Re: [Samba] getent and a lot of users
Hello, On 16 August 2010 14:38, raveenpl ravee...@gmail.com wrote: Hi, In my environment I have windows ads domain with 180k users. I use Samba 3.5.4 and I noticed that not always all users are returned when I use getent command (sometimes it is half of whole list, sometimes this list is empty). Anybody has similar problem? ads domain - where do you pull your data from? Is it OpenLDAP or AD? Check if it's not your backend that limits the size of the answer. OpenLDAP has a configuration directive called sizelimit (more in man slapd.conf). That would be my first suggestion. I also recommend ngrep for checking things up. Regards, Michal -- View this message in context: http://old.nabble.com/getent-and-a-lot-of-users-tp29449147p29449147.html Sent from the Samba - General mailing list archive at Nabble.com. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Youtube Video
Hello, On 12 August 2010 03:38, ITPFS oota t-o...@dh.jp.nec.com wrote: On Mon, Aug 09, 2010 at 05:18:41PM +1200, David Harrison wrote: For those interested, I found David's screencast on YouTube here: http://www.youtube.com/watch?v=8tYnjp_BleI I watched it. But, screen size too large (1280x1024?),I can't recognize character. If you make another video, please set more small screen size like 800x600. I have just watched it - make sure you set the quality to 720p and enable full screen. I was watching it on 1680x1050 and everything was looking really fine - no problems with letters being too small. Regards, Michal -- --- Oota Toshiya --- t-oota at dh.jp.nec.com NEC Systems Software Operations Unit Shiba,Minato,Tokyo IT Platform Solutions Division Japan,Earth,Solar system (samba-jp/ldap-jp Staff,mutt-j/samba-jp postmaster) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] ldap? Samba? Nss?
Hello, If you want to avoid using get try setting ldapsam:trusted = yes. This way Samba will fetch user info directly from LDAP instead of going through the getpwent and others which reaally pull a lot of data. That should reduce the time needed to login a bit (at least that worked for me). Regards, Michal 2009/8/27 Ryan Suarez ryan.sua...@sheridanc.on.ca: Just curious, Are you using samba with nss_ldap and pam_ldap for user lookups and authentication? sgm...@mail.bloomfield.k12.mo.us wrote: It seems my logins are taking a long time to get logged in. I am guessing that it is worse when classes start and a lot of the kids try to login at once. My old server did not seem to have this problem though and we have the same number of students. Where should I start looking at this? I am guessing that it is ldap, but want to make sure. If I log in at a computer and go to start-run and type \\server, it may take 1-2 minutes until I can see my shares which is the same thing the students are seeing when logging into the domain. I just wanted to leave any profile copying out of the equation so I just did it this way. I noticed this first on my batch user add program for adding users to ldap/samba. The program reads in the users and groups with getpwent and getgrent and it really takes a long time. Any suggestions of what to start looking for would be appreciated. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Antwort: Re: central PDC + remote BDCs: LDAP strategy, my lack of comprehension
Hello Sven, How about using multiple password servers? A copy-paste from man: Example: password server = NT-PDC, NT-BDC1, NT-BDC2, * This way you could have two password servers in two locations. If one fails the other will take over (it sounds easy, but make sure you read it carefully in the manual as there are some restrictions regarding this behavior). Regards, Michal 2009/8/21 sven.eh...@comdok.de: Thanks Michael, this did advance my progress. With “domain master = no”, “password server” set to the central server and “passdb backend” pointing to the local LDAP replica, my XP client now contacts the central SAMBA server when joining the domain. But now it is always logging on to the central server and not using the other, remote samba server at all (which honestly is in the same LAN in my testing environment). This is unwanted, partly because the logon script resides on the remote system and to reduce network traffic between client and central server (which would be fragile WAN traffic once rolled out). Is there any way I can influence to which server the client logs on to? I tried changing the central server's option “domain logons” to “no”, but this had the strange effect of the central server creating a second LDAP sambaDomainName entry with its NetBIOS name as domain name. Clients could not log on to the domain anymore because of conflicting domain portions (SID trouble). I had to change it back. Best regards Sven Ehret Von: Michal Dobroczynski michal.dobroczyn...@gmail.com An: sven.eh...@comdok.de Kopie: samba@lists.samba.org Datum: 20.08.2009 14:50 Betreff: Re: [Samba] central PDC + remote BDCs: LDAP strategy, my lack of comprehension Hello Sven, I have the following structure here: - one PDC talking to RW OpenLDAP - three BDCs talking to RO OpenLDAP replica Basically I am using additional BDCs as file servers - and so far it works fine. Please take a look on password server and passdb backend (here you specify the RO replica). Think also about ldapsam:trusted = yes (large performance gain). One of the BDCs is located 500km from where I am right now - and there is also a replica out there (accessed by Samba running out there to get all user/group info - but password server is located here). According to a much older e-mail (when I had a question about BDCs) - a copy-paste from Volker's reply: --- copy paste --- On Fri, Oct 05, 2007 at 10:15:02PM +0200, Michal Dobroczynski wrote: Well - what I have discovered is that setting domain logons = Yes domain master = No seems to solve the problem. ... because this *is* the only way to tell Samba to be a BDC. This must be somewhere in the docs. Volker --- copy paste --- I hope this helps a bit. Regards, Michal 2009/8/20 sven.eh...@comdok.de: Hello, I am trying to figure out how to implement a samba domain in a number of remote offices around the world with partly bad and often interrupted WAN connections/VPNs. The goal is to administer the directory from the central data center. My obvious choice would be to set up a central server with SAMBA+OpenLDAP+smbldap-tools and in each remote office a SAMBA server with OpenLDAP as a read-only slave from the central master. Although I seem to make progress, it seems that the more time I invest in this project, the more questions emerge. My latest issue made me create this mailman account. My question is: When the remote SAMBA server only talks to its own local, read-only LDAP slave, how is it going to change user/machine passwords or add machine accounts (when joining the domain)? In my test setup an XP client inisisted on trying to join the BDC, failing because a) smbldap-tools is not installed or b) it could not write to the slave LDAP directory. I surely could configure the remote SAMBA to talk to the central OpenLDAP service, but then I would not need LDAP replication and would not have a failover in case the WAN link goes down. There was the SAMBA option to have multiple tdbsam backends but this is not supported anymore. I hope that my explanation does enable somebody to give me a hint understanding what can/should/must be done. Kind regards Sven Ehret -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] central PDC + remote BDCs: LDAP strategy, my lack of comprehension
Hello Sven, I have the following structure here: - one PDC talking to RW OpenLDAP - three BDCs talking to RO OpenLDAP replica Basically I am using additional BDCs as file servers - and so far it works fine. Please take a look on password server and passdb backend (here you specify the RO replica). Think also about ldapsam:trusted = yes (large performance gain). One of the BDCs is located 500km from where I am right now - and there is also a replica out there (accessed by Samba running out there to get all user/group info - but password server is located here). According to a much older e-mail (when I had a question about BDCs) - a copy-paste from Volker's reply: --- copy paste --- On Fri, Oct 05, 2007 at 10:15:02PM +0200, Michal Dobroczynski wrote: Well - what I have discovered is that setting domain logons = Yes domain master = No seems to solve the problem. ... because this *is* the only way to tell Samba to be a BDC. This must be somewhere in the docs. Volker --- copy paste --- I hope this helps a bit. Regards, Michal 2009/8/20 sven.eh...@comdok.de: Hello, I am trying to figure out how to implement a samba domain in a number of remote offices around the world with partly bad and often interrupted WAN connections/VPNs. The goal is to administer the directory from the central data center. My obvious choice would be to set up a central server with SAMBA+OpenLDAP+smbldap-tools and in each remote office a SAMBA server with OpenLDAP as a read-only slave from the central master. Although I seem to make progress, it seems that the more time I invest in this project, the more questions emerge. My latest issue made me create this mailman account. My question is: When the remote SAMBA server only talks to its own local, read-only LDAP slave, how is it going to change user/machine passwords or add machine accounts (when joining the domain)? In my test setup an XP client inisisted on trying to join the BDC, failing because a) smbldap-tools is not installed or b) it could not write to the slave LDAP directory. I surely could configure the remote SAMBA to talk to the central OpenLDAP service, but then I would not need LDAP replication and would not have a failover in case the WAN link goes down. There was the SAMBA option to have multiple tdbsam backends but this is not supported anymore. I hope that my explanation does enable somebody to give me a hint understanding what can/should/must be done. Kind regards Sven Ehret -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Copy *just* user accounts from LDAP?
Hello, 2009/6/23 Adam Williams awill...@mdah.state.ms.us: ldapsearch -v -x -h roark.mdah.state.ms.us -D cn=Manager,dc=mdah,dc=state,dc=ms,dc=us -w -b ou=People,dc=mdah,dc=state,dc=ms,dc=us somefile scp somefile over. load it with slapadd or ldapadd. If you plan to use slapadd - then dump the LDAP database with slapcat command. It is the recommended way of exporting/importing data into OpenLDAP. Then you can post-process the file and remove machine accounts (I have them under ou=Computers for example). For keeping account info in sync - you can always setup the easiest replication scheme - slurpd. Comes as part of OpenLDAP. But that's for the whole tree - if you wish to replicate only parts of it I think syncrepl is the way to go (AFAIR slurpd can't perform selective replication). Periodical slapcat/slapadd is a solution, but as the DB will be growing it will be taking more and more time to setup the database (depends on the number of entries, configured indexes etc.). And during these DB syncs you have to disable slapd, which means samba clients will also have problems connecting at that particular time. Regards, Michal jo...@primebuchholz.com wrote: Greetings All, I have a Samba-controlled domain, with everything in LDAP. I also have an off-site server that I rsync all our files to every couple hours. What I'd like to do is set up a new Samba domain on the off-site server so users can log into it for disaster recovery purposes - and I'd like to keep the user account information synchronized with the main server so user's passwords are the same, etc. - while leaving behind workstation accounts, etc. Does anyone have any ideas on how best to approach this? I guess what I'm asking is, I'm OK with slapcat/slapadd'ing periodically from the main server to the off-site server, but does anyone have ideas for how to filter just the user accounts into the LDIF? Thanks in advance, -John -- Please consider the environment before printing this e-mail. This e-mail is intended only for the named person or entity to which it is addressed and contains valuable business information that is privileged, confidential and/or otherwise protected from disclosure. Dissemination, distribution or copying of this e-mail or the information herein by anyone other than the intended recipient, or an employee, or agent responsible for delivering the message to the intended recipient, is strictly prohibited. All contents are the copyright property of the sender. If you are not the intended recipient, you are nevertheless bound to respect the sender's worldwide legal rights. We require that unintended recipients delete the e-mail and destroy all electronic copies in their system, retaining no copies in any media. If you have received this e-mail in error, please immediately notify us by calling our Help Desk at (603) 433-1143, or e-mail to i...@primebuchholz.com. We appreciate your cooperation. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Make CIFS look like NFS
Hello, And if you want some unix-like features on top, make sure unix extensions is set to yes. But be careful with that and test it beforehand on all systems (different operating systems I mean). It can sometimes break little things for Mac/Win. Regards, Michal 2009/6/3 Brian Krusic br...@krusic.com: You can have an NFS mount on your Nix box like /JOBS/stuff and a CIFS mount on XP like \\JOBS\stuff. In this case, JOBS is the Samba server name. This is how I maintain the same paths in scripts on diff platforms. Al you have to ensure is that your app will obey UNC paths so that a drive letter is never saved out in the file. - Brian On Jun 3, 2009, at 11:38 AM, Daniel L. Miller wrote: Is it possible to make CIFS look like NFS via some configuration/mount options? What I mean is, from a client point of view, will the mounted share behave EXACTLY like NFS will? -- Daniel -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Make CIFS look like NFS
Hello, Thanks for the details - they really change completely the whole background ;) Anyway, there's not much I can help in such situation - but see my comments below. Maybe they will help (convince?) in some way. 2009/6/4 Daniel L. Miller dmil...@amfes.com: Michal Dobroczynski wrote: Hi Daniel, Can you specify what NFS features are important to you in such case? (in other words please define look like NFS) Regards, Michal Oh - you want me to be specific? What fun would that be? ;-) Ok, specifics... I'm trying to run an IMAP mail server (Dovecot) in a virtual machine. However, I do not want the messages stored within the virtual disk. So - the question was how the virtual machine could access those files. Dovecot has been setup and tested with NFS. However, when I asked about compatibility with CIFS, I was told it would probably not work. Testing on my own showed that in fact that this resulted in problems - it appeared temp files would be created and never deleted. I tried a few different smb.conf mount parameters that SEEMED appropriate - but wasn't able to get it to work. So... I am not aware of possible issues (fs calls circus) apart from using : in file names: smb: \mico\ put test:test putting file test:test as \mico\test:test (0,0 kb/s) (average 0,0 kb/s) smb: \mico\ ls . D0 Thu Jun 4 19:48:34 2009 .. D0 Thu Jun 4 19:48:29 2009 TLNVL5~P 0 Thu Jun 4 19:48:40 2009 I guess my specific question would be how can I setup CIFS so Dovecot will work with it as happily as it does with NFS? I think you will have to change your requirements and consider NFS instead of CIFS :( Regards, Michal -- Daniel -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Make CIFS look like NFS
Hi Daniel, Can you specify what NFS features are important to you in such case? (in other words please define look like NFS) Regards, Michal 2009/6/3 Daniel L. Miller dmil...@amfes.com: Is it possible to make CIFS look like NFS via some configuration/mount options? What I mean is, from a client point of view, will the mounted share behave EXACTLY like NFS will? -- Daniel -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Timing in a script
Hello, useradd -c User Name -g groupname -p unixpassword accountname sleep 5s echo -e smbpassword\nsmbpassword\n | pdbedit -a -t -u accountname Did you want something like that? Regards, Michal PS I am using such a trick to make sure LDAP data is distributed among replicas, so that other distributed file servers have specified users when they ask for them... 2009/5/15 Pete Clapham peteclap...@sbcglobal.net: Hi, all -- I am trying to write a script in which I can add users and their samba passwords easily and quickly. It looks something like: useradd -c User Name -g groupname -p unixpassword accountname echo -e smbpassword\nsmbpassword\n | pdbedit -a -t -u accountname If I type the lines from the keyboard, it works fine. However, when I try to execute the script, the pdbedit on the second line reports that there's no unix accountname to apply to samba. I assume that this is because the useradd process hasn't finished when the pdbedit is executed. Is there a way to insure that the useradd has completed its execution before the pdbedit starts? Alternatively is there a way to insert a delay between the two commands to allow the useradd to complete? Thanks. cheers, pete -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Timing in a script
2009/5/15 Volker Lendecke volker.lende...@sernet.de: On Fri, May 15, 2009 at 07:13:42AM -0700, Pete Clapham wrote: Hi, all -- I am trying to write a script in which I can add users and their samba passwords easily and quickly. It looks something like: useradd -c User Name -g groupname -p unixpassword accountname echo -e smbpassword\nsmbpassword\n | pdbedit -a -t -u accountname If I type the lines from the keyboard, it works fine. However, when I try to execute the script, the pdbedit on the second line reports that there's no unix accountname to apply to samba. I assume that this is because the useradd process hasn't finished when the pdbedit is executed. nscd? But nscd should answer properly - in other words - you should get b0rken answer when nscd's db is corrupted? Can you please correct me if I'm wrong... Regards, Michal Volker -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Low cost additional storage on a Samba server
Hello, Some of our shares available via Samba come via NFS and so far we had no problems at all, thus I can recommend you that solution (people have no problems with ØÆÅ characters here). If you are unsure - run little tests, play with different character supports and then roll the real solution. You can even use your laptop for that. On top of that please consider another option - you can just buy a SATA controller and put inside two 1TB disks (if you wish to have a nicely working RAID1 for example). A long lasting setup with redundancy - and with current prices I would consider that affordable, close to low-cost. The best plus is that you get 1TB of space and you don't need a drive bay for n-disks in order to have similar capacity. About TB disks - we have been careful in the beginning, because some time ago TB disks were a bit too new to be used in production (slight paranoids here). But right now I'm about to install Linux on a new server with 4x1TB drives. Regards, Michal 2009/4/28 Jean-Francois Leblond jfleblon...@hotmail.com: Hi, At my client, I installed Samba v3 on a Linux box (Centos 4) with a NT style domain to act as a file server (about 50 Windows clients). It's been running fine for a few years now. It's about to run out of disk space. I was looking for a low cost solution and came across the low-cost NAS that are available now for the soho market. The problem is that some support only smb file access for Linux clients which for my case would be out of the question. Some support NFS mounts from Linux host. I wanted to have some of your comments on presenting a NFS mounted filesystem on my Samba server to Windows clients. Do you think, I would be looking for trouble ? I'm in a french speaking region so we're using accent. My experience with NFS is a little bit old and I want to make sure I wouldn't loose the french accent or spaces in filenames along the way. Of course a direct-attached storage would be a sure thing but I was looking for a lower cost solution. Thanks in advance JF Leblond _ Réinventez comment vous restez en contact avec le nouveau Windows Live Messenger. http://go.microsoft.com/?linkid=9650737-- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Low cost additional storage on a Samba server
Hello, I can only confirm - yes - _use_ linux soft raid... do not believe all these smart RAID5 hw cards :) Regarding the machines bought in 2008 - can you please tell me if you have a separate controller (I am interested in brand/model) for the drives or you are using onboard chip? Regards, Michal 2009/4/28 John Drescher dresche...@gmail.com: On Tue, Apr 28, 2009 at 8:19 AM, Gary Dale garyd...@rogers.com wrote: Easiest way is to implement software RAID on your current server. - add 2 (or more) new drives partitioned identically to your current drive (unless you want to replace your existing drive) - partition type is fd (RAID) - create RAID 5 arrays using the new drives partitions (except for /boot which should be on a RAID 1 array) - common setup is (but use whatever partition setup you currently have): - /boot -- RAID 1 - / -- 20G RAID 5 - /home -- rest of space - tell mdadm that 1 drive is missing from each array - copy the files from each partition on your current drive to the RAID partitions on the new array - update grub to use the new RAID arrays - reboot into new array - if it works, add your original drive (or its replacement) into the RAID array(s) Needless to say, back up everything before starting. Creating a RAID array is safe but mistakes happen and hardware fails. Benefit of RAID over NAS is - don't need to change client setups - can be expanded by adding new drives into array - speed on reads - protection against hard drive failure Google Linux RAID setup for detailed howtos. That is pretty much what I do. In the spring of 2008 I was adding 4 TB+ raid 5 dual core servers (using 750GB drives) with 4 or 8GB of RAM for under $2000 US. Now you can easily get a quad core with 7 or 8TB for the same price.. I highly recommend linux software raid (unlike windows software raid which is horribly broken performance wise) linux software raid performs well. These 4.X TB raid 5 machines I bought in 2008 write at over 200 MB/s and read at 300MB/s and they do this at less than 8 % CPU usage on a single core. John -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Low cost additional storage on a Samba server
Hello John, Thanks for answer. I did not expect that you will mention a board that I have in my home computer :) Regards, Michal 2009/4/28 John Drescher dresche...@gmail.com: On Tue, Apr 28, 2009 at 11:20 AM, Michal Dobroczynski michal.dobroczyn...@gmail.com wrote: Hello, I can only confirm - yes - _use_ linux soft raid... do not believe all these smart RAID5 hw cards :) Regarding the machines bought in 2008 - can you please tell me if you have a separate controller (I am interested in brand/model) for the drives or you are using onboard chip? I am using ASUS M2N (AMD systems) and ASUS P5Q Pro (Intel systems) desktop boards with the onboard 6 to 8 SATA ports. To achieve good write performance I keep the default 64K chunks and tune the stripe cache size echo 2048 /sys/block/md1/md/stripe_cache_size echo 2048 /sys/block/md3/md/stripe_cache_size John -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] 4TB samba display 140GB in Windows
Hello, Have you tried this in smb.conf: dfree command = /path/to/your/tool/saying/magic ? It might be a b0rken Windows control or b0rken anything else, but try to experiment with dfree to see where's the problem. Please post back results as I'm also about to enter TB world with Samba in the coming days... Regards, Michal 2009/4/28 Vnpenguin vnpeng...@vnoss.org: On Wed, Apr 22, 2009 at 15:00, zong yongchun zongyongc...@gmail.com wrote: Hello All, I do a 4TB filesystem for samba,but in Windows it only display 140GB,How to fix it? It's easy! Replace your Windows by a Linux desktop :-) Sorry, can't help -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Changing users home directory location
Hello, When you create symbolic links to your home directories then take a look also on the following configuration directive: unix extensions. We had to set it to no, otherwise Macs would not really work. Regards, Michal 2009/4/25 Miguel Medalha miguelmeda...@sapo.pt: But again, no go. So I am assuming there must be another setting Create a symbolic link from /home to your new home location. You won't need to change anything in your smb.conf. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] How to make fully working samba backup/migration?
Hello, I have never been migrating a working samba to another computer, but we have been many times transferring data from host to host during migrations and rsync was the best tool available. Take a look on the option -a, --archive archive mode; equals -rlptgoD (no -H,-A,-X). The same archive mode you will find in cp and others. I do not _know_ how ACLs are handled in this case, but I think it's an easy thing to check. Regards, Michal 2009/4/26 Zbigniew Luszpinski zbi...@o2.pl: Hello, how to correctly make full and fully working samba backup? I read articles and newsgroups seeing how many people failed because something was forgotten to be copied or saved and restored/merged. Usually password and user accounts does not work. What I found is most people copy: /etc/samba the smarter copy also: /home geeks knows they should also copy: /etc/passwd /etc/shadow /etc/groups and /var/lib/samba where tdb files are kept. Looking at these gathered files I think I should also store file rights and user/owner of each file. Finally I should merge: /etc/passwd /etc/shadow /etc/groups on new system with these I backed up from older system. How to copy files from users' accounts at /home/* if files created by M$ Windows have characters in file names Linux can not handle during copy? How to preserve windows file rights when migrating samba from Linux to Linux? I hope I identified all problems which may happen... If not tell me what I missed and tell me how to fix such problem. Did I miss something or this is full list of operations to be done to have fully working samba backup? have a nice day, zbiggy -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Re: Authentication
Hello, Yes - LDAP can work with relational databases but the response time will be slower than in case of BDB backend (BDB - trees leaves, *SQL - relations, thus table-like structure). I do not exactly remember whether the SQL backend works out of the box, but at the time when I was looking at it (ca. 2 years ago) some tweaking was mandatory. Regards, Michal 2009/4/24 Richard Foltyn richard.fol...@gmail.com: Natanahel wrote: My question is: Can I use Samba with authentication in LDAP using POSTGRESQL like a Database of LDAP??? Actually this question is totally unrelated to Samba since Samba does not care what backend your LDAP server uses. Therefore, find an LDAP server that support Postgres as backend. ;) Google suggests that people have been able to run OpenLDAP on top of PostgreSQL instead of BDB. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] security = domain -- samba adds its netbios name as samba domain to LDAP
On 05/10/2007, Volker Lendecke [EMAIL PROTECTED] wrote: On Fri, Oct 05, 2007 at 02:11:23PM +0200, Christian Brandes wrote: The samba domain should be mycompany as stated in workgroup and not USER as stated in netbios name! Works as designed. Every box has a SAM of its own. I experienced exactly the same behaviour. I expected my BDC stations to reuse the 'workgroup' attribute, but the effect was exactly like Christian wrote. What do you mean by works as designed? Can we just use it that way, where each BDC has a domain on its own? Regards, Michal Volker -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] security = domain -- samba adds its netbios name as samba domain to LDAP
On 05/10/2007, Volker Lendecke [EMAIL PROTECTED] wrote: On Fri, Oct 05, 2007 at 07:15:44PM +0200, Michal Dobroczynski wrote: I experienced exactly the same behaviour. I expected my BDC stations to reuse the 'workgroup' attribute, but the effect was exactly like Christian wrote. What do you mean by works as designed? Can we just use it that way, where each BDC has a domain on its own? Ok. I think I understood something wrong. I thought the logfile was from a member server, not from a BDC. If a BDC creates its own name as a sambaDomain object in LDAP, then there's a misconfiguration or a bug. A BDC does not have a local SAM, only member servers do. Well - what I have discovered is that setting domain logons = Yes domain master = No seems to solve the problem. When configured in such a way the BDC controller searches for the proper domain and does not try to create a new one. I think this is the way a BDC should be configured - but of course I'd be glad to hear some comments from people that use similar structure (description just below). The main idea about my setup is: one samba PDC and then lots of BDCs which act as file servers (well, maybe BDC is a too strong word for that - I just don't want to ask people again for the same username/password). This way I can nicely distribute the bandwith among people (because once they login onto a windows workstation their home drive is mounted automatically - and they don't care if it comes from file server A or D, at least as long as it works :). Of course everything is powered by OpenLDAP (BDC get read-only access to replicas). Regards, Michal Sorry for the confusion, Volker -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] security = domain -- samba adds its netbios name as samba domain to LDAP
On 05/10/2007, Volker Lendecke [EMAIL PROTECTED] wrote: On Fri, Oct 05, 2007 at 10:15:02PM +0200, Michal Dobroczynski wrote: Well - what I have discovered is that setting domain logons = Yes domain master = No seems to solve the problem. ... because this *is* the only way to tell Samba to be a BDC. This must be somewhere in the docs. Yes - but now it's 100% clear. Thanks for help. Regards, Michal Volker -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba