAIL PROTECTED]> wrote:
|
|>according to 'man smb.conf': Default: winbind cache time = 300
|>
|>I have not changed it in smb.conf, but when I remove some user
|>from
On Wed, 4 May 2005 03:37:52 +0300 (EEST) Nerijus Baliunas <[EMAIL PROTECTED]>
wrote:
> according to 'man smb.conf': Default: winbind cache time = 300
>
> I have not changed it in smb.conf, but when I remove some user
> from some group, command "groups DOMAIN+user" still shows
> that user belongs
Hello,
according to 'man smb.conf': Default: winbind cache time = 300
I have not changed it in smb.conf, but when I remove some user
from some group, command "groups DOMAIN+user" still shows
that user belongs to the group even after a few hours after removing
the user from that group. Any ideas w
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ben Kim wrote:
| Is it possible to cache the windows password on unix
| server so that it doesn't have to query windows server
| every time?
Not currently.
cheers, jerry
- -
Alleviati
Dear list,
I'm using winbind (samba-2.2.9) on Solaris to authenticate my users
against a Windows 2000 Active Directory server.
Sometimes my users get locked out for various reasons (virus, etc.) and I
want to prevent that.
Is it possible to cache the windows password on unix server so that it
d
Hello,
I have confiugred Samba with winbind. Winbind run as dualdaemon.
Normaly should winbind answer the requests from cache. But if I
want to create a new user with useradd, winbind connect eacht time to
the PDC and wait for an answer. Does anyone know how to force winbind
to answer requests fr
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 4 Jun 2003, Tom Dickson wrote:
> I'm running Samba 2.2.5 on Redhat 7.3.
>
> The issue I'm seeing (besides Domain Local Groups not being seen by winbind)
> is that winbind is not getting new users from the Domain Controller (windows
> 2000 nat
I'm running Samba 2.2.5 on Redhat 7.3.
The issue I'm seeing (besides Domain Local Groups not being seen by winbind)
is that winbind is not getting new users from the Domain Controller (windows
2000 native mode).
For example:
wbinfo --sequence(gives 43)
Add user on the DC (user is bob, so NA
Two logistic questions regarding winbind:
1. I am not clear based on the description as to the winbind cache. I am
wondering if the PDC of the network goes down, if the WINBIND cache maintain
the passwords as well as the user/group information...ORif with each
request the server actually pol
21 matches
Mail list logo