On Friday 04 February 2005 18:09, Ecartis wrote: > Subject: [rlug] Re: Browsing the Network Neighbourhood > > mai vezi LinNeighborhood si xSMBrowser: > > http://www.public.iastate.edu/~chadspen/xsmbrowser.html > > http://www.bnro.de/~schmidjo/ Am o problema similara. Vreau sa introduc cateva calculatoare Linux intr-o retea Windows. Domain controlelul e o masina Windows (2000, cred), si fiecare utilizator are un cont acolo. Ideea ar fi ca userii sa vada shareurile facute la celelalte masini Windows. Am incercat doua lucruri: sa fac ca autentifacrea sa mearga prin Kerberos (dupa un timp, acesta mergea, pt. "kinit username" primeam un ticket), si ca introducand smb:/ in Konqueror sa am o lista cu masinile din retea. Problema e ca nu vad... Apare domainul (SERVER0), dar can as vrea sa vad masinilie din SERVER0, nimic nu apar, numai o erroare ca nu poate connecta ("Error while connecting to server responsible for ..."), iar pe consola ca nu e o eroare IPC (eroarea vine de la samba). smb://nume_calculator merge [1], deci calculatoarele pot fi accesate, numai ca nu pot lista ce calculatoare sunt in retea. smbclient -L SERVER0 listeaza toate calculatoarele correct, LinNeighborhood la fel. Pot si sa mountez un share din consola (dar nu din LinNeighborhood). [1]: smb://nume_calculator intotdeauna cere username si password, si accepta numai ce este setat pe acel calculator, nu un username/password valabil in retea, setat pe serverul de domain. Deci ca exemplu, in retea pot intra pe orice calculator cu combinatia user1/pass1. Pe un calculator numit calc2 userii intra de obicei cu combinatia user2/pass2. Acum daca vreau sa accessez din Linux ca user1 shareul de pe calc2 trebuie sa introduc user2/pass2, nu user1/pass1. :-( lan:/ in Konqueror e si mai rau. Chiar daca deamonul lisa e pornit, spune ca nu e... Din pacate nu am avut inspiratia sa trimit un mail cu problema cand eram acolo, iar cum scriu toate acestea din memorie. Poate cineva are si asa o idee cum as putea sa rezolv problema. Acum as accepta si o solutie ca pun shortcuturi pe desktop cu linkuri directe pe fiecare calculator din retea (nu-s atat de multe), numai ca n-as vrea ca userul sa introduca passwordul pentru fiecare in parte, ar trebui sa fie de ajuns o singura autentificare (si dupa cum am citit, autentificare la login daca folosesc kerberos si user name la linux = cu cel de pe domain server ar trebui sa fie de ajuns). Am insa fisierele de configuratie pt. pam, samba si kerberos, poate cineva vede o problema. Versiunile soft (SuSE 9.2): Kernel 2.6.8 Samba 3.07 KDE 3.3.0 heimdal 0.6.2
Andras -- Quanta Plus developer - http://quanta.sourceforge.net K Desktop Environment - http://www.kde.org -- Attached file included as plaintext by Ecartis -- -- File: krb5.conf [libdefaults] # default_realm = MY.REALM clockskew = 300 default_realm = SERVER.MK.COSYS.RO [realms] SERVER.MK.COSYS.RO = { kdc = SERVER0 default_domain = server.mk.cosys.ro kpasswd_server = SERVER0 } # MY.REALM = { # kdc = MY.COMPUTER # admin_server = MY.COMPUTER # kpasswd_server = MY.COMPUTER # } # OTHER.REALM = { # kdc = OTHER.COMPUTER # } [domain_realm] .server.mk.cosys.ro = SERVER.MK.COSYS.RO # .my.domain = MY.REALM [logging] default = SYSLOG:NOTICE:DAEMON kdc = FILE:/var/log/kdc.log kadmind = FILE:/var/log/kadmind.log [appdefaults] pam = { ticket_lifetime = 1d renew_lifetime = 1d forwardable = true proxiable = false retain_after_close = false minimum_uid = 0 debug = false } -- Attached file included as plaintext by Ecartis -- -- File: pam_unix2.conf # pam_unix2 config file # # This file contains options for the pam_unix2.so module. # It contains a list of options for every type of management group, # which will be used for authentication, account management and # password management. Not all options will be used from all types of # management groups. # # At first, pam_unix2 will read this file and then uses the local # options. Not all options can be set her global. # # Allowed options are: # # debug (account, auth, password, session) # nullok (auth) # md5 (password) # bigcrypt (password) # blowfish (password) # crypt_rounds=XX # none (session) # trace (session) # call_modules=x,y,z (account, auth, password) # # Example: # auth: nullok # account: # password: nullok blowfish crypt_rounds=8 # session: none # auth: call_modules=winbind nullok account: call_modules=winbind password: call_modules=winbind md5 nullok session: none -- Attached file included as plaintext by Ecartis -- -- File: smb.conf # version at /usr/share/doc/packages/samba/examples/smb.conf.SUSE # Date: 2004-10-05 [global] workgroup = SERVER0 printcap cache time = 750 cups options = raw printer admin = @ntadmin, root, administrator username map = /etc/samba/smbusers map to guest = Bad User include = /etc/samba/dhcp.conf logon path = \\%L\profiles\.msprofile logon home = \\%L\%U\.9xprofile logon drive = P: security = ads realm = SERVER.MK.COSYS.RO restrict anonymous = no domain master = no preferred master = no password server = SERVER0 max protocol = NT ldap ssl = No server signing = Auto winbind uid = 10000-20000 winbind gid = 10000-20000 hostname lookups = yes guest ok = yes [homes] comment = Home Directories valid users = %S browseable = No read only = No inherit acls = Yes [profiles] comment = Network Profiles Service path = %H read only = No store dos attributes = Yes create mask = 0600 directory mask = 0700 [users] comment = All users path = /home read only = No inherit acls = Yes veto files = /aquota.user/groups/shares/ [groups] comment = All groups path = /home/groups read only = No inherit acls = Yes [pdf] comment = PDF creator path = /var/tmp printable = Yes print command = /usr/bin/smbprngenpdf -J '%J' -c %c -s %s -u '%u' -z %z create mask = 0600 [printers] comment = All Printers path = /var/tmp printable = Yes create mask = 0600 browseable = No [print$] comment = Printer Drivers path = /var/lib/samba/drivers write list = @ntadmin root force group = ntadmin create mask = 0664 directory mask = 0775 -- Attached file included as plaintext by Ecartis -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (GNU/Linux) iD8DBQBCA67ZTQdfac6L/08RAtAHAKDdtpoDbbbTSoNuhJtKy0/5/3d57ACgz13h 395canuDIBJ8HaA6Lmhq8WI= =E/P5 -----END PGP SIGNATURE----- --- Detalii despre listele noastre de mail: http://www.lug.ro/
