On Fri, 2013-05-31 at 12:56 +0100, Alex Matthews wrote:
> Hi all,
>
> I have a samba server as member of an AD DC.
> In said AD DC there is the 'administrator' user which has the default
> UID of 0 (the same as root)
> from the ADDC:
>
> # id administrator
> uid=0(root) gid=513(SMC\Domain Users)
Version 4.0.7-GIT-d4cd828
openSUSE 12.04 with bind9 installed but not configured.
Hi
Attempting to provision with BIND9_DLZ or samba_upgradedns from a
functioning SAMBA_INTERNAL install produces:
Creating DomainDnsZones and ForestDnsZones partitions
Populating DomainDnsZones and ForestDnsZones pa
steve2 staff2 0 Jun 2 10:58 steve2.txt
steve2@altea:/home/test> getfacl steve2.txt
# file: steve2.txt
# owner: steve2
# group: staff2
user::rw-
group::rw-
other::r--
Now the same session on a client with the share mounted:
catral:/home/steve # mount -t cifs //altea/test /mnt
-osec=krb5,user
directory "/var/lib/named";
managed-keys-directory "/var/lib/named/dyn";
notify no;
tkey-gssapi-keytab "/usr/local/samba/private/dns.keytab";
};
include "/usr/local/samba/private/named.conf";
Good luck.
Steve
--
To unsubscribe f
On Sun, 2013-06-02 at 23:31 +1000, Andrew Bartlett wrote:
> On Fri, 2013-05-31 at 14:34 +0200, steve wrote:
> > Version 4.0.7-GIT-d4cd828
> > openSUSE 12.04 with bind9 installed but not configured.
> >
> > Hi
> > Attempting to provision with BIND9_DLZ or samba_
On Sun, 2013-06-02 at 23:50 +0300, Giedrius wrote:
> 2013.06.02 16:16, Andrew Bartlett rašė:
> > On Sun, 2013-06-02 at 11:52 +0200, steve wrote:
> >> On Sun, 2013-06-02 at 01:46 -0700, Gary Maurizi wrote:
> >>> This is a follow up to my previous...
> >>>
On Mon, 2013-06-03 at 08:00 +1000, Andrew Bartlett wrote:
>
> That is *very* weird. They may be another package with tdbbackup in a
> normal path. Otherwise, could you follow this up with the OpenSUSE
> folks?
>
> Thanks,
>
> Andrew Bartlett
We've taken this up with them before:
http://web.a
On Mon, 2013-06-03 at 08:16 +1000, Andrew Bartlett wrote:
> On Mon, 2013-06-03 at 00:05 +0200, steve wrote:
> > Hi
> > openSUSE 12.3
> > This is the first time in many years where the SUSE/openSUSE bind has
> > _almost_ worked out of the box. They will not entertai
ling the first file
server and do an IP takeover on the second? Or was it a cluster?
Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Mon, 2013-06-03 at 08:51 +1000, Andrew Bartlett wrote:
> On Mon, 2013-06-03 at 00:48 +0200, steve wrote:
> > On Mon, 2013-06-03 at 08:00 +1000, Andrew Bartlett wrote:
> >
> > >
> > > That is *very* weird. They may be another package with tdbbackup in a
>
with-gssapi=yes' '--disable-isc-spnego'
> '--with-docbook-xsl=/usr/share/sgml/docbook/xsl-stylesheets'
> '--enable-fixed-rrset' 'build_alias=x86_64-redhat-linux-gnu'
> 'host_alias=x86_64-redhat-linux-gnu'
> 'target_alias=x86_64-
On Mon, 2013-06-03 at 09:36 +1000, Andrew Bartlett wrote:
> On Mon, 2013-06-03 at 01:11 +0200, steve wrote:
> > On Mon, 2013-06-03 at 08:16 +1000, Andrew Bartlett wrote:
> >
> > End users need something simple to install. We also need something that
> > does dynam
On Wed, 2013-06-05 at 16:22 +0100, Jonathan Buzzard wrote:
> On Wed, 2013-06-05 at 15:42 +0100, Rowland Penny wrote:
> >
> > I never said that I couldn't get it to work, I just said that it is
> > just too complicated. Yes I can read and there was no need to get
> > personal
> >
>
> You said you
Version 4.1.0pre1-GIT-1a6eac2
Hi
I added a reverse zone to my internal dns. It won't update the reverse
zone. With bind, it does.
Before I go any further, is it possible that the internal dns server
update the reverse zone from a nsupdate request?
Cheers,
Steve
--
To unsubscribe from
On Wed, 2013-06-05 at 18:32 +0100, Rowland Penny wrote:
> Well said Steve
>
>
> From what I have read on the two samba mailing lists, Samba 4 is
> supposed to be a clone of windows AD, well windows AD does not have
> winbind, so I suppose this begs the question, why wh
On Wed, 2013-06-05 at 23:13 +0100, Jonathan Buzzard wrote:
> On 05/06/13 17:56, steve wrote:
> > On Wed, 2013-06-05 at 16:22 +0100, Jonathan Buzzard wrote:
> >> On Wed, 2013-06-05 at 15:42 +0100, Rowland Penny wrote:
> >>>
> >>> I never said that I could
On Wed, 2013-06-05 at 23:13 +0100, Jonathan Buzzard wrote:
>
> As far as I can tell sssd does not provide a mechanism for the smbd on
> at least 3.5 (the 4.x series might be different but the OP is running
> 3.6) to see an incoming SID and work out the UID.
It would be pretty useless without.
On Thu, 2013-06-06 at 10:19 +0100, Jonathan Buzzard wrote:
>
> So given the OP wants consistent UID's on presumably his Samba file
> server running a 3.6.x variant of Samba how does sssd help?
Hi
sssd is an alternative to using winbind to extract information from AD.
It may help the OP to try it
W7 clients are group 'Domain
users', the primary group of the user, not 'staff' as the g+s should
give. Files created in the share on the DC are correctly assigned to
group 'staff'.
Question:
How do I get files created in the share 'shared' to be
this method:
https://wiki.samba.org/index.php/Samba_as_a_print_server
but no more. Something changed between 4.0.0 and where we are now but I
can't work out what it is.
Try the wiki next?
hth
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https:/
On 09/06/13 11:00, Adam Sienkiewicz wrote:
Hi Steve
I procceeded regarding this howtu. All seems to be fine except
connection samba-cups. From windows I can add printer, print test page
but all print jobs from samba are lost between samba and cups I think.
There is no entries in cups logs only
On 09/06/13 20:16, Gerry Reno wrote:
On 06/09/2013 06:45 AM, steve wrote:
On 09/06/13 11:00, Adam Sienkiewicz wrote:
Hi Steve
I procceeded regarding this howtu. All seems to be fine except
connection samba-cups. From windows I can add printer, print test page
but all print jobs from samba are
sub-folders in this folder are accessible as expected. Where
do I need to go looking for this problem? Anyone struck this before?
Happy to provide further info as directed.
Hi
I'm no expert, but how about using a big hammer?
Backup first, then:
setfacl -Rm u:marion:rwx "The Australia
On Mon, 2013-06-10 at 09:54 -0400, Gerry Reno wrote:
> On 06/10/2013 03:47 AM, steve wrote:
> > On 09/06/13 20:16, Gerry Reno wrote:
> >> On 06/09/2013 06:45 AM, steve wrote:
> >>> On 09/06/13 11:00, Adam Sienkiewicz wrote:
> >>>> Hi Steve
> >>
On Mon, 2013-06-10 at 12:40 -0400, Gerry Reno wrote:
> On 06/10/2013 12:16 PM, steve wrote:
> > On Mon, 2013-06-10 at 09:54 -0400, Gerry Reno wrote:
> >> On 06/10/2013 03:47 AM, steve wrote:
> >>> On 09/06/13 20:16, Gerry Reno wrote:
> >>>> On 06/09/20
Make sure that you have the rfc2307 line in both the DC's. Add:
uidNumber: 322
to the the DN of the user on one of the DC's. Wait a few minutes. Now
create a file. It will have uid 322 no matter which DC is consulted.
HTH
Steve
--
To unsubscribe from this list go to the f
//DC1/sysvol /usr/local/var/locks/sysvol
Test: kill samba on DC1. Result: the gpo's still work.
That's it isn't it?
I now plan to make DC2 a rsync server too and cron that
back DC1. Surely it's not as simple as that. Is it?
Cheers,
Steve
--
To unsubscribe from this list go to t
id 322 no matter which DC is consulted.
HTH
Steve
Hi
DN is ldap for Distingished Name
e.g. a user could have an entry in the directory:
dn: CN=vladimir, CN=Users,DC=samba,DC=com
just add:
uidNumber: 322
somewhere for that user. The easiest way to do that so that you ca
Hi
Just try adding the user anyway and let's see what happens:
samba-rool user add tester4
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Mon, 2013-06-17 at 12:27 +0200, steve wrote:
> Hi
> Just try adding the user anyway and let's see what happens:
>
> samba-rool user add tester4
>
*
samba-tool
sorry
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba
On Mon, 2013-06-17 at 14:50 +0400, Vladimir A Fomkin wrote:
> HI!
> root@bdc-samba:~# /usr/local/samba/bin/samba-tool user add tester4
> New Password:
> Retype Password:
> ERROR(ldb): Failed to add user 'tester4': - samldb: Account name
> (sAMAccountName) 'tester4' already in use!
> root@bdc-sam
13014919621000
userAccountControl: 66048
accountExpires: 0
uidNumber: 321
Now:
ln -s /usr/local/samba/lib/libnss_winbind.so.2 /lib/libnss_winbind.so
ln -s /lib/libnss_winbind.so /lib/libnss_winbind.so.2
and edit /etc/nsswitch.conf
passwd: files winbind
group:
t see any other way to go.
The OP's idmap is really screwed up. I've had a go via the DC winbind
and the only way I could go with this was to delete the idmap entries
and start again. This is in the other post about an hour or so ago, if
you have any easier way. . .
Cheers,
Steve
--
T
On Thu, 2013-06-20 at 15:21 -0400, Steve Thompson wrote:
> mount -t nfs4 -o sec=krb5 :/data /mnt
What do you have in /etc/idmapd.conf
What does ps aux | grep rpc give?
Can the user browse using nfs3?
mount -t nfs3 -o sec=krb5 :/data /mnt
Have a look at the gotchas. There's loadsa wr
On Thu, 2013-06-20 at 16:57 -0400, Steve Thompson wrote:
> On Thu, 20 Jun 2013, steve wrote:
>
> Thanks for your reply! I am really pulling my hair out over this one, and
> I don't have that much left :(
>
> > What do you have in /etc/idmapd.conf
>
> The conten
directory mask = 2771
> > valid users = @"CAMPUS\staff-faculty"
> > write list = @"CAMPUS\staff-faculty"
> > admin users = @"CAMPUS\Domain Admins"
> >
Hi
OK, I'll have a go.
Either use acls or smb.conf. I've neve
On Thu, 2013-06-20 at 17:44 -0400, Steve Thompson wrote:
> On Thu, 20 Jun 2013, John Hodrien wrote:
> Five minutes later: holy crap! That is it. I took a user in only one
> group: permission denied. I set the NO_AUTH_DATA_REQUIRED flag in
> userAccountControl (via ldbedit), and hey
On Fri, 2013-06-21 at 06:23 +, philippe.simo...@swisscom.com wrote:
> Hi Samba users
>
> but does not return group/user membership :
> TEST3\g1:*:327:
>
> any advices ?
It doesn't work for groups:(
use:
getent group TEST\g1
hth
Steve
--
To unsubscribe f
On Fri, 2013-06-21 at 08:36 +, philippe.simo...@swisscom.com wrote:
> Hi Steve
>
> give an empty result, and
> with the same result as , without user/group membership.
>
> in fact my problem goes further : shares access control (write list, ...)
> does not work
On Fri, 2013-06-21 at 10:12 +0100, Rowland Penny wrote:
> Hi, well yet another reason to use sssd instead of winbind. When I
> turned on winbind in /etc/nsswitch.conf on my test S4 server,
>
>
>
> Also I would suggest forgetting using @group in smb.conf and use ACL's
> instead.
Didn't see thi
On Fri, 2013-06-21 at 15:39 +0200, Ali Bendriss wrote:
> On Friday, June 21, 2013 10:12:26 AM Rowland Penny wrote:
> > Hi, well yet another reason to use sssd instead of winbind.
> > [...]
>
> Hi,
>
> An other option is to use samba AD in one server and the file server (smbd +
> winbindd) in an
ot sure but nscd may work with winbind.
hth
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
o hear
other views on how it compares with winbind and nslcd.
Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
set:
> winbind enum groups = No
> and then query the groups singly:
> getent group name.of.group
>
> Also, you could cache them. I'm not sure but nscd may work with winbind.
> hth
> Steve
>
> Yes, in fact the tool I'm writing NEEDS all groups from AD, so, that'
hands. How to solve this problem?
> Thx!
>
samba-tool user add vladimir --uid-number=1234567
Now for your next question:
How do I choose the uid-number;)
hth
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Wed, 2013-06-26 at 08:09 -0700, smb l. ist wrote:
>
>
> Well, winbind works fine for listing groups.
But not for you. Nor I;)
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On 27/06/13 13:58, Vladimir A Fomkin wrote:
Hi!
samba-tool don't work with --uid-number option!
Hi
It only works with the development version.
Why not add the uidNumber to the user using ldbedit or ldbadd?
Steve
--
To unsubscribe from this list go to the following URL and read the
instruc
On Thu, 2013-06-27 at 17:28 +0400, Vladimir A Fomkin wrote:
> How add one parameter by ldbedit without interactive editor? (for
> scripting)
ldbmodify
There are scripts here:
http://linuxcostablanca.blogspot.com.es/p/s4bind.html
hth
--
To unsubscribe from this list go to the following URL and
s are served from the DC?
Cheers, Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Mon, 2013-07-01 at 17:04 +0100, Jonathan Buzzard wrote:
> On Mon, 2013-07-01 at 09:59 -0400, Gaiseric Vandal wrote:
>
> [SNIP]
>
> >
> > A domain controller can be a file server, although in many cases a
> > domain controller will only provide authentication and logon
> > functions.It
On Mon, 2013-07-01 at 14:35 -0400, Gaiseric Vandal wrote:
> I don't think it necessarily makes it a member a member server BUT if it
> isn't a member server it is going to be pretty useless for serving profiles.
Ok, so if a samba 4 box can serve profiles, then it is called a member
server, whethe
htmare for non native English
speakers. It would help enormously over here, if we all stuck to calling
a spade a spade.
Thanks for reading,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Mon, 2013-07-01 at 19:55 -0500, Ricky Nance wrote:
>
>
> I feel like I am saying what has already been said, so if you could be
> more specific about what kind of hierarchy you have, I could give you
> a more specific answer. For the most part, if its serving files and in
> a domain, but not
On Tue, 2013-07-02 at 11:02 +0200, Michael Wood wrote:
> Hi Steve
>
> On 2 July 2013 09:28, steve wrote:
> On Mon, 2013-07-01 at 19:55 -0500, Ricky Nance wrote:
>
> > I feel like I am saying what has already been said, so if
> you c
se.
If you already have groups and users, only add the new attributes to one
of the DC's. Disable the other DC while you do this. Take the id's from
whatever the xidNumber is on the DC you choose.
hth
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Thu, 2013-07-11 at 13:46 -0400, Robert Heller wrote:
> At Thu, 11 Jul 2013 11:52:49 -0400 Steve Litt
> wrote:
>
> >
> > Hi all,
> >
> > I ask this question about once a decade.
> >
> > I have about 7 computers, all Linux or BSD. Are there
install it over the last git? Does ./configure for the git take
the same defaults as the release?
Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
as I need to set permissions.
Hi
Give us an example of a share that's working. Then, what you change
within it and what permissions you change to get the 'access denied'.
Which version have you installed?
Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Hi
openSUSE. One install we did has 2 DC's and a 4.0.7 file server. But I
think that if you build from source, it doesn't make much difference.
HTH
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
u don't have to use ADUC. Just add the entry:
uidNumber: 328
to the directory.
An easy way to do that is to use ldbedit:
ldbedit --url=/usr/local/samba/private/sam.ldb cn=testuser
Now getent will work.
hth
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Tue, 2013-07-16 at 18:48 -0400, Matthew Daubenspeck wrote:
> On Tue, Jul 16, 2013 at 08:45:15PM +0200, Marc Muehlfeld wrote:
> > Did you clean up the tdb files on your member server? I could imagine, that
> > Samba mixes the old and new domain in it's idmap cache. If it's a new
> > installation
path = /path/to/the/folder
read only = No
valid users = paul
paul can now access that folder not only from that machine but also from
remote machines, including windows. An easy way to do that in Linux is
to use a browser:
smb://ip.of.the.server/myshare
Samba will then ask for a username and password on the remote machine,
be it Linux or windows.
That may be enough to get started but I'm afraid that from here the
learning curve is steep. I know systems like GNOME and KDE have quite
simple right click > share folder as > samba. Maybe that's good enough
if you have just one folder?
HTH,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
user1
> root@srv2:~# getent passwd user2
> root@srv2:~# getent passwd user3
>
Can you post smb.conf on SRV2?
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Mon, 2013-07-22 at 16:46 -0400, Matthew Daubenspeck wrote:
> On Mon, Jul 22, 2013 at 10:27:36PM +0200, steve wrote:
> > Can you post smb.conf on SRV2?
> > Steve
>
> Certainly:
>
> [global]
>
>workgroup = NWLTECH
>security = ADS
>realm = N
On Mon, 2013-07-22 at 17:29 -0400, Matthew Daubenspeck wrote:
> On Mon, Jul 22, 2013 at 10:15:10PM +0100, Rowland Penny wrote:
> >OK, that seems like it should work, I had the winbind ad backend
> >working, but found it difficult to setup so jumped ship to sssd
> >The idmap setup I used
On Tue, 2013-07-23 at 09:40 +0200, L.P.H. van Belle wrote:
> Hai,
>
>
> I'm having exactly the same problem with winbind as Matthew Daubenspeck.
> also on ubuntu 12.04 with sernet packages. ( used sernet-samba-winbind 4.0.7 )
>
> I remove the complete config atm but am at the point reinstallin
samba delete the tdb files and start it again, redo the domain join and
> try it.
Just thought about nscd too. On some distros it's default. . .
Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Tue, 2013-07-23 at 14:53 +0100, Jonathan Buzzard wrote:
>
> What gets me is people claiming that half a dozen lines of configuration
> in smb.conf is more complicated than 30+ lines of configuration in an
> entirely separate configuration file in addition to several lines in
> smb.conf. It mig
On Tue, 2013-07-23 at 15:04 +0100, Jonathan Buzzard wrote:
> On Tue, 2013-07-23 at 14:39 +0100, Rowland Penny wrote:
> > Could this be yet another reason to use sssd instead of winbind?
> >
> > sssd does use the account gidNumber
> >
> > testuser
> >
> > primaryGroupID: 513
> > uidNumber: 300110
On Tue, 2013-07-23 at 16:44 +0100, Jonathan Buzzard wrote:
> On Tue, 2013-07-23 at 15:23 +0100, Rowland Penny wrote:
> >
> >
> >
> > If you want my opinion and you probably don't, people need to stop
> > thinking NT server if they connect to a samba4 AD server and start
> > thinking AD server, t
On Tue, 2013-07-23 at 23:21 +0100, Jonathan Buzzard wrote:
> On 23/07/13 17:10, Rowland Penny wrote:
>
> [SNIP]
>
> >
> > But if the group identified by primaryGroupID 513 has gidNumber 20513
> > (which would be in my opinion best practice) without looking in the
> > source code of ss
On Wed, 2013-07-24 at 09:09 +0200, L.P.H. van Belle wrote:
> hijacked the winbind threat.. but..
>
Don't feel threatened. There _are_ alternatives.
>
> I do like samba, but wiki/howtos are lots to improve.
To be fair, it's not just Samba. It's most open source stuff. There are
too many hobbyi
On Wed, 2013-07-24 at 01:26 -0700, Paul D. DeRocco wrote:
> > From: steve
> >
> > On Wed, 2013-07-24 at 09:09 +0200, L.P.H. van Belle wrote:
> > >
> > > I do like samba, but wiki/howtos are lots to improve.
> >
> > To be fair, it's not ju
On Wed, 2013-07-24 at 11:59 +0100, Jonathan Buzzard wrote:
> On Wed, 2013-07-24 at 00:49 +0200, steve wrote:
>
> [SNIP]
>
> > For the record, sssd pulls all it's info from AD.
>
> I never said otherwise.
>
> > A user does not need a gidNumber, it is
ted with latest git
Not sure what /srv/test has but am guessing that you have set chmod g+s?
If so, I can reproduce what you see. The g+s is ignored when accessed on
a cifs mounted share and instead the primaryGroupID is used.
Cheers,
Steve
--
To unsubscribe from this list go to
On Thu, 2013-07-25 at 08:17 -0400, Ryan Bair wrote:
> Thank you for confirming. I do have g+s on the directory. I'll file a
> bug about this issue today.
No problem. If you go with the bugzilla, could you post the link here?
Thanks.
--
To unsubscribe from this list go to the following URL and
Hi
Ok, I can understand that. So why not have a look at nss-pam-ldapd with
nslcd? It's almost as good as sssd and it's quick and easy to setup:
http://linuxcostablanca.blogspot.com.es/2013/04/ubuntu-client-for-samba4.html
hth
Steve
--
To unsubscribe from this list go to the foll
t the net command
to join the domain. Any old version of samba will do. What you have is
more than enough.
HTH
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Thu, 2013-07-25 at 20:59 +0100, Jonathan Buzzard wrote:
> On 25/07/13 20:14, dahopk...@comcast.net wrote:
>
> [SNIP]
>
> >
> > Step 6: I already have samba-common, and samba-common-bin (latest for
> > 10.04) installed. I'd assume I need to uninstall these and install
> > samba4 instead (especi
nd gidNumber attributes to the user or group DN
in AD. YOu can use ldbmodify or ldbedit for that. If you are brave, you
can build the master and use samba-tool add the attributes when you
create the user.
Note: if you want the whole of rfc2307 as your smb.conf suggests, then
use sssd and forget about
using Libre Office then fine, it
works (I think because of Libre Office, not samba)
How do I get locking to work outside Libre Office. Nothing else seems to
work.
Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman
= /srv/shares
> read only = no
Start it with:
smbd; winbindd
Prolly not perfect, but should get you a bit close.
hth
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Tue, 2013-08-06 at 09:21 +0200, Klaus Rörig wrote:
>
> But there are no smb/nmbd/winbindd binaries.
Hi
Oh, I see. The Ubuntu packages must only be for AD then. Sorry, I missed
that you only wanted ntvfs.
--
To unsubscribe from this list go to the following URL and read the
instructions:
eserver and forget about
rfc2307.
HTH
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
you can, I really would advise building s4 from source:
4.0.8 for both DC and file server and using samba for the DC and smbd
for the file server. It takes longer but it's easy to do and you can be
sure to have the latest version. If you want to stick with Ubuntu then I
see the s4 DC and sepa
/srv and /srv/share?
Can the user access the share if logged in on the file server?
Can the user access the share using smbclient?
Does the share appear as a folder in explorer?
What does the windows security tab give for the share?
Steve
--
To unsubscribe from this list go to the following
on a
separate machine, domainify it and run it as a file server only. I
suppose you could then ssh into that instead.
HTH
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On 12/08/13 10:04, Markus Gillmeister wrote:
Hi,
while googling around I already suspected that using winbind and samba4 is
not a perfect solution.
I tried to setup sssd on my debian wheezy machine but I'm not able to get a
running setup:
When starting up sssd the following error appear:
(Mon
: 318
to the DN of the user
3. Always work on the DC either by ssh or at the console.
Then the uidNumber will _always_ be 318.
There are many ways to do the same but I don't know Arch so dare not
suggest.
HTH
Steve
--
To unsubscribe from this list go to the following URL and rea
On Tue, 2013-08-13 at 10:06 +0200, Markus Gillmeister wrote:
> Steve, thanks a lot, I finally got sssd (version 1.8.4) on debian wheezy
> working with samba 4 (Version 4.0.8-SerNet-Debian-5.wheezy)!
>
> But one last question regarding unix attributes in the AD stays: I noticed
>
> some users consistently can't see
> > their profile on some machines, despite the profile and redirected folders
> > looking fine on the server.)
If there are problematic machines, it's best to delete the user profiles
and allow them to be recreated the next time the users log in:
HKLM\SOFTWARE\
ash
to smb.conf
Do _not_ start winbindd.
Best of luck.
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Tue, 2013-08-20 at 10:22 -0500, Ricky Nance wrote:
> Permissions are hard to explain (possibly because I don't fully understand
> them myself I guess), but if you have a directory (say /srv) and you give
> it 0700 permissions, then only the person that owns that directory is able
> to see anythi
idmap config FOUR-HORSEMEN:cache time = 1800
add this:
idmap config *:backend = tdb
idmap config *:range = 20001-20100
hth
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Wed, 2013-08-21 at 14:45 +0800, Sense Zeng wrote:
> I'm new for samba4 and I'm trying to test samba4(Version 4.0.8) with
> internal dns.
> Did internal dns can config? Could I just manual add some host(A) in?
Hi
Yes, no problem:
samba-tool dns addA
hth
Steve
--
On Fri, 2013-08-23 at 17:15 +, Eduardo Sotomayor wrote:
> I am having two problems when testing the samba4 installation
>
> and this one is when running klist -k
>
> sienicdc1:/home/eduardo # klist -k
> Keytab name: FILE:/etc/krb5.keytab
> klist: no such file or directory while starting keyt
.SITE
security = ADS
kerberos method = secrets and keytab
username map = /home/steve/smbmap
log level = 3
[users]
path = /home/users
read only = No
smbmap:
!Administrator = HH3\Administrator
Client:
[global]
workgroup = HH3
realm = HH3.SITE
security = ADS
kerberos method = system keytab
Tested with
On Sat, 2013-08-24 at 20:57 +0200, Michael Wood wrote:
> Hi
>
> On 24 August 2013 19:05, steve wrote:
> Hi
> 4.0.8 file server in a 4.0.8 domain
>
> After a user logs in on a Linux client which is joined to the
> domain,
>
rname for debugging. Lose the
capitalisation and the dot.
HTH
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Sat, 2013-08-24 at 23:27 +, dahopk...@comcast.net wrote:
> A quick follow-on ... if I examine the local sam.ldb on the server2 via
> ldbedit, it appears the information is correct, but wbinfo still reports
> different numbers:
>
Replication OK then.
> wbinfo -i Test24.User
> Domain\Tes
101 - 200 of 1582 matches
Mail list logo
