[Samba] netbios sid and domain sid
Hi all, I'm installing a pdc samba+openldap on a debian etch server. I have this problem: with ldap configuration ended successfully, I start samba for the first time, so samba adds a sambaDomainName entry in ldap database. the problem is that this entry has a wrong sid (different from the one returned by net getlocalsid). Then I have errors in granting privileges and so on. In particular I have 2 different sids for domain (the one wrong) and or netbios name (the one right). Why? is it a samba bug? I use samba 3.0.24-6etch9. Thanks in advance, Fabio -- Dott. Fabio Marcone 2T srl Telefono+39 - 0871- 540154 Fax +39 - 0871- 571594 Email fabio.marcone(AT)duet.it Indirizzo Viale B. Croce 573 66013 Chieti Scalo (CH) GNU/Linux registered user #400424 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba. openldap e centos [EXCUSE ME]
excuse me, my previous message was for italian ml. Fabio -- Dott. Fabio Marcone 2T srl Telefono+39 - 0871- 540154 Fax +39 - 0871- 571594 Email fabio.marcone(AT)duet.it Indirizzo Viale B. Croce 573 66013 Chieti Scalo (CH) GNU/Linux registered user #400424 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba, openldap e centos
ciao a tutti, sto provando ad installare samba + openldap su centos. ho un problema: quando cerco di aggiungere un privilegio ad un gruppo ho il seguente errore: [2007/11/22 17:55:48, 1] lib/smbldap_util.c:add_new_domain_account_policies(77) add_new_domain_account_policies: failed to add account policies to dn= sambaDomainName=2TSAMBA2,dc=duet,dc=it with: Undefined attribute type f instsambaMinPwdLength: attribute type undefined [2007/11/22 17:55:48, 0] lib/smbldap_util.c:smbldap_search_domain_info(256) smbldap_search_domain_info: Adding domain account policies for 2TSAMBA2 failed with NT_STATUS_UNSUCCESSFUL in particolare vorrei aggiungere SeMachineAccountPrivilege to Domain Admins. tale gruppo lo vedo in net groupmap list: # net groupmap list Default Group (S-1-5-21-1768532293-3725072194-977034343-1461) - Default Group Hosts (S-1-5-21-1768532293-3725072194-977034343-1463) - Hosts Domain Admins (S-1-5-21-1768532293-3725072194-977034343-2025) - Domain Admins Domain Users (S-1-5-21-1768532293-3725072194-977034343-513) - Domain Users Domain Guests (S-1-5-21-1768532293-3725072194-977034343-514) - Domain Guests Domain Computers (S-1-5-21-1768532293-3725072194-977034343-515) - Domain Computers Administrators (S-1-5-32-544) - Administrators Account Operators (S-1-5-32-548) - Account Operators Print Operators (S-1-5-32-550) - Print Operators Backup Operators (S-1-5-32-551) - Backup Operators Replicators (S-1-5-32-552) - Replicators ma poi net rpc rights list accounts restituisce: BUILTIN\Print Operators No privileges assigned BUILTIN\Account Operators No privileges assigned BUILTIN\Backup Operators No privileges assigned BUILTIN\Server Operators No privileges assigned BUILTIN\Administrators SeMachineAccountPrivilege SeTakeOwnershipPrivilege SeBackupPrivilege SeRestorePrivilege SeRemoteShutdownPrivilege SePrintOperatorPrivilege SeAddUsersPrivilege SeDiskOperatorPrivilege Everyone No privileges assigned cioè sembra che tale gruppo non sia visto. ho controllato il SID ma sembra tutto ok... qualcuno mi saprebbe consigliare su quale parte di configurazione potrebbe stare l'inghippo? il gruppo è visto correttamente come gruppo di sistema e testparm non ha evidenziato errori. grazie a tutti, Fabio -- Dott. Fabio Marcone 2T srl Telefono+39 - 0871- 540154 Fax +39 - 0871- 571594 Email fabio.marcone(AT)duet.it Indirizzo Viale B. Croce 573 66013 Chieti Scalo (CH) GNU/Linux registered user #400424 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba log analyzer
Hi to all, I'm looking for a tool to generate reports from samba logs (like webalizer for squid). I googled a lot but with no success. I found only a commercial software. Do you suggest me some tool? Very thanks, Fabio -- Dott. Fabio Marcone 2T srl Telefono+39 - 0871- 540154 Fax +39 - 0871- 571594 Email fabio.marcone(AT)duet.it Indirizzo Viale B. Croce 573 66013 Chieti Scalo (CH) GNU/Linux registered user #400424 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] testing samba4
Hi *, I'm installing samba4 to test purpose but I have an error. I'm following howto.txt included in samba-4.0.0tp4.tar.gz. I compile and install samba4 without problem but # smbd -i -M single Copyright Andrew Tridgell and the Samba Team 1992-2007 smbd: using 'single' process model task_server_terminate: [NT_STATUS_CANT_ACCESS_DOMAIN_INFO] and if I try to connect it using smbclient I get: Could not find entry to match filter: ((flatname=TESTS4)(objectclass=primaryDomain)) Failed to start GENSEC server mech gssapi_krb5: NT_STATUS_CANT_ACCESS_DOMAIN_INFO I think it is a kerberos problem (do I have to install kerberos separately?) but there are no info in howto.txt. Can you help me? Is there a guide to install samba4? Thanks in advance, Fabio -- Dott. Fabio Marcone 2T srl Telefono+39 - 0871- 540154 Fax +39 - 0871- 571594 Email fabio.marcone(AT)duet.it Indirizzo Viale B. Croce 573 66013 Chieti Scalo (CH) GNU/Linux registered user #400424 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba performances vs ftp performances
Hi! I'm trying to improve a server samba performances (debian etch with raid 5 hardware and ext3). During tests I note that (with the same hardware) ftp download can reach data rate of abaout 410 Mb/s while smbclient download reaches only 240 Mb/s. I'm using a gigaethernet network. are these performance differences quite normal? why? I googled without success. Thanks a lot, Fabio -- Dott. Fabio Marcone 2T srl Telefono+39 - 0871- 540154 Fax +39 - 0871- 571594 Email fabio.marcone(AT)duet.it Indirizzo Viale B. Croce 573 66013 Chieti Scalo (CH) GNU/Linux registered user #400424 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] logon script problem
Hi, I've a problem with logon script parameter: client doesn't run this script and i've no error in samba logs. I'm using samba 3.0.24 (etch) with windows XP SP2 client side. workstation was joined in domain and user login (using roaming profiles) is executed without errors. I used unix2dos tool to transform the script in dos way and if I run the script in widows with double click, it is executed without errors. Anyone can help me? I searched a lot but I get no infos about this problem. Thanks in advance, Fabio riporto la parte di interesse di smb.conf: [global] logon home = \\%L\%U\.profiles logon script = backup.bat max protocol = NT1 delete user script = /usr/sbin/smbldap-userdel %u passwd chat = *new*password* %n\n *new*password* %n\n *successfully* add user script = /usr/sbin/smbldap-useradd -m %u add user to group script = /usr/sbin/smbldap-groupmod -m %u %g ldap group suffix = ou=Groups syslog = 1 passdb backend = ldapsam:ldap://127.0.0.1 ldap delete dn = Yes load printers = no create mask = 0770 domain logons = yes logon path = \\%L\profiles\%U netbios name = pdc-server server signing = Auto guest account = nobody directory mask = 0770 unix charset = ISO8859-1 preferred master = yes set primary group script = /usr/sbin/smbldap-usermod -g %g %u printcap name = cups smb ports = 139 445 passwd program = /usr/local/sbin/smbldap-passwd %u workgroup = Oikos enable privileges = yes encrypt passwords = yes delete group script = /usr/sbin/smbldap-groupdel %g ldap user suffix = ou=People ldap admin dn = cn=admin,dc=duet,dc=it name resolve order = wins bcast ldap passwd sync = Yes add group script = /usr/sbin/smbldap-groupadd -p %g delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g ldap ssl = No max log size = 1000 unix password sync = no obey pam restrictions = no socket options = TCP_NODELAY panic action = /usr/share/samba/panic-action %d restrict anonymous = no add machine script = /usr/sbin/smbldap-useradd -w %u dns proxy = no server string = %h server (Samba %v) logon drive = H: os level = 34 invalid users = root ldap suffix = dc=duet,dc=it printing = cups wins support = no map to guest = Bad User ldap machine suffix = ou=Computers security = user domain master = yes log file = /var/log/samba/log.%m [profiles] browseable = yes store dos attributes = yes directory mask = 0700 guest ok = no printable = no path = /shares/profiles read only = no create mask = 0600 [netlogon] comment = Network Logon Service path = /shares/netlogon browseable = no guest ok = yes read only = yes path = /shares/netlogon valid users = %U -- Dott. Fabio Marcone 2T srl Telefono+39 - 0871- 540154 Fax +39 - 0871- 571594 Email fabio.marcone(AT)duet.it Indirizzo Viale B. Croce 573 66013 Chieti Scalo (CH) GNU/Linux registered user #400424 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] logon script problem
Hi! Rune Tønnesen wrote: hi Fabio Can you browse the netlogon share from the client? set browseable = yes set available = yes yes as root try from a windows client \\servername\netlogon file://\\servername\netlogon I can't log as root on clients Fabio -- Dott. Fabio Marcone 2T srl Telefono+39 - 0871- 540154 Fax +39 - 0871- 571594 Email fabio.marcone(AT)duet.it Indirizzo Viale B. Croce 573 66013 Chieti Scalo (CH) GNU/Linux registered user #400424 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba and share quota
Hi to all, I'm looking for a tutorial/howto to manage disk quota share. I found some documents about filesystem quotas using quotatool but none about quota on samba shares. In smb.conf man I found get quota command and set quota command but I didn't understand if I can use them to set share quota and I didn't find documents about it. Anyone knows a tutorial/howto about it? Thanks, Fabio -- Dott. Fabio Marcone 2T srl Telefono+39 - 0871- 540154 Fax +39 - 0871- 571594 Email [EMAIL PROTECTED] Indirizzo Viale B. Croce 573 66013 Chieti Scalo (CH) GNU/Linux registered user #400424 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbldap-tools problem
Hi! I'm installing Debian Sarge with Samba 3.0.14a-3, OpenLDAP 2.2.23-8, smbldap-tools 0.8.7-4 ( I tried with 0.9.x version also) It isn't the first time I install a system like this but this time I encountered a problem never seen: during user insert I have an error because of smbldap-tools do not find indicated group (but group exists!). So: SambaTesting:~/install# smbldap-groupshow Admins dn: cnmins,ou=Groups,dc=Duet,dc=it objectClass: posixGroup,sambaGroupMapping cn: Admins gidNumber: 200 sambaSID: S-1-5-21-2275038829-2173144163-3767808964-1401 sambaGroupType: 2 displayName: Admins SambaTesting:~/install# smbldap-useradd -a -g 200 utente /usr/sbin/smbldap-useradd: unknown group 200 SambaTesting:~/install# Anyone can help me? Thanks, Fabio -- Dott. Fabio Marcone 2T srl Telefono +39 - 0871- 540154 Fax +39 - 0871- 571594 Indirizzo Viale B. Croce 573, 66013 Chieti Scalo (CH) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: RE [Samba] smbldap-tools problem
smbldap-useradd -a -g Admins utente Admins exists but I have this error: SambaTesting:~/install# smbldap-useradd -a -g Admins ppp Use of uninitialized value in pattern match (m//) at /usr/share/perl5/smbldap_tools.pm line 733, DATA line 283. /usr/sbin/smbldap-useradd: unknown group Admins Why? Fabio --- Stphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a crit sur 17/06/2005 13:56:13 : Hi! I'm installing Debian Sarge with Samba 3.0.14a-3, OpenLDAP 2.2.23-8, smbldap-tools 0.8.7-4 ( I tried with 0.9.x version also) It isn't the first time I install a system like this but this time I encountered a problem never seen: during user insert I have an error because of smbldap-tools do not find indicated group (but group exists!). So: SambaTesting:~/install# smbldap-groupshow Admins dn: cnmins,ou=Groups,dc=Duet,dc=it objectClass: posixGroup,sambaGroupMapping cn: Admins gidNumber: 200 sambaSID: S-1-5-21-2275038829-2173144163-3767808964-1401 sambaGroupType: 2 displayName: Admins SambaTesting:~/install# smbldap-useradd -a -g 200 utente /usr/sbin/smbldap-useradd: unknown group 200 SambaTesting:~/install# Anyone can help me? Thanks, Fabio -- Dott. Fabio Marcone 2T srl Telefono +39 - 0871- 540154 Fax +39 - 0871- 571594 Indirizzo Viale B. Croce 573, 66013 Chieti Scalo (CH) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba-- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- Dott. Fabio Marcone 2T srl Telefono +39 - 0871- 540154 Fax +39 - 0871- 571594 Indirizzo Viale B. Croce 573, 66013 Chieti Scalo (CH) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] disabled share
Hi! I'm looking for a way to disable a directory shared. I think that I can set null valid users parameter but I would know if a boolean parameter exists. Thanks, Fabio -- Dott. Fabio Marcone 2T srl Telefono +39 - 0871- 540154 Fax +39 - 0871- 571594 Indirizzo Viale B. Croce 573, 66013 Chieti Scalo (CH) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] group-rid and group-sid
hi! Studying smbldap-groupadd I encountered these parameters. I understand how they are calculated but I don't understand their use. Can anyone explain me that? Thanks a lot, Fabio -- Dott. Fabio Marcone 2T srl Telefono +39 - 0871- 540154 Fax +39 - 0871- 571594 Indirizzo Viale B. Croce 573, 66013 Chieti Scalo (CH) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] gid and uid
hi! I'm studing samba as PDC (with ldap backend) and I would know: - gid and uid are useful in samba? in other words: if pdc admin knows users' uids, he can recovery some wrong situations ? Example: if a user was cancelled and then readded, if his uid changes implies some troubles with shared files? NT mantains, after deletion, association between shared file and uid user and so if admin readded user with the same uid the system restore the right configuration. Thanks, Fabio -- Dott. Fabio Marcone 2T srl Telefono +39 - 0871- 540154 Fax +39 - 0871- 571594 Indirizzo Viale B. Croce 573, 66013 Chieti Scalo (CH) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] gid and uid
thanks for your answer! hi! I'm studing samba as PDC (with ldap backend) and I would know: - gid and uid are useful in samba? in other words: if pdc admin knows users' uids, he can recovery some wrong situations ? Samba use unix account. OK Example: if a user was cancelled and then readded, if his uid changes implies some troubles with shared files? YES. how? can you explain me why? I know that privileges are set in smb.conf using user and group name, not uid or gid! If admin readds an user using the old name (indicate in smb.conf), what problems can occur? NT mantains, after deletion, association between shared file and uiduser and so if admin readded user with the same uid the system restore the right configuration. Of course samba's behavior is the same? Fabio -- Dott. Fabio Marcone 2T srl Telefono +39 - 0871- 540154 Fax +39 - 0871- 571594 Indirizzo Viale B. Croce 573, 66013 Chieti Scalo (CH) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: RE [Samba] gid and uid
Ok, thanks a lot! Fabio Alle 17:46, mercoledì 20 aprile 2005, [EMAIL PROTECTED] ha scritto: [EMAIL PROTECTED] a écrit sur 20/04/2005 17:40:28 : thanks for your answer! hi! I'm studing samba as PDC (with ldap backend) and I would know: - gid and uid are useful in samba? in other words: if pdc admin knows users' uids, he can recovery some wrong situations ? Samba use unix account. OK Example: if a user was cancelled and then readded, if his uid changes implies some troubles with shared files? YES. how? can you explain me why? I know that privileges are set in smb.conf using user and group name, not uid or gid! The acces to files and directory is verify at unix level, samba make only the gateway between windows and linux. If the user is deleted, and after the admin re-add the same user with a other uid, the user cannot acces to the file and directory. If admin readds an user using the old name (indicate in smb.conf), what problems can occur? NT mantains, after deletion, association between shared file and uiduser and so if admin readded user with the same uid the system restore the right configuration. Of course samba's behavior is the same? Fabio -- Dott. Fabio Marcone 2T srl Telefono +39 - 0871- 540154 Fax +39 - 0871- 571594 Indirizzo Viale B. Croce 573, 66013 Chieti Scalo (CH) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 -- Dott. Fabio Marcone 2T srl Telefono +39 - 0871- 540154 Fax +39 - 0871- 571594 Indirizzo Viale B. Croce 573, 66013 Chieti Scalo (CH) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] change samba user password in WinXP
Hi! I'm using samba3+ldap like PDC. I need to change user password using account management in WinXP, but xp show me an error like User haven't rights to change password, but I want to change my own password (user logged wants to change his password) and I'm logged as samba administrator! How I can solve it? Thanks, Fabio -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] printers detect
Hi! I'm designing a web interface to manage samba server (users, shares, printers) and I would known how i can detect printers available in samba. In that way, admin can set rights and others params of a selected printer. Thanks, Fabio -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] SWAT first login
Moreover log.swat contains this error: [2005/03/24 12:46:51, 0] auth/pampass.c:smb_pam_passcheck(810) smb_pam_passcheck: PAM: smb_pam_auth failed - Rejecting User root ! Anyone can help me? Thanks, Fabio On Mar 23, 2005 12:33 PM, Fabio Marcone [EMAIL PROTECTED] wrote: Hi! I'm looking for a GUI for samba users management. I would try swat but I don't succeed to login the first time (I try admin ldap password and root password). Why? Thanks, Fabio -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] SWAT first login
Hi! I'm looking for a GUI for samba users management. I would try swat but I don't succeed to login the first time (I try admin ldap password and root password). Why? Thanks, Fabio -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
