Re: [Samba] UTF-8 output for wmic
hi, 2013/7/7 Ning Jiang felix_94...@yahoo.com: Hi, I have a question on wmic, the linux wmi client, which uses samba. Is this mailing list the right place to ask? or there is a better forum or mailing list to ask? Basically, I want to ask if wmic supports UTF-8 for its output or not. If yes, how to turn it on? By default, it doesn't return UTF-8 for extended ascii characters. I tried to put unix charset = UTF8 in a config file and use -s option to give it to wmic, but that didn't work either. there is no WMIC with UTF-8 support. I also believe WMIC doesn't use samba. Is there even a GPL-Version? Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba4 - mapping Network Drives based on Group membership
hi, sorry, but I didn't read the script. I asked myself:Why so complicated?. We also have a group based Security with ACLs, but we have one share and in it are the group-folders. So, all I have to do is, to tell samba not showing objects where the current process (user) have no permission to read/write. That works great, also I have the ability to map one drive per GPO. PS: at least this possibility is given also to you: a GPO per Group. Just my 2 cents of input. Greetings Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba 3 - getting rid of some logfile errors
hi, 2012/8/1 Jürgen Echter j.ech...@echter-kuechen-elektro.de: Hi, i have a lot of entries in my logs which i can't solve, but everything works as expected. my setup: samba pdc - bacula samba bdc - mule Ubuntu 10.04-LTS Server samba 3.4.7 log file entries: Aug 1 08:25:40 bacula smbd[23854]: canonicalize_connect_path failed for service alex, path /\\mule\alex Aug 1 08:25:41 bacula smbd[23854]: [2012/08/01 08:25:41, 0] smbd/service.c:988(make_connection_snum) Aug 1 08:25:41 bacula smbd[23854]: canonicalize_connect_path failed for service alex, path /\\mule\alex Aug 1 08:25:44 bacula smbd[24003]: [2012/08/01 08:25:44, 0] lib/util_sock.c:1498(get_peer_addr_internal) Aug 1 08:25:44 bacula smbd[24003]: getpeername failed. Error was Transport endpoint is not connected Aug 1 08:25:44 bacula smbd[24003]: [2012/08/01 08:25:44, 0] lib/util_sock.c:743(write_data) Aug 1 08:25:44 bacula smbd[24003]: [2012/08/01 08:25:44, 0] lib/util_sock.c:1498(get_peer_addr_internal) Aug 1 08:25:44 bacula smbd[24003]: getpeername failed. Error was Transport endpoint is not connected Aug 1 08:25:44 bacula smbd[24003]: write_data: write failure in writing to client 0.0.0.0. Error Connection reset by peer Aug 1 08:25:44 bacula smbd[24003]: [2012/08/01 08:25:44, 0] smbd/process.c:62(srv_send_smb) Aug 1 08:25:44 bacula smbd[24003]: Error writing 4 bytes to client. -1. (Transport endpoint is not connected) Aug 1 08:26:07 bacula smbd[24002]: [2012/08/01 08:26:07, 0] lib/util_sock.c:539(read_fd_with_timeout) Aug 1 08:26:07 bacula smbd[24002]: [2012/08/01 08:26:07, 0] lib/util_sock.c:1498(get_peer_addr_internal) Aug 1 08:26:07 bacula smbd[24002]: getpeername failed. Error was Transport endpoint is not connected Aug 1 08:26:07 bacula smbd[24002]: read_fd_with_timeout: client 0.0.0.0 read error = Connection reset by peer. any hints how to resolve this? getpeername() is a normal libc function defined in sys/socket.h so if samba defined an error belongs to getpeername it is a usual DNS resolve error and specified the clients hostname could not resolved by the samba host. Hope this help Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba is not resolving some users
hi, I'm running samba 3.6.6 with backend tdb and security mode ADS. Some of our users won't be resolved. the output of id user shows: uid=30071 gid=30004(group) Gruppen=4294967295,30004(group) note, that there is no name after the uid. Also where comes the group with the ID 4294967295? I think it is https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1016895/comments/6 does somebody know a workaround for this? Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba shows strange behavior
hi, on weekend I noticed that winbind got terminated (SIGTERM(15) ) without being restarted. So I wrote a script that notifies me when wbinfo -u returns with an error. So I figured out, that every time I disconnect from PPtP winbind stops. Today I raised the debug level and on connect it shows: [2012/04/25 08:22:30.409693, 3] winbindd/winbindd.c:1188(winbindd_addr_changed) winbindd: kernel (AF_NETLINK) dropped ip XXX.XXX.XXX.XXX (- ppp0 adress) [2012/04/25 08:22:30.430632, 0] winbindd/winbindd.c:211(winbindd_sig_term_handler) Got sig[15] terminate (is_parent=1) [2012/04/25 08:22:32, 0] winbindd/winbindd.c:1336(main) winbindd version 3.6.4 started. Copyright Andrew Tridgell and the Samba Team 1992-2011 Why does winbind that? Winbind is bind to PPtP with ntlm_auth-helper /usr/bin/ntlm_auth --helper-protocol=ntlm-server-1 --require-membership-of=S-1-5-21-3000185627-2527819853-479331972-1150 Greetings, Björn PS: no, there is no script on /etc/network/ifup, /etc/network/ifdown nor in /etc/ppp/ifup or /etc/ppp/ifdown that refers to winbind -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows7 can see shared folder but can't browse them
Hi, 2012/3/5 Alexis Krier alexis.kr...@valtech.fr: Hi all. I have a debian with samba 3.5.6 and I've a shared folder like this: workgroup = WORKGROUP client lanman auth = no client ntlmv2 auth = yes domain logons = yes guest account = nobody follow symlinks = yes security = user encrypt passwords = true passdb backend = tdbsam obey pam restrictions = yes unix password sync = yes [homes] comment = Home Directories browseable = yes [netlogon] comment = Network Logon Service path = /root/.ccm/ guest ok = yes read only = no browseable = yes force user = cassandra force group = users I can see the shared folders from my win7 but once double clicked, windows tells me that it can't. Thank you for any idea Unix rights? Samba creates processes with the rights of the user. so every user must have the x (executes for files, listing for directories) for the whole path. F. e.: shared folder is: /data/shares/public/ then the user must have x on /data then shares/ and public/. someone correct me please, if I'm wrong. Greetings Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba produces odd messages records and crash
hi, today I saw our File-Server was crashed and in the message log I found this: Feb 22 07:59:54 file-server smbd_audit[32593]: close fd 27 Feb 22 08:00:01 file-server smbd_audit[32593]: close fd 36 ^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@zystkie wystąpienia /usr/lib/X11/fonts/CID. Extended_description-pt.utf-8: O caminho do local dos tipos de letra TrueType e CID geridos por defoma foram modificados novamente. Por favor adicione estas entradas à secção Files do ficheiro /etc/X11/xorg.conf:\n\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/CID\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType\n\n\nAdicione também estes dois directórios às listas de caminho catalogue em /etc/X11/fs/config·e/ou·/etc/X11/fs-xtt/config, e apague qualquer menção de qualquer destes ficheiros em /usr/lib/X11/fonts/CID. Extended_description-pt_br.utf-8: Os caminhos para fontes TrueType e CID, os quais são gerenciados pelo defoma, mudaram novamente. Por favor, adicione estas entradas a seção Files do arquivo /etc/X11/xorg.conf :\n\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/CID\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType\n\n\nAdicione também estes dois diretórios às listas de caminhos catalogue em /etc/X11/fs/config e/ou /etc/X11/fs-xtt/config e remova qualquer menção do diretório /usr/lib/X11/fonts/CID em ambos os arquivos. Extended_description-ru.utf-8: Пути к типам шрифтов TrueType и CID, управляемых через defoma опять изменились. Добавьте следующие записи в раздел Files файла /etc/X11/xorg.conf:\n\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/CID\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType\n\n\nТакже добавьте эти два каталога в список путей catalogue в файлах /etc/X11/fs/config и/или /etc/X11/fs-xtt/config и удалите все указания на /usr/lib/X11/fonts/CID во всех этих файлах. So, this is reproduceible as I listed an specific directory. As you can see, I've activated the samba audit and our samba version is: 3.5.12-SerNet-Debian on Debian 6.0.4 Can someone explain me that and how we could avoid this? Thanks. Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Preventing winbind from crashing while KDC is unreachable
hi, we have here a multi-domain environment and my question is: is that a wanted behavior, that winbind crashed with error looking up domain users if a KDC isn't available and winbind had to be restarted to work again? We have a maintainance rotation for server an network. So I wanted, that Winbind notice for itself if the one specific KDC is on again (he is not really down, but unreachable). Thanks for helping. Greetings Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Preventing winbind from crashing while KDC is unreachable
hi, 2012/1/19 Jeremy Allison j...@samba.org: winbindd shouldn't terminate in these circumstances, just keep probing until it can re-establish a connection. Thank you for replying. Mh, ok I will test it. I wondering if it possible that samba could resolve users on the reachables KDC (different domains). Greetings Björn. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Cross Platform Wrong Password
Hi, I use Samba (version 3.3.4) as a role-domain-member (security=ADS). All works fine, except cross-forest access (NT_STATUS_WRONG_PASSWORD; nothing else extra-ordinary in the logs). Means: DOMAIN3\USER1 could not access samba in DOMAIN1. The Forest with the samba server also have another domain (DOMAIN2) in the forest. The user there can access the samba-server. What I tried: - Wbinfo -u and wbinfo -g wirks fine. - smbclient -U DOMAIN3\USER1 //file-server.domain1.local/share on file-server works fine (after entered password) - Access over Nautilus with the SMB-Protocol (smb://us...@file-server.domain1.local/share) works also fine Client is a windows 7 DC and GlobalCatalog for DOMAIN3 is a Windows 2008 R2. The Trust is bidirectional and non-transitive. Any Hints? Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Using Samba NTLM authentication
2010/3/8 Arkady arka...@pineapp.com: Hi, I apologize for bothering you but I don't really understand what should I do when my proxy get this one : C -- S GET ... Authorization: NTLM base64-encoded type-1-message How should I call to ntlm_auth ? And what then ? I just novice in this area , so I am little confused :-[ ... Thanks in advance ,Arkady NTLM Handshake When a client needs to authenticate itself to a proxy or server using the NTLM scheme then the following 4-way handshake takes place (only parts of the request and status line and the relevant headers are shown here; C is the client, S the server): 1: C -- S GET ... 2: C -- S 401 Unauthorized WWW-Authenticate: NTLM 3: C -- S GET ... Authorization: NTLM base64-encoded type-1-message 4: C -- S 401 Unauthorized WWW-Authenticate: NTLM base64-encoded type-2-message 5: C -- S GET ... Authorization: NTLM base64-encoded type-3-message 6: C -- S 200 Ok hi, you need to specify the helper protocol. http://www.samba.org/samba/docs/man/manpages-3/ntlm_auth.1.html man ntlm_auth provide all Infos you need. Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Using Samba NTLM authentication
2010/3/7, Arkady arka...@pineapp.com: Hi,guys . I implement HTTP Proxy running in Linux environment and my proxy have to support NTLM authentication. My proxy written in C++. I want to use samba API ,but I don't* know how and what* API can be used exactly. I would very appreciate if you can advice me some example code and any advice which can help me in my task. Thanks in advance,Arkady hi, I don't think there is a need to use an API. We use Squid3 with NTLM authentification over an external tool which provide samba. Just a hint: man ntlm_auth Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Having problem with valid users in Active Directory/Samba environment
hi, 2010/2/13 Eric Peterson ericrpeter...@sbcglobal.net: Dale, I was hoping that there was someone out there who: a) uses Samba integrated with Active Directory, and we do b) successfully uses the Samba permissions to allow domain admin members access to the shares of domain users from XP workstations. To narrow the scope of the troubleshooting, I am looking for a known working smb.conf configuration that supports this. Then I can make sure my smb.conf uses a similar configuratation and, if the problem persists, focus my troubleshooting on other areas. we also do. I though i've described the way we done this. Samba +Ext3 both a supporting ACLs. Here some hints - You can add access right for a specific folders with setfacl -R -m u:domain/administrator:rwx folders AND setfacl -R -m default:u:domain/administrator:rwx folders - Then: Samba Creates home-directories like /home/DOMAIN/user we create a share homesdir with path =/home/DOMAIN + valid user = @DOMAIN/administrators (the user directories are for they personal use) - we also have a share /data/profiles in which Windows creates the roaming profiles. You may guess we have this share read and writes for all domain members. - we tell windows (with the domain security policy) to add the administrator with full access to all profiles What more information do you need? Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Having problem with valid users in Active Directory/Samba environment
hi, [homes] comment = Home Directories valid users = DOMAIN\%S, DOMAIN\admin admin users = DOMAIN\admin I guess homes is a special share where every user (only the user with credentials have access to his very own home-directory) has access with a home-directory. So my advise is: comment out home and set a share with a path to /home - don't worry access rights are handled by the system (should be, if the home-directory is set up well). Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Having problem with valid users in Active Directory/Samba environment
hi Eric, 2010/2/10 Eric Peterson ericrpeter...@sbcglobal.net Bjoern, Could you please provide the actual settings of the share you are suggesting would be placed in the smb.conf file? Or are you suggesting creating a specific share for each user? Thanks, Eric Peterson well, we've created a new directory /homesdirs/ which is a samba-share (f. e. to setup profile-folders in the AD). The access rights is set by Windows with ACL support on samba. Domain security policy adds administratoter to each profile-folder. Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] How to force winbind (3.4.1) to talk to a certain AD-server?
hi, 2009/10/12 Schröder Malte (Y-NE) malte.schroe...@vattenfall.com Hello, how can I force winbind to talk to a certain AD-controller? I run version 3.4.1 and winbind is joined to the Win2k3/2k8 domain, with security = ADS. It seems as if winbind always sticks to the last successfully contacted server. That server has bad performance and I want winbind to use another server for NTLM-authentication. It seems to ignore the password server setting. What an I do? What if you control this with netfilter? have you set more than one kdc in krb5.conf? Greets Malte Schröder Bye, Björn To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows machines (WINXP, WIN2K) can/will not join domain
2009/8/13 Chartier, Prescott W CIV NUWC NWPT prescott.chart...@navy.mil: We have been running Samba v3.0.32 On Red Hat Linux for probably 2 years now (or since it was released). Recently over a three week period, all the Windows clients slowly dropped from the domain one by one and we are unable to get them to re-join the domain. We are still able to map to drives and printers on the Samba server and use them with no problem, but cannot join the domain. We need to be able authenticate users on the domain and cannot. There have been no changes to the system or the network involved, which is a standalone network with no access to the internet. Yet obviously SOMETHING has changed, we just cannot figure it out. When we attempt to join the domain, we get the error below: ** Begin error message ** NOTE: This information is intended for a network administrator. If you are not your network's administrator, notify the administrator that you received this information, which has been recorded in the file C:\Windows\debug\dcdiag.txt. The domain name simpledomain might be a NetBIOS domain name. If this is the case, verify that the domain name is properly registered with WINS. If you are certain that the name is not a NetBIOS domain name, the following information can help you troubleshoot your DNS configuration. The following error occurred when DNS was queried for the service location (SRV) resource record used to locate a domain controller for domain simpledomain: The error was: This operation returned because the timeout period expired. (error code 0x05B4 ERROR_TIMEOUT) The query was for the SRV record for _ldap._tcp.dc._msdcs:simpledomain The DNS servers used by this computer for name resolution are not responding. This computer is configured to use DNS servers with the following IP addresses: xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx Verify that this computer is connected to the network, that these are the correct DNS server IP addresses, and that at least one of the DNS servers is running. ** End error message ** Please understand that we have checked and recheck the DNS and both are responding as one would expect. We are able to resolve the simpledomain to its correct IP address on all the affected machines, so that isn't the problem. We do not use ldap, this is just a simple implementation of Samba. Anyone with any ideas?? Thanks for any assistance you may provide. Prescott ... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba hi, are you sure, that those lines are in /etc/nsswitch.conf hosts: files dns networks: files dns otherwise ping and co. (gethostbyname) don't resolve over dns. Greetings, Björn -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows machines (WINXP, WIN2K) can/will not join domain
Any other ideas?? I'm stumped hi, don't know which distribution you use. Is winbind an extra service to restart? If so, you must also restart winbind . Then check if the kdc resolveable with: ping kdc.my.domain and check if the kdc has a PTR (reverse dns) record. if this not work, please post /etc/krb5.conf Greetings, Björn --- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows machines (WINXP, WIN2K) can/will not join domain
2009/8/13 Chartier, Prescott W CIV NUWC NWPT prescott.chart...@navy.mil: Björn, Thanks again for the reply, winbind is indeed a extra service. I stopped and restarted it, same result, still not able to join the domain. We do not use Kerberos here either (never have), so posting the krb5.conf would be useless. Sigh, still stumped ... Anything else come to mind?? hi, ok then I'm out here. I only use Win2003 domains with the kerberos authentification-protocol. I did not know, that is changeable on a windows 2003 domain. But a time out can also be that the service (net logon, I think so) does not respond in time. whats the output of dig _ldap._tcp.dc._msdc.simpledomain @ns.simpledomain ? Greetings, Björn -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows machines (WINXP, WIN2K) can/will not join domain
2009/8/13 Chartier, Prescott W CIV NUWC NWPT prescott.chart...@navy.mil: Björn, Once again, thanks for hanging in there :) Assuming that there is no space between the simpledomain and the @ sigh, dig returns: Dig 9.3.4 - P1 ldap._tcp.dc._msdc.simpledomain ;; global options: printcmd ;; connection timed out; no servers could be reached If there is a space before the @ sign, dig returns: Dig: couldn't get address for ns.simpledomain hi, ok my fault. replace ns and simpledomain with your real datas ns means nameserver can you ping simpledomain (if this your real domain)? Greetings, Björn -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 3.0.24 Upgrade to any further version - fail
Hi, I can't upgrade my samba. We use samba in a windows 2003 AD. Works really great, but to get samba fixed and get benefits (like better ACL support) from newer versions, I want to upgrade. I tried with the package-manager, compile the source from packaging team or from upstream. The target on every try was the latest sambaversion to have. Users couldn't connect after upgrade. Windows ask for credentials and samba don't accept the actual credentials. If I downgrade, everything is fine. The issue I could resolve is, that the log tells me the client connect with a unexpected enc type.I though:Well, we just have to wait windows regenerate a new ticket. But no, it is a machine-wide (doesn't matter which user tries to mount the share) problem. Some user could login. So, I don't really get it through. Could anyone help me out? Greetings, Björn -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] secrets.tdb and Samba 3.0.28 - 3.3.4 migration
hi, 2009/5/11 Patrick Rynhart p.rynh...@massey.ac.nz: Hi all, When moving between Samba 3.0.X revisions, I have been able to copy the secrets.tdb file and the trust relationships with foreign domains remain established. However, this does not appear to work when moving directly from 3.0.X to the 3.3.X branch. Is there a tool available that allows us to migrate - or can tdbdump (or similar) be used to dump out data from the 3.0.X format and then be imported into the 3.3.X DB format ? If so, how ? Thank you, Patrick self Problem and question here. Björn -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] set up for Active Directory
hi, 2009/4/14 McGranahan, Jamen jamen.mcgrana...@vanderbilt.edu: OK, I've installed the MIT version of KRB5 samba appears to have installed correctly. However, it appears that I am not able to join my domain. # ./net ads join -U mcgr...@ds.vanderbilt.edu [2009/04/14 11:36:50, 0] param/loadparm.c:lp_set_enum_parm(7097) WARNING: Ignoring invalid value 'ADS' for parameter 'security' [2009/04/14 11:36:50, 0] param/loadparm.c:lp_do_parameter(7174) Ignoring unknown parameter realm ADS support not compiled in So I tried the -d3 version of ./net and got this: # ./net ads -d3 join -U mcgr...@vanderbilt.edu [2009/04/14 11:17:10, 3] param/loadparm.c:lp_load_ex(8794) lp_load_ex: refreshing parameters [2009/04/14 11:17:10, 3] param/loadparm.c:init_globals(4629) Initialising global parameters [2009/04/14 11:17:10, 3] param/params.c:pm_process(569) params.c:pm_process() - Processing configuration file /usr/local/samba/lib/smb.conf [2009/04/14 11:17:10, 3] param/loadparm.c:do_section(7457) Processing section [global] [2009/04/14 11:17:10, 0] param/loadparm.c:lp_set_enum_parm(7097) WARNING: Ignoring invalid value 'ADS' for parameter 'security' [2009/04/14 11:17:10, 1] param/loadparm.c:map_parameter(6131) Unknown parameter encountered: realm [2009/04/14 11:17:10, 0] param/loadparm.c:lp_do_parameter(7174) Ignoring unknown parameter realm [2009/04/14 11:17:10, 2] lib/interface.c:add_interface(340) added interface ce1 ip=129.59.95.89 bcast=129.59.95.255 netmask=255.255.255.0 ADS support not compiled in [2009/04/14 11:17:10, 2] utils/net.c:main(769) return code = -1 I'm not sure where to check now. Please advise. Thank you! Jamen McGranahan Systems Services Librarian Vanderbilt University -Original Message- From: jerry [mailto:je...@samba.org] Sent: Tuesday, April 14, 2009 9:40 AM To: McGranahan, Jamen Cc: samba@lists.samba.org Subject: Re: [Samba] set up for Active Directory -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 McGranahan, Jamen wrote: configure:59580: checking for ldap_initialize configure:59663: result: no configure:59676: error: Active Directory support requires ldap_initialize Did the howto that was previously posted not help? My advice is to get the latest OpenLDAP and MIT krb5 libs and install those. Then rebuild Samba. Life is to short to spend it trying to get code compiling :-) But it's your call. cheers, jerry -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFJ5KAqIR7qMdg1EfYRAmrDAJ93XxnV/TdvFlV2cjMRryPes/r3jwCfW8pH qKFCqgc0v8mgtOmAyOxTXnc= =TdQv -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/domain-member.html tell us: ADS support not compiled in Samba must be reconfigured (remove config.cache) and recompiled (make clean all install) after the Kerberos libraries and headers files are installed. -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] LDAP Migration problem
hi, log level = 3 and tail -f /var/log/samba/log.smba if that your logfile location 2009/2/19 Gerard Hooton ghoo...@bbns.ie: Hello all, I am using Samba version 3.2.5 configured for Windows Domain login. It was working fine until I moved over to ldapsam. Now when I login to the XP client I don't see the logon drive (X: in my case) Any debug tips? //Ger -- Gerard Hooton Systems Administrator Blarney Boy's National School, Blarney. Co. Cork -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba Upgrade
Hi list, I just upgrade my samba and I get from my connected shares: the specified path does not exist.On ip-adress it works great, but I don't want to change this on 100 clients. A few Infos Samba-Version 3.2.5 security = ADS getent passwd and getent group works also fine id could resolv standard-group and the rest group Loglevel is 3 but nothing usefull is in there. Hope you could help me out. Greetings, Björn -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba Upgrade
hi, 2009/2/16 Javier Arancibia jaranci...@nacion-seguros.com.ar: Try to synchronize the date/time of the clients and server Javier Thx for fast answer. I don't believe that is that keberos-error. the file-server (this is my samba server) updates daily with ntpdate on the same machine I try to connect. I do this now manually. But it changed nothing. Bjoern Meier bjoern.me...@googlemail.com Enviado por: samba-bounces+jarancibia=nacion-seguros.com...@lists.samba.org 16/02/2009 09:21 Para samba@lists.samba.org cc Asunto [Samba] Samba Upgrade Hi list, I just upgrade my samba and I get from my connected shares: the specified path does not exist.On ip-adress it works great, but I don't want to change this on 100 clients. A few Infos Samba-Version 3.2.5 security = ADS getent passwd and getent group works also fine id could resolv standard-group and the rest group Loglevel is 3 but nothing usefull is in there. Hope you could help me out. Greetings, Björn -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba Upgrade
hi, 2009/2/16 Volker Lendecke volker.lende...@sernet.de: On Mon, Feb 16, 2009 at 01:06:45PM +0100, Bjoern Meier wrote: Thx for fast answer. I don't believe that is that keberos-error. the file-server (this is my samba server) updates daily with ntpdate on the same machine I try to connect. I do this now manually. But it changed nothing. Then it's very likely it's a different kerberos error. You might want to sniff your client and/or look at a debug level 10 log of smbd. Volker I tried. But I grep for the name of the shared and nothing appeared. There is also nothing that would help. Björn -- To boldly go where no man has gone before ... I'll wait there with touristinformation -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
