RE: [Samba] samba GPFS and HSM?
Hi Volker, I hope my questions aren't seen as abuse. I am mentioning those products specifically because the client already makes use of them in production. I'll keep specific product names out of my future e-mails. Sorry I'm new to the samba list Evan -Original Message- From: Volker Lendecke [mailto:[EMAIL PROTECTED] Sent: Thursday, 5 June 2008 7:08 PM To: [EMAIL PROTECTED] Cc: samba@lists.samba.org Subject: Re: [Samba] samba GPFS and HSM? On Thu, Jun 05, 2008 at 05:27:43PM +1000, [EMAIL PROTECTED] wrote: I was wondering if any of you may be able to point me in the right direction. I am in the process of designing a fairly large fileserver solution in an MS Active directory environment. I have setup and tested ctdb samba, however, after several discussions with a couple of my colleagues, i am now considering a more vanilla flavour of samba. The key features the solution requires are: ? CIFS protocol (with the best ntfs ACL support possible) ? GPFS (for many terabytes of data) ? HSM (specifically TSM) Questions: 1. Does the samba version provided in the RHEL5 distro support migrated files (TSM HSM) and GPFS? 2. Do the latest releases of samba (source code) support my requirements? - and, what options should be included when compiling from source? 3. Or should i just stick with CTDB samba? Any suggestions or help would be greatly appreciated You should really contact the Mainz FSCC team for information about this. samba/ctdb/gpfs/tsm friends are developed and tested in that combination there. Volker P.S: I hope this is not taken as an abuse of this list for advertising, but you're really trying to combine Samba with deeply integrated IBM products :-) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] getent not listing ADS users ctdb samba
Hi,
I am setting up ctdb samba, and have hit a brick wall trying to solve the
following issue.
1. getent does not retrieve the list of domain users or groups (wbinfo
works fine)
I'm not sure what I'm missing but I've almost spent the whole day trying to
resolve this one and haven't made any progress :-(
Any help or suggestions are appreciated
My configuration is as follows
Installed pre-built RHEL binaries from ctdb.samba
ctdb-1.0-41.src.rpm
ctdb-1.0-41.x86_64.rpm
ctdb-debuginfo-1.0-41.x86_64.rpm
samba-3.0.25-ctdb.16.src.rpm
samba-3.0.25-ctdb.16.x86_64.rpm
samba-client-3.0.25-ctdb.16.x86_64.rpm
samba-common-3.0.25-ctdb.16.x86_64.rpm
samba-debuginfo-3.0.25-ctdb.16.x86_64.rpm
samba-doc-3.0.25-ctdb.16.x86_64.rpm
samba-swat-3.0.25-ctdb.16.x86_64.rpm
samba-winbind-32bit-3.0.25-ctdb.16.i386.rpm
SMB.CONF
[global]
workgroup = PLANET
realm = PLANET.AD
netbios name = CTDBSAMBA
server string = CTDB Samba Server
security = ADS
private dir = /gpfs/gpfs0/SMBDconfig
log file = /usr/local/samba/var/log.%m
max log size = 50
clustering = Yes
dns proxy = No
ldap ssl = no
idmap backend = tdb2
idmap uid = 1-2
idmap gid = 1-2
winbind separator = +
[homes]
comment = Home Directories
read only = No
browseable = No
[printers]
comment = All Printers
path = /usr/spool/samba
printable = Yes
browseable = No
[GPFSGLOBAL]
comment = GPFS Global Share
path = /gpfs/gpfs0/GLOBALSHARE
read only = No
force unknown acl user = Yes
vfs objects = gpfs
nfs4:acedup = merge
nfs4:chown = yes
nfs4:mode = special
gpfs:sharemodes = No
fileid:mapping = fsname
KRB5.CONF
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
default_realm = PLANET.AD
[realms]
PLANET.AD = {
kdc = msad2k3.planet.ad
admin_server = msad2k3
}
[domain_realm]
.msad2k3.planet.ad = PLANET.AD
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
NSSWITCH.CONF
passwd: files winbind
shadow: files
group: files winbind
SYSTEM-AUTH
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
authrequired pam_env.so
### WINBIND AUTH ###
authsufficient /lib/security/pam_winbind.so
authsufficientpam_unix.so nullok try_first_pass
authrequisite pam_succeed_if.so uid = 500 quiet
authrequired pam_deny.so
### WINBIND AUTH ###
accountsufficient /lib/security/pam_winbind.so
account required pam_unix.so
account sufficientpam_succeed_if.so uid 500 quiet
account required pam_permit.so
passwordrequisite pam_cracklib.so try_first_pass retry=3
passwordsufficientpam_unix.so md5 shadow nullok try_first_pass
use_authtok
passwordrequired pam_deny.so
session optional pam_keyinit.so revoke
session required pam_limits.so
session [success=1 default=ignore] pam_succeed_if.so service in crond
quiet use_uid
session required pam_unix.so
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] How to move a samba PDC to a diffrent box
this seems to have been created during the rpm install, see below [EMAIL PROTECTED] samba]# rpm -ql samba-winbind-32bit-3.0.25-ctdb.16 /lib/libnss_winbind.so /lib/libnss_winbind.so.2 /lib/libnss_wins.so /lib/libnss_wins.so.2 /lib/security/pam_winbind.so [EMAIL PROTECTED] samba]# ls -lasp /lib | grep libnss 40 -rwxr-xr-x 1 root root 36340 Jul 5 2007 libnss_compat-2.5.so 4 lrwxrwxrwx 1 root root 20 May 26 08:37 libnss_compat.so.2 - libnss_compat-2.5.so 816 -rwxr-xr-x 1 root root 824900 Jul 13 2006 libnss_db-2.2.so 4 lrwxrwxrwx 1 root root 16 May 26 08:39 libnss_db.so.2 - libnss_db-2.2.so 28 -rwxr-xr-x 1 root root 21848 Jul 5 2007 libnss_dns-2.5.so 4 lrwxrwxrwx 1 root root 17 May 26 08:37 libnss_dns.so.2 - libnss_dns-2.5.so 52 -rwxr-xr-x 1 root root 46740 Jul 5 2007 libnss_files-2.5.so 4 lrwxrwxrwx 1 root root 19 May 26 08:37 libnss_files.so.2 - libnss_files-2.5.so 28 -rwxr-xr-x 1 root root 22752 Jul 5 2007 libnss_hesiod-2.5.so 4 lrwxrwxrwx 1 root root 20 May 26 08:37 libnss_hesiod.so.2 - libnss_hesiod-2.5.so 3036 -rwxr-xr-x 1 root root 3099444 Jul 6 2007 libnss_ldap-2.5.so 4 lrwxrwxrwx 1 root root 18 May 26 08:40 libnss_ldap.so.2 - libnss_ldap-2.5.so 48 -rwxr-xr-x 1 root root 42368 Jul 5 2007 libnss_nis-2.5.so 60 -rwxr-xr-x 1 root root 51696 Jul 5 2007 libnss_nisplus-2.5.so 4 lrwxrwxrwx 1 root root 21 May 26 08:37 libnss_nisplus.so.2 - libnss_nisplus-2.5.so 4 lrwxrwxrwx 1 root root 17 May 26 08:37 libnss_nis.so.2 - libnss_nis-2.5.so 20 -rwxr-xr-x 1 root root 19408 Jan 31 10:30 libnss_winbind.so 0 lrwxrwxrwx 1 root root 17 Jun 3 18:36 libnss_winbind.so.2 - libnss_winbind.so 1016 -rwxr-xr-x 1 root root 1032916 Jan 31 10:30 libnss_wins.so 0 lrwxrwxrwx 1 root root 14 Jun 3 18:36 libnss_wins.so.2 - libnss_wins.so -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED] Sent: Tuesday, 3 June 2008 7:28 PM To: ml Cc: samba@lists.samba.org Subject: Re: [Samba] How to move a samba PDC to a diffrent box I think there must be some migration guide in samba documentation (read chapter 5 and 36 in Samba official howto). I think the best would be to build up your second machine and add it in your domain as BDC, so that all users/groups/machines/... get propagated to this new machine. Once done, migrate all your data, then you can safely switch off the first one and promote your new machine to PDC (changing OS level, and browsing options domain master/prefered master) Hello List, i have got a samba pdc running based on the smbldap tools and Debian Sarge. Now we would like to move everything over to Ubuntu Hardy. Can i simply: - Create the same users and groups with the same id on Hardy - Move the files and profiles over by keeping their permissions (rsync -avzp ...) - Set the samba SID to be the old orginial one (i do not know how this could be done and if it even works) Will i then simply be able to log back in with my Windows clients? Is there a HowTo explaining this scenario? Thanks, Mario -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba Message scanned by ClamAV engine (http://www.clamav.net) -- François Legal Message scanned by ClamAV engine (http://www.clamav.net) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] getent not listing ADS users ctdb samba
this seems to have been created during the rpm install, see below
[EMAIL PROTECTED] samba]# rpm -ql samba-winbind-32bit-3.0.25-ctdb.16
/lib/libnss_winbind.so
/lib/libnss_winbind.so.2
/lib/libnss_wins.so
/lib/libnss_wins.so.2
/lib/security/pam_winbind.so
[EMAIL PROTECTED] samba]# ls -lasp /lib | grep libnss
40 -rwxr-xr-x 1 root root 36340 Jul 5 2007 libnss_compat-2.5.so
4 lrwxrwxrwx 1 root root 20 May 26 08:37 libnss_compat.so.2 -
libnss_compat-2.5.so
816 -rwxr-xr-x 1 root root 824900 Jul 13 2006 libnss_db-2.2.so
4 lrwxrwxrwx 1 root root 16 May 26 08:39 libnss_db.so.2 -
libnss_db-2.2.so
28 -rwxr-xr-x 1 root root 21848 Jul 5 2007 libnss_dns-2.5.so
4 lrwxrwxrwx 1 root root 17 May 26 08:37 libnss_dns.so.2 -
libnss_dns-2.5.so
52 -rwxr-xr-x 1 root root 46740 Jul 5 2007 libnss_files-2.5.so
4 lrwxrwxrwx 1 root root 19 May 26 08:37 libnss_files.so.2 -
libnss_files-2.5.so
28 -rwxr-xr-x 1 root root 22752 Jul 5 2007 libnss_hesiod-2.5.so
4 lrwxrwxrwx 1 root root 20 May 26 08:37 libnss_hesiod.so.2 -
libnss_hesiod-2.5.so
3036 -rwxr-xr-x 1 root root 3099444 Jul 6 2007 libnss_ldap-2.5.so
4 lrwxrwxrwx 1 root root 18 May 26 08:40 libnss_ldap.so.2 -
libnss_ldap-2.5.so
48 -rwxr-xr-x 1 root root 42368 Jul 5 2007 libnss_nis-2.5.so
60 -rwxr-xr-x 1 root root 51696 Jul 5 2007 libnss_nisplus-2.5.so
4 lrwxrwxrwx 1 root root 21 May 26 08:37 libnss_nisplus.so.2 -
libnss_nisplus-2.5.so
4 lrwxrwxrwx 1 root root 17 May 26 08:37 libnss_nis.so.2 -
libnss_nis-2.5.so
20 -rwxr-xr-x 1 root root 19408 Jan 31 10:30 libnss_winbind.so
0 lrwxrwxrwx 1 root root 17 Jun 3 18:36 libnss_winbind.so.2 -
libnss_winbind.so
1016 -rwxr-xr-x 1 root root 1032916 Jan 31 10:30 libnss_wins.so
0 lrwxrwxrwx 1 root root 14 Jun 3 18:36 libnss_wins.so.2 -
libnss_wins.so
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Evan Koutsandreou
Sent: Tuesday, 3 June 2008 7:09 PM
To: samba@lists.samba.org
Subject: [Samba] getent not listing ADS users ctdb samba
Hi,
I am setting up ctdb samba, and have hit a brick wall trying to solve the
following issue.
1. getent does not retrieve the list of domain users or groups (wbinfo
works fine)
I'm not sure what I'm missing but I've almost spent the whole day trying to
resolve this one and haven't made any progress :-(
Any help or suggestions are appreciated
My configuration is as follows
Installed pre-built RHEL binaries from ctdb.samba
ctdb-1.0-41.src.rpm
ctdb-1.0-41.x86_64.rpm
ctdb-debuginfo-1.0-41.x86_64.rpm
samba-3.0.25-ctdb.16.src.rpm
samba-3.0.25-ctdb.16.x86_64.rpm
samba-client-3.0.25-ctdb.16.x86_64.rpm
samba-common-3.0.25-ctdb.16.x86_64.rpm
samba-debuginfo-3.0.25-ctdb.16.x86_64.rpm
samba-doc-3.0.25-ctdb.16.x86_64.rpm
samba-swat-3.0.25-ctdb.16.x86_64.rpm
samba-winbind-32bit-3.0.25-ctdb.16.i386.rpm
SMB.CONF
[global]
workgroup = PLANET
realm = PLANET.AD
netbios name = CTDBSAMBA
server string = CTDB Samba Server
security = ADS
private dir = /gpfs/gpfs0/SMBDconfig
log file = /usr/local/samba/var/log.%m
max log size = 50
clustering = Yes
dns proxy = No
ldap ssl = no
idmap backend = tdb2
idmap uid = 1-2
idmap gid = 1-2
winbind separator = +
[homes]
comment = Home Directories
read only = No
browseable = No
[printers]
comment = All Printers
path = /usr/spool/samba
printable = Yes
browseable = No
[GPFSGLOBAL]
comment = GPFS Global Share
path = /gpfs/gpfs0/GLOBALSHARE
read only = No
force unknown acl user = Yes
vfs objects = gpfs
nfs4:acedup = merge
nfs4:chown = yes
nfs4:mode = special
gpfs:sharemodes = No
fileid:mapping = fsname
KRB5.CONF
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
default_realm = PLANET.AD
[realms]
PLANET.AD = {
kdc = msad2k3.planet.ad
admin_server = msad2k3
}
[domain_realm]
.msad2k3.planet.ad = PLANET.AD
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
NSSWITCH.CONF
passwd: files winbind
shadow: files
group: files winbind
SYSTEM-AUTH
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
authrequired pam_env.so
### WINBIND AUTH ###
authsufficient /lib/security/pam_winbind.so
authsufficientpam_unix.so nullok try_first_pass
authrequisite pam_succeed_if.so uid = 500 quiet
auth
RE: [Samba] getent not listing ADS users ctdb samba
That's worked, thanks a million!! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John Hodrien Sent: Tuesday, 3 June 2008 8:11 PM Cc: samba@lists.samba.org Subject: Re: [Samba] getent not listing ADS users ctdb samba On Tue, 3 Jun 2008, Evan Koutsandreou wrote: 1.getent does not retrieve the list of domain users or groups (wbinfo works fine) Do you mean getent passwd, or getent passwd foo? If you mean the former, then you need: winbind enum groups = yes winbind enum users = yes jh -- Woman was God's second mistake.-- Nietzsche -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] ctdb samba smb.conf file?
Hi, I have some configuration questions concerning the setup of ctdb samba: 1. I assume samba must be installed on all nodes in the ctdb environment? 2. Is the smb.conf file configured separately on all nodes? a. If yes, does that mean you have to ensure all smb.conf files on all nodes are updated equally and kept in sync?? b. Is this a manual process? Looking forward to feed back, Best Regards, Evan -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] tdb samba and NTFS ACL Support
Hi - i was wondering how a ctdb samba (or IBM SOFS) solution provides full NTFS ACLs support? - Is there a specific vfs module which must be loaded? etc... I am in the process of designing a very large fileserver within an Active directory domain. I have seen a SOFS presentation on the web and was wondering if the ctdb samba gpfs approach would be an reasonable solution? Any information regarding this particular setup would be greatly appreciated Best regards, Evan -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
