RE: [Samba] samba GPFS and HSM?
Hi Volker, I hope my questions aren't seen as abuse. I am mentioning those products specifically because the client already makes use of them in production. I'll keep specific product names out of my future e-mails. Sorry I'm new to the samba list Evan -Original Message- From: Volker Lendecke [mailto:[EMAIL PROTECTED] Sent: Thursday, 5 June 2008 7:08 PM To: [EMAIL PROTECTED] Cc: samba@lists.samba.org Subject: Re: [Samba] samba GPFS and HSM? On Thu, Jun 05, 2008 at 05:27:43PM +1000, [EMAIL PROTECTED] wrote: I was wondering if any of you may be able to point me in the right direction. I am in the process of designing a fairly large fileserver solution in an MS Active directory environment. I have setup and tested ctdb samba, however, after several discussions with a couple of my colleagues, i am now considering a more vanilla flavour of samba. The key features the solution requires are: ? CIFS protocol (with the best ntfs ACL support possible) ? GPFS (for many terabytes of data) ? HSM (specifically TSM) Questions: 1. Does the samba version provided in the RHEL5 distro support migrated files (TSM HSM) and GPFS? 2. Do the latest releases of samba (source code) support my requirements? - and, what options should be included when compiling from source? 3. Or should i just stick with CTDB samba? Any suggestions or help would be greatly appreciated You should really contact the Mainz FSCC team for information about this. samba/ctdb/gpfs/tsm friends are developed and tested in that combination there. Volker P.S: I hope this is not taken as an abuse of this list for advertising, but you're really trying to combine Samba with deeply integrated IBM products :-) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] getent not listing ADS users ctdb samba
Hi, I am setting up ctdb samba, and have hit a brick wall trying to solve the following issue. 1. getent does not retrieve the list of domain users or groups (wbinfo works fine) I'm not sure what I'm missing but I've almost spent the whole day trying to resolve this one and haven't made any progress :-( Any help or suggestions are appreciated My configuration is as follows Installed pre-built RHEL binaries from ctdb.samba ctdb-1.0-41.src.rpm ctdb-1.0-41.x86_64.rpm ctdb-debuginfo-1.0-41.x86_64.rpm samba-3.0.25-ctdb.16.src.rpm samba-3.0.25-ctdb.16.x86_64.rpm samba-client-3.0.25-ctdb.16.x86_64.rpm samba-common-3.0.25-ctdb.16.x86_64.rpm samba-debuginfo-3.0.25-ctdb.16.x86_64.rpm samba-doc-3.0.25-ctdb.16.x86_64.rpm samba-swat-3.0.25-ctdb.16.x86_64.rpm samba-winbind-32bit-3.0.25-ctdb.16.i386.rpm SMB.CONF [global] workgroup = PLANET realm = PLANET.AD netbios name = CTDBSAMBA server string = CTDB Samba Server security = ADS private dir = /gpfs/gpfs0/SMBDconfig log file = /usr/local/samba/var/log.%m max log size = 50 clustering = Yes dns proxy = No ldap ssl = no idmap backend = tdb2 idmap uid = 1-2 idmap gid = 1-2 winbind separator = + [homes] comment = Home Directories read only = No browseable = No [printers] comment = All Printers path = /usr/spool/samba printable = Yes browseable = No [GPFSGLOBAL] comment = GPFS Global Share path = /gpfs/gpfs0/GLOBALSHARE read only = No force unknown acl user = Yes vfs objects = gpfs nfs4:acedup = merge nfs4:chown = yes nfs4:mode = special gpfs:sharemodes = No fileid:mapping = fsname KRB5.CONF [logging] default = FILE:/var/log/krb5libs.log kdc = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log [libdefaults] default_realm = PLANET.AD [realms] PLANET.AD = { kdc = msad2k3.planet.ad admin_server = msad2k3 } [domain_realm] .msad2k3.planet.ad = PLANET.AD [appdefaults] pam = { debug = false ticket_lifetime = 36000 renew_lifetime = 36000 forwardable = true krb4_convert = false } NSSWITCH.CONF passwd: files winbind shadow: files group: files winbind SYSTEM-AUTH #%PAM-1.0 # This file is auto-generated. # User changes will be destroyed the next time authconfig is run. authrequired pam_env.so ### WINBIND AUTH ### authsufficient /lib/security/pam_winbind.so authsufficientpam_unix.so nullok try_first_pass authrequisite pam_succeed_if.so uid = 500 quiet authrequired pam_deny.so ### WINBIND AUTH ### accountsufficient /lib/security/pam_winbind.so account required pam_unix.so account sufficientpam_succeed_if.so uid 500 quiet account required pam_permit.so passwordrequisite pam_cracklib.so try_first_pass retry=3 passwordsufficientpam_unix.so md5 shadow nullok try_first_pass use_authtok passwordrequired pam_deny.so session optional pam_keyinit.so revoke session required pam_limits.so session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid session required pam_unix.so -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] How to move a samba PDC to a diffrent box
this seems to have been created during the rpm install, see below [EMAIL PROTECTED] samba]# rpm -ql samba-winbind-32bit-3.0.25-ctdb.16 /lib/libnss_winbind.so /lib/libnss_winbind.so.2 /lib/libnss_wins.so /lib/libnss_wins.so.2 /lib/security/pam_winbind.so [EMAIL PROTECTED] samba]# ls -lasp /lib | grep libnss 40 -rwxr-xr-x 1 root root 36340 Jul 5 2007 libnss_compat-2.5.so 4 lrwxrwxrwx 1 root root 20 May 26 08:37 libnss_compat.so.2 - libnss_compat-2.5.so 816 -rwxr-xr-x 1 root root 824900 Jul 13 2006 libnss_db-2.2.so 4 lrwxrwxrwx 1 root root 16 May 26 08:39 libnss_db.so.2 - libnss_db-2.2.so 28 -rwxr-xr-x 1 root root 21848 Jul 5 2007 libnss_dns-2.5.so 4 lrwxrwxrwx 1 root root 17 May 26 08:37 libnss_dns.so.2 - libnss_dns-2.5.so 52 -rwxr-xr-x 1 root root 46740 Jul 5 2007 libnss_files-2.5.so 4 lrwxrwxrwx 1 root root 19 May 26 08:37 libnss_files.so.2 - libnss_files-2.5.so 28 -rwxr-xr-x 1 root root 22752 Jul 5 2007 libnss_hesiod-2.5.so 4 lrwxrwxrwx 1 root root 20 May 26 08:37 libnss_hesiod.so.2 - libnss_hesiod-2.5.so 3036 -rwxr-xr-x 1 root root 3099444 Jul 6 2007 libnss_ldap-2.5.so 4 lrwxrwxrwx 1 root root 18 May 26 08:40 libnss_ldap.so.2 - libnss_ldap-2.5.so 48 -rwxr-xr-x 1 root root 42368 Jul 5 2007 libnss_nis-2.5.so 60 -rwxr-xr-x 1 root root 51696 Jul 5 2007 libnss_nisplus-2.5.so 4 lrwxrwxrwx 1 root root 21 May 26 08:37 libnss_nisplus.so.2 - libnss_nisplus-2.5.so 4 lrwxrwxrwx 1 root root 17 May 26 08:37 libnss_nis.so.2 - libnss_nis-2.5.so 20 -rwxr-xr-x 1 root root 19408 Jan 31 10:30 libnss_winbind.so 0 lrwxrwxrwx 1 root root 17 Jun 3 18:36 libnss_winbind.so.2 - libnss_winbind.so 1016 -rwxr-xr-x 1 root root 1032916 Jan 31 10:30 libnss_wins.so 0 lrwxrwxrwx 1 root root 14 Jun 3 18:36 libnss_wins.so.2 - libnss_wins.so -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED] Sent: Tuesday, 3 June 2008 7:28 PM To: ml Cc: samba@lists.samba.org Subject: Re: [Samba] How to move a samba PDC to a diffrent box I think there must be some migration guide in samba documentation (read chapter 5 and 36 in Samba official howto). I think the best would be to build up your second machine and add it in your domain as BDC, so that all users/groups/machines/... get propagated to this new machine. Once done, migrate all your data, then you can safely switch off the first one and promote your new machine to PDC (changing OS level, and browsing options domain master/prefered master) Hello List, i have got a samba pdc running based on the smbldap tools and Debian Sarge. Now we would like to move everything over to Ubuntu Hardy. Can i simply: - Create the same users and groups with the same id on Hardy - Move the files and profiles over by keeping their permissions (rsync -avzp ...) - Set the samba SID to be the old orginial one (i do not know how this could be done and if it even works) Will i then simply be able to log back in with my Windows clients? Is there a HowTo explaining this scenario? Thanks, Mario -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba Message scanned by ClamAV engine (http://www.clamav.net) -- François Legal Message scanned by ClamAV engine (http://www.clamav.net) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] getent not listing ADS users ctdb samba
this seems to have been created during the rpm install, see below [EMAIL PROTECTED] samba]# rpm -ql samba-winbind-32bit-3.0.25-ctdb.16 /lib/libnss_winbind.so /lib/libnss_winbind.so.2 /lib/libnss_wins.so /lib/libnss_wins.so.2 /lib/security/pam_winbind.so [EMAIL PROTECTED] samba]# ls -lasp /lib | grep libnss 40 -rwxr-xr-x 1 root root 36340 Jul 5 2007 libnss_compat-2.5.so 4 lrwxrwxrwx 1 root root 20 May 26 08:37 libnss_compat.so.2 - libnss_compat-2.5.so 816 -rwxr-xr-x 1 root root 824900 Jul 13 2006 libnss_db-2.2.so 4 lrwxrwxrwx 1 root root 16 May 26 08:39 libnss_db.so.2 - libnss_db-2.2.so 28 -rwxr-xr-x 1 root root 21848 Jul 5 2007 libnss_dns-2.5.so 4 lrwxrwxrwx 1 root root 17 May 26 08:37 libnss_dns.so.2 - libnss_dns-2.5.so 52 -rwxr-xr-x 1 root root 46740 Jul 5 2007 libnss_files-2.5.so 4 lrwxrwxrwx 1 root root 19 May 26 08:37 libnss_files.so.2 - libnss_files-2.5.so 28 -rwxr-xr-x 1 root root 22752 Jul 5 2007 libnss_hesiod-2.5.so 4 lrwxrwxrwx 1 root root 20 May 26 08:37 libnss_hesiod.so.2 - libnss_hesiod-2.5.so 3036 -rwxr-xr-x 1 root root 3099444 Jul 6 2007 libnss_ldap-2.5.so 4 lrwxrwxrwx 1 root root 18 May 26 08:40 libnss_ldap.so.2 - libnss_ldap-2.5.so 48 -rwxr-xr-x 1 root root 42368 Jul 5 2007 libnss_nis-2.5.so 60 -rwxr-xr-x 1 root root 51696 Jul 5 2007 libnss_nisplus-2.5.so 4 lrwxrwxrwx 1 root root 21 May 26 08:37 libnss_nisplus.so.2 - libnss_nisplus-2.5.so 4 lrwxrwxrwx 1 root root 17 May 26 08:37 libnss_nis.so.2 - libnss_nis-2.5.so 20 -rwxr-xr-x 1 root root 19408 Jan 31 10:30 libnss_winbind.so 0 lrwxrwxrwx 1 root root 17 Jun 3 18:36 libnss_winbind.so.2 - libnss_winbind.so 1016 -rwxr-xr-x 1 root root 1032916 Jan 31 10:30 libnss_wins.so 0 lrwxrwxrwx 1 root root 14 Jun 3 18:36 libnss_wins.so.2 - libnss_wins.so -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Evan Koutsandreou Sent: Tuesday, 3 June 2008 7:09 PM To: samba@lists.samba.org Subject: [Samba] getent not listing ADS users ctdb samba Hi, I am setting up ctdb samba, and have hit a brick wall trying to solve the following issue. 1. getent does not retrieve the list of domain users or groups (wbinfo works fine) I'm not sure what I'm missing but I've almost spent the whole day trying to resolve this one and haven't made any progress :-( Any help or suggestions are appreciated My configuration is as follows Installed pre-built RHEL binaries from ctdb.samba ctdb-1.0-41.src.rpm ctdb-1.0-41.x86_64.rpm ctdb-debuginfo-1.0-41.x86_64.rpm samba-3.0.25-ctdb.16.src.rpm samba-3.0.25-ctdb.16.x86_64.rpm samba-client-3.0.25-ctdb.16.x86_64.rpm samba-common-3.0.25-ctdb.16.x86_64.rpm samba-debuginfo-3.0.25-ctdb.16.x86_64.rpm samba-doc-3.0.25-ctdb.16.x86_64.rpm samba-swat-3.0.25-ctdb.16.x86_64.rpm samba-winbind-32bit-3.0.25-ctdb.16.i386.rpm SMB.CONF [global] workgroup = PLANET realm = PLANET.AD netbios name = CTDBSAMBA server string = CTDB Samba Server security = ADS private dir = /gpfs/gpfs0/SMBDconfig log file = /usr/local/samba/var/log.%m max log size = 50 clustering = Yes dns proxy = No ldap ssl = no idmap backend = tdb2 idmap uid = 1-2 idmap gid = 1-2 winbind separator = + [homes] comment = Home Directories read only = No browseable = No [printers] comment = All Printers path = /usr/spool/samba printable = Yes browseable = No [GPFSGLOBAL] comment = GPFS Global Share path = /gpfs/gpfs0/GLOBALSHARE read only = No force unknown acl user = Yes vfs objects = gpfs nfs4:acedup = merge nfs4:chown = yes nfs4:mode = special gpfs:sharemodes = No fileid:mapping = fsname KRB5.CONF [logging] default = FILE:/var/log/krb5libs.log kdc = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log [libdefaults] default_realm = PLANET.AD [realms] PLANET.AD = { kdc = msad2k3.planet.ad admin_server = msad2k3 } [domain_realm] .msad2k3.planet.ad = PLANET.AD [appdefaults] pam = { debug = false ticket_lifetime = 36000 renew_lifetime = 36000 forwardable = true krb4_convert = false } NSSWITCH.CONF passwd: files winbind shadow: files group: files winbind SYSTEM-AUTH #%PAM-1.0 # This file is auto-generated. # User changes will be destroyed the next time authconfig is run. authrequired pam_env.so ### WINBIND AUTH ### authsufficient /lib/security/pam_winbind.so authsufficientpam_unix.so nullok try_first_pass authrequisite pam_succeed_if.so uid = 500 quiet auth
RE: [Samba] getent not listing ADS users ctdb samba
That's worked, thanks a million!! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John Hodrien Sent: Tuesday, 3 June 2008 8:11 PM Cc: samba@lists.samba.org Subject: Re: [Samba] getent not listing ADS users ctdb samba On Tue, 3 Jun 2008, Evan Koutsandreou wrote: 1.getent does not retrieve the list of domain users or groups (wbinfo works fine) Do you mean getent passwd, or getent passwd foo? If you mean the former, then you need: winbind enum groups = yes winbind enum users = yes jh -- Woman was God's second mistake.-- Nietzsche -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] ctdb samba smb.conf file?
Hi, I have some configuration questions concerning the setup of ctdb samba: 1. I assume samba must be installed on all nodes in the ctdb environment? 2. Is the smb.conf file configured separately on all nodes? a. If yes, does that mean you have to ensure all smb.conf files on all nodes are updated equally and kept in sync?? b. Is this a manual process? Looking forward to feed back, Best Regards, Evan -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] tdb samba and NTFS ACL Support
Hi - i was wondering how a ctdb samba (or IBM SOFS) solution provides full NTFS ACLs support? - Is there a specific vfs module which must be loaded? etc... I am in the process of designing a very large fileserver within an Active directory domain. I have seen a SOFS presentation on the web and was wondering if the ctdb samba gpfs approach would be an reasonable solution? Any information regarding this particular setup would be greatly appreciated Best regards, Evan -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba