RE: [Samba] Windows XP SP2 (Official) and Samba 3
I've looked through the archives and the only information I can find regarding Windows XP SP2 is RC2. Has anyone out there had ANY experience with XP SP2 Official and a Samba 3 domain? Like what? I installed the final release version last night and have had no problems John -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] hidding mapped drives with samba
Hi everybody is there a way to hide the mapped drives on a samba server even for the client users who has access to it.??? Do you mean something like [share$] comment = \\server\share$ is a hidden share -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Samba+LDAP - so close yet so far :)
LINE 154: winxp (192.168.1.18) connect to service IPC$ initially as user Administrator (uid=0, gid=512) (pid 4447) LINE 468 - 475: [2004/07/15 20:43:06, 3] smbd/service.c:close_cnum(833) winxp (192.168.1.18) closed connection to service Your Administrator has a uid=0 so make sure that you're not mapping root = administrator in /etc/samba/smbusers cat /etc/samba/smbusers # Unix_name = SMB_name1 SMB_name2 ... #root = administrator admin nobody = guest pcguest smbguest John -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Windows XP , Fedora 1 and Home Network!?!?!
This is my smb.conf file...thanks for the help! # This is the main Samba configuration file. You should read the # smb.conf(5) manual page in order to understand the options listed # here. Samba has a huge number of configurable options (perhaps too # many!) most of which are not shown in this example # # Any line which starts with a ; (semi-colon) or a # (hash) # is a comment and is ignored. In this example we will use a # # for commentry and a ; for parts of the config file that you # may wish to enable # # NOTE: Whenever you modify this file you should run the command testparm # to check that you have not made any basic syntactic errors. # I would suggest that you read closely the above section of your smb.conf file. Particularly the part about comments, you do not appear to have any shares apart from [homes] defined, also run testparm You need something like the following in your smb.conf (Note no ;'s in the first col.) [public] path = /usr/somewhere/else/public public = yes only guest = yes writable = yes printable = no -- John #=== Global Settings = [global] # workgroup = NT-Domain-Name or Workgroup-Name workgroup = HOMEWRECKERS # server string is the equivalent of the NT Description field server string = Linux Server # This option is important for security. It allows you to restrict # connections to machines which are on your local network. The # following example restricts access to two C class networks and # the loopback interface. For more examples of the syntax see # the smb.conf man page ; hosts allow = 192.168.1. 192.168.2. 127. 192.168.0.102 # if you want to automatically load your printer list rather # than setting them up individually then you'll need this printcap name = /etc/printcap load printers = yes # It should not be necessary to spell out the print system type unless # yours is non-standard. Currently supported print systems include: # bsd, sysv, plp, lprng, aix, hpux, qnx ; printing = bsd # Uncomment this if you want a guest account, you must add this to /etc/passwd # otherwise the user nobody is used ; guest account = pcguest # this tells Samba to use a separate log file for each machine # that connects log file = /var/log/samba/%m.log # Put a capping on the size of the log files (in Kb). max log size = 50 # Security mode. Most people will want user level security. See # security_level.txt for details. security = user # Use password server option only with security = server ; password server = NT-Server-Name # Password Level allows matching of _n_ characters of the password for # all combinations of upper and lower case. ; password level = 8 ; username level = 8 # You may wish to use password encryption. Please read # ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation. # Do not enable this option unless you have read those documents ; encrypt passwords = no ; smb passwd file = /etc/samba/smbpasswd # The following are needed to allow password changing from Windows to # update the Linux system password also. # NOTE: Use these with 'encrypt passwords' and 'smb passwd file' above. # NOTE2: You do NOT need these to allow workstations to change only #the encrypted SMB passwords. They allow the Unix password #to be kept in sync with the SMB password. ; unix password sync = Yes ; passwd program = /usr/bin/passwd %u ; passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *passwd:*all*authentication*tokens*updated*successfully* # Unix users can map to different SMB User names ; username map = /etc/samba/smbusers # Using the following line enables you to customise your configuration # on a per machine basis. The %m gets replaced with the netbios name # of the machine that is connecting ; include = /etc/samba/smb.conf.%m # Most people will find that this option gives better performance. # See speed.txt and the manual pages for details socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 # Configure Samba to use multiple interfaces # If you have multiple network interfaces then you must list them # here. See the man page for details. ; interfaces = 192.168.12.2/24 192.168.13.2/24 # Configure remote browse list synchronisation here # request announcement to, or browse list sync from: # a specific host or from / to a whole subnet (see below) ; remote browse sync = 192.168.3.25 192.168.5.255 # Cause this host to announce itself to local subnets here ; remote announce = 192.168.1.255 192.168.2.44 # Browser Control Options: # set local master to no if you don't want Samba to become a master # browser on your network. Otherwise the normal election rules apply ; local master = no # OS Level determines the precedence of this server in master browser # elections. The default
RE: [Samba] Samba 3 and LDAP - Error loading profiles
Have a look at this http://support.microsoft.com/default.aspx?scid=kb;en-us;327462 John -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Samba 3.0.4 PDC w/ LDAP - XP client
I am aware of the fact that I am missing something which will seem clear to me AFTER I get pointed to it. That is the whole truth about learning, isn't it? thanks ... Ok using 3.0.4 and the latest smbldap-tools and you've used smbldap-populate to populate your ldap tree Try this.. edit /etc/samba.smb.conf and comment out the root map ie; [EMAIL PROTECTED] samba]# cat smbusers # Unix_name = SMB_name1 SMB_name2 ... #root = administrator admin nobody = guest pcguest smbguest then set the password for the 'Administrator' smbpasswd Administrator. smbldap-populate creates a user named 'Administrator' with a uid=0 John -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Cannot create fake user root account
What I am having problems with is connecting the winBlows machines to the domain controller. This is driving me up a wall. I was following this HOWTO: http://www.idealx.org/prj/samba/samba-ldap-howto.pdf to the T. And when I get to the point to create a 'fake user root' account which will allow the NT workstations to connect I get the following error. I do not know where to go from here. Can anyone help? This is what I did useing lastest smbldap-tools (0.8.4) edit /etc/samba/smbusers and comment out root = administrator admin ie # Unix_name = SMB_name1 SMB_name2 ... #root = administrator admin nobody = guest pcguest smbguest run smbldap-populate then 'smbpasswd Administrator' The smbldap-tools create an Account in the LDAP database named Administrator with a uid=0 and a gid=512 (Domain Admins). Once this account has a valid password you can use it to administer the Samba network and join machines to the network. Regards John -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] roaming profile problem on Samba 3.0.2 with XP
have you tried this http://support.microsoft.com/default.aspx?scid=kb;en-us;327462 John -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Microsoft hotfix MS04-011, breaks Samba password change.
Hi Jeremy, I incorperated the patch to Gerald Carter's samba3 rpm spec file. (Packager: Gerald Carter [Samba-Team] [EMAIL PROTECTED]) Rebuilt on Redhat 9 distributed (via yum)-- problem sloved. Thankyou to you and all of the Samba Team. Regards John -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] XP profiles problem - Samba 3.0.3 LDAP
[EMAIL PROTECTED] profiles]# ls -la total 16 drwxr-xrwt4 root Domain Admins 4096 May 4 13:03 . drwxr-xr-x4 root Domain Admins 4096 May 4 10:05 .. drwx-- 13 debraDomain Users 4096 May 4 12:52 debra drwx-- 14 root Domain Users 4096 May 4 13:14 john As you can see Debra's profile is created with the correct ownership(?) but John's is created as owner Administrator/root. Now the only difference is that John is a Member of Domain Admins although both john debra's primary group is 513 Domain Users [profiles] # chmod 1757 /domain/profiles path = /domain/profiles csc policy = disable profile acls = yes writeable = yes browseable = no create mask = 0600 directory mask = 0700 The next issue is unless I set the policy Do not check check for user ownership of Roaming profile folders to 'enabled' ie no checking. Debra can not access her remote profile (even though she is the owner) while john can access his. Can anybody shed some light on this issue. Regards John -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Windows XP client - intermittent 'network name cannot befound' loading profile
But did you try a base install pre service pack 1a? Try this fix -- it appears to have sloved my problems http://support.microsoft.com/default.aspx?scid=kb;en-us;327462 Regards John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Michael Vermaes Sent: Monday, 3 May 2004 12:23 PM To: [EMAIL PROTECTED] Subject: [Samba] Windows XP client - intermittent 'network name cannot befound' loading profile I have seen a number of postings which seem similar to the problem I am having, but am yet to find a fix for my situation. Problem is as follows: - Samba 3.0.2 rpm installed on Red Hat Enterprise ES 3.0, configured as PDC with ldapsam backend - Windows XP Professional client joined to the Samba domain. The XP client successfully joins the domain and can browse and access shares (including the user's profile). The first login (as a domain user) always succeeds, following logins randomly fail with the message: Windows cannot locate the server copy of your roaming profile and is attempting to log you on with your local profile. Changes to the profile will not be copied to the server when you logoff. Possible causes of this error include network problems or insufficient security rights. If this problem persists, contact your network administrator. DETAIL - The network name cannot be found. The problem seems to be as described in the Microsoft knowledge base article number 831651, however I have obtained the hotfix from them and still have the issue. I have tried a base install of XP (SP 1a) and also downloading and installing all critical Windows Updates. A Windows 2000 Professional (SP 2) client joined to the same domain works consistently in this situation with no problem. Any advice would be appreciated as this is the final issue I need to resolve to migrate our Active Directory domain to Samba/OpenLDAP. This seems to be an issue specifically with XP logging into Samba, since W2K works consistently, therefore I believe my config is mostly correct, however I can post the details if necessary. Thanks. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Error loading profiles -- Samba 3.02a LDAP
Try to make a tail -f /var/log/samba/log.yourmachine during the login and take a look to all errors. You can also try to deinstall your Virusscanner or other Software, who read or write data in the Profile. matze Well the only error in the log is [2004/04/24 18:02:50, 2] rpc_parse/parse_prs.c:netsec_decode(1575) netsec_decode: FAILED: packet sequence number: and I'm not sure what that means but it looks to me like it's before the profile is accessed. John :02:45, 2] smbd/sesssetup.c:setup_new_vc_session(591) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2004/04/24 18:02:45, 2] smbd/sesssetup.c:setup_new_vc_session(591) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2004/04/24 18:02:45, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:02:50, 2] smbd/sesssetup.c:setup_new_vc_session(591) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2004/04/24 18:02:50, 2] smbd/sesssetup.c:setup_new_vc_session(591) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2004/04/24 18:02:50, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:02:50, 2] rpc_parse/parse_prs.c:netsec_decode(1575) netsec_decode: FAILED: packet sequence number: [2004/04/24 18:02:50, 2] lib/util.c:dump_data(1830) [000] 2E 0C 52 BB F7 0B D6 49 ..R?.OI [2004/04/24 18:02:50, 2] rpc_parse/parse_prs.c:netsec_decode(1577) should be: [2004/04/24 18:02:50, 2] lib/util.c:dump_data(1830) [000] 00 00 00 00 80 00 00 00 [2004/04/24 18:02:50, 0] rpc_server/srv_pipe.c:api_pipe_netsec_process(1371) failed to decode PDU [2004/04/24 18:02:50, 0] rpc_server/srv_pipe_hnd.c:process_request_pdu(605) process_request_pdu: failed to do schannel processing. [2004/04/24 18:02:50, 2] passdb/pdb_ldap.c:init_sam_from_ldap(462) init_sam_from_ldap: Entry found for user: mu$ [2004/04/24 18:02:50, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:02:50, 2] passdb/pdb_ldap.c:init_sam_from_ldap(462) init_sam_from_ldap: Entry found for user: debra [2004/04/24 18:02:50, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [debra] - [debra] - [debra] succeeded [2004/04/24 18:02:51, 2] passdb/pdb_ldap.c:init_sam_from_ldap(462) init_sam_from_ldap: Entry found for user: debra [2004/04/24 18:02:51, 2] auth/auth.c:check_ntlm_password(305) check_ntlm_password: authentication for user [debra] - [debra] - [debra] succeeded [2004/04/24 18:02:51, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:02:51, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:02:51, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:02:51, 1] smbd/service.c:make_connection_snum(705) mu (172.30.128.4) connect to service profiles initially as user debra (uid=1001, gid=513) (pid 12984) [2004/04/24 18:02:51, 2] rpc_server/srv_samr_nt.c:_samr_lookup_domain(2461) Returning domain sid for domain FOXY - S-1-5-21-1668551638-3811399965-3946081115 [2004/04/24 18:02:51, 2] passdb/pdb_ldap.c:init_sam_from_ldap(462) init_sam_from_ldap: Entry found for user: debra [2004/04/24 18:02:51, 2] passdb/pdb_ldap.c:init_sam_from_ldap(462) init_sam_from_ldap: Entry found for user: debra [2004/04/24 18:02:51, 2] passdb/pdb_ldap.c:init_sam_from_ldap(462) init_sam_from_ldap: Entry found for user: debra [2004/04/24 18:03:03, 1] smbd/service.c:close_cnum(887) mu (172.30.128.4) closed connection to service profiles [2004/04/24 18:03:53, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:03:53, 1] smbd/service.c:make_connection_snum(705) mu (172.30.128.4) connect to service netlogon initially as user debra (uid=1001, gid=513) (pid 12984) [2004/04/24 18:03:56, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:03:56, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:03:56, 1] smbd/service.c:make_connection_snum(705) mu (172.30.128.4) connect to service debra initially as user debra (uid=1001, gid=513) (pid 12984) [2004/04/24 18:03:56, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:03:56, 2] lib/access.c:check_access(324) Allowed connection from (172.30.128.4) [2004/04/24 18:03:56, 1] smbd/service.c:make_connection_snum(705) mu (172.30.128.4) connect to service profiles initially as user debra (uid=1001, gid=513) (pid 12984) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] No local SID -- net getlocalsid fails
Excellent!!! Glad it worked out... Just curious... Did you run net rpc info prior to adding a user? If so, did it return the proper SID? Hi Marcus, Since I could repoduce the problem I tried a new setup. As you can see 'net rpc info' returned no information. However as soon as I'd run 'net rpc info' 'net getlocalsid' worked. [EMAIL PROTECTED] samba]# net getlocalsid [2004/04/21 23:32:09, 0] utils/net.c:net_getlocalsid(422) Can't fetch domain SID for name: RHO [EMAIL PROTECTED] samba]# net rpc info [EMAIL PROTECTED] samba]# net getlocalsid SID for domain RHO is: S-1-5-21-xx-xx-x [EMAIL PROTECTED] samba]# net rpc info Regards John. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] No local SID -- net getlocalsid fails
Hi Marcus, The name OMEGA was just from a previous test. I do not know if I found the problem but after I added a user with smbpasswd it started working! ie; smbpasswd -a fred Regards John Try using 'net rpc info. Also, which computer is/was named OMEGA? Was this the original name of the server? Marcus O. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] No local SID -- net getlocalsid fails
Hi, I'm trying to get Samba 3.0.2a running on a redhat 9 system. No matter how long I leave samba running it fails to generate a local SID for my network and I'm stumpped. The following is a dump of my smb.conf [EMAIL PROTECTED] samba]# net getlocalsid [2004/04/18 14:59:21, 0] utils/net.c:net_getlocalsid(422) Can't fetch domain SID for name: OMEGA Regards John [EMAIL PROTECTED] samba]# testparm Load smb config files from /etc/samba/smb.conf Processing section [homes] Processing section [printers] Loaded services file OK. Server role: ROLE_DOMAIN_PDC Press enter to see a dump of your service definitions # Global parameters [global] workgroup = FOXY netbios name = RALPH server string = PDC [Samba %v] interfaces = 172.30.128.0/17, 172.30.64.0/18 passdb backend = tdbsam log level = 10 log file = /var/log/samba/log.%m max log size = 50 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 domain logons = Yes os level = 33 preferred master = Yes domain master = Yes wins support = Yes hosts allow = 172.30., 127. [homes] comment = Home Directories read only = No browseable = No [printers] comment = All Printers path = /var/spool/samba printable = Yes -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba