Re: [Samba] LDAP issues
On Thu, 26 Jan 2012 14:59:24 -0300, Alex Moen al...@ndtel.com wrote: ldap usersuffix = ou=People maybe the problem is: this line must be ldap user suffix = ou=People Sorry, my english is not good. -- Jorge C. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] LDAP issues
Ok, I think that is the @ in the UID. Try creating a user without the @ and test the sambaconf with this. On Thu, 26 Jan 2012 15:46:30 -0300, Alex Moen al...@ndtel.com wrote: On Jan 26, 2012, at 12:42 PM, Jorge Concha C. wrote: On Thu, 26 Jan 2012 14:59:24 -0300, Alex Moen al...@ndtel.com wrote: ldap usersuffix = ou=People maybe the problem is: this line must be ldap user suffix = ou=People Sorry, my english is not good. -- Jorge C. OK, fixed that, but it didn't help... Same issue. Alex -- Jorge C. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] 20 char usersname on windows 7
Hi Friends, I have a samba PDC running as a domain of 200 pc. Samba uses LDAP as a backend. The windows are attached to windows xp domain, and we have no problem. Now we need to migrate from Windows XP to Windows 7. The problem is that we have users whose name is longer than 20 characters. In tests we have done, these users (username 20 chars), can not log in to computers with Windows 7. However, in Windows XP, they log in without problems. Obviously, users with less than 20 characters log in without problems on windows7. Any ideas? Thanks -- Jorge C. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Adding LDAP Backend to Samba
On Thu, 03 Feb 2011 20:16:00 -0300, J. Echter j.ech...@elektro-mayer-echter.de wrote: User SID: S-1-5-21-3842863818-2180709222-141296495-1001 Primary Group SID:S-1-5-21-3842863818-2180709222-141296495-513 Another thing to check: User SID: S-1-5-21-3842863818-2180709222-141296495-1001 - command 'net getlocalsid' must response S-1-5-21-3842863818-2180709222-141296495 (if not, run 'net setlocalsid S-1-5-21-3842863818-2180709222-141296495'). And in your LDAP server you must to have an entry as this: sambaDomainName=your domain name with sambaSID=S-1-5-21-3842863818-2180709222-141296495 AND: I had problems with users who do not have the attribute ambaPwdLastSet Then, all my users have sambaPwdLastSet = 1 Good Luck -- Jorge C. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Adding LDAP Backend to Samba
maybe you need to run smbpasswd -w passwd for cn=admin,dc=workgroup,dc=local On Thu, 03 Feb 2011 16:56:37 -0300, J. Echter j.ech...@elektro-mayer-echter.de wrote: Am 03.02.2011 20:43, schrieb Gaiseric Vandal: Does pbdedit -Lv show the users, groups and machines? Hi, no it doesn't. User Search failed! Cheers. -- Jorge C. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] NFS and Samba not working since Samba 3.0.24 ?
Hi, Here we had the same problem. We solved by installing the package lockdev (centos 5). Jorge C. On Fri, 31 Oct 2008 11:28:28 -0300, Anand Kumria [EMAIL PROTECTED] wrote: Hi, I have an NFS share on a NAS device which is mounted on my Samba server. I then share this using Samba. Client who connect are not able to obtain read-write locks. This setup works fine when the Samba version is 3.0.24 (Debian version 3.0.24-6etch9) but anything later and it fails. All systems are running Linux 2.6.18 (or later) in case anyone is wondering. Has anyone else seen the same failure sceanario? Thanks, Anand -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] one ldap server and multiple samba PDC domains
Yes, it is possible. You must have multiple sambaDomainName entries, all with same SID value. I have this, and works very good. Jorge C. PD. Sorry for my bad english. On Mon, 20 Oct 2008 02:27:39 -0300, Mohammad Reza Hosseini [EMAIL PROTECTED] wrote: hello Is it possible to have multiple samba servers so multiple samba PDC domains but just one ldap server ? (so users in ldap can login to diffrent domains but we add them just one time) if yes how? thanks. -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] one ldap server and multiple samba PDC domains
All my users can log in at all my 3 domains. Responses: All sambaDomainName entries: sambaSID=S-1-5-21-3209642587-1536209094-3825437934 same for all domains. users: user1 = S-1-5-21-3209642587-1536209094-3825437934-4801 user2 = S-1-5-21-3209642587-1536209094-3825437934-4802 user3 = S-1-5-21-3209642587-1536209094-3825437934-4803 etc. net getdomainsid @ all machines: SID for domain SAMBA1 is: S-1-5-21-3209642587-1536209094-3825437934 SID for domain DOMAIN1 is: S-1-5-21-3209642587-1536209094-3825437934 SID for domain SAMBA2 is: S-1-5-21-3209642587-1536209094-3825437934 SID for domain DOMAIN2 is: S-1-5-21-3209642587-1536209094-3825437934 SID for domain SAMBA3 is: S-1-5-21-3209642587-1536209094-3825437934 SID for domain DOMAIN3 is: S-1-5-21-3209642587-1536209094-3825437934 On Mon, 20 Oct 2008 11:42:45 -0300, Norberto Bensa [EMAIL PROTECTED] wrote: Quoting Jorge Concha C. [EMAIL PROTECTED]: You must have multiple sambaDomainName entries, all with same SID value. What sambaSID do your users have? What does net getdomainsid return on your domains? I'm asking because I have 4 domains (long history, don't ask) and I'm currently moving them from tdbsam to ldapsam. I have no problems with my users because no user is repeated in two domains except for one soporte. I need this user soporte to be able to log in my 4 domains. Thanks, Norberto This message was sent using IMP, the Internet Messaging Program. -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] one ldap server and multiple samba PDC domains
On Mon, 20 Oct 2008 14:20:16 -0300, Norberto Bensa [EMAIL PROTECTED] wrote: Quoting Jorge Concha C. [EMAIL PROTECTED]: All my users can log in at all my 3 domains. Of course. All your domains have the same SID... Why did you chose this setup instead of domain trusts? Wouldn't a two-way trust give the same functionality? I really do not know. I never thought in a configuration of two-way trust. In addition, my system began as a single domain, then, because the great load on the machine, I had to duplicate it and then tripled. Jorge C. PD. Tu hablas español ? Thanks! You are welcome. Norberto -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Using Samba PDC from Netapp filers ?
On Thu, 09 Oct 2008 08:29:10 -0400, Frank Bonnet [EMAIL PROTECTED] wrote: Hello Anyone has succeeded to use a Samba PDC erver as a PDC from a Netapp filer to use CIFS direct connections ? ? I did not succeeded, I get this error (/var/log/samba/log.nas): [2008/10/10 12:23:14, 0] rpc_server/srv_netlog_nt.c:_net_auth_2(478) _net_auth2: creds_server_check failed. Rejecting auth request from client NAS machine account NAS$ Any help would be appreciated -- Jorge C. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba LDAP entries for Password Change
Hi... sorry for my bad english. - when a new account is created, the user immediately must change the password when [s]he first logs in; - after that, the password shall expire after x days. sambaMaxPwdAge = number of seconds (60 x 60 x 24 x nDays) sambaPwdLastSet = set to '0' at create the account. good luck Jorge C. On Tue, 16 Sep 2008 10:27:53 -0400, Albrecht Dreß [EMAIL PROTECTED] wrote: Hi all, I have a question regarding the enforced change of passwords in Samba 3.0.28 (coming with Ubuntu Hardy) in connection with a LDAP backend. In particular, I am looking for a documentation how the fields sambaMinPwdAge, sambaMaxPwdAge (from sambaDomain), sambaPwdCanChange and sambaPwdMustChange (from sambaSAMAccount) interact. I would like to have the following: - when a new account is created, the user immediately must change the password when [s]he first logs in; - after that, the password shall expire after x days. Unfortunately, I tried a number of combinations without success. Everything seems to be controlled by the sambaMaxPwdAge setting (seconds relative to sambaPwdLastSet when the password must be changed?), and the other entries seem to be irrelevant? Any documentation/pointer would be welcome! Thanks, Albrecht. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba