[Samba] Net Join Problem
I am having difficulty joining my new samba server to my domain. I am replacing an old member server. I am using the same config file with a new netbios name I try 'net rpc join -S my-pdc -W my-domain -U root' and get the following utils/net_rpc_join.c:net_rpc_join_newstyle(304) error setting trust account password: NT code 0x1c010002 Unable to join domain my-domain. I can dynamically join windows machines to my domain. The net join creates a partial machine account in my LDAP server. The samba deamons are off Apart from installing the RPMs and updating smb.conf is there anything else I need to do before I run net join? NB I have also had the same results downloading Samba 3.0.28 running the rpm creation script and installing the RPM Although I can find references to this problem on the Internet I have not found a cause yet! Blue Chip Technology Limited. Chowley Oak Lane, Tattenhall, Chester, Cheshire CH3 9EX Tel: 01829 772000 Registered in England 3110403 Vat No: GB 618 374134 Blue Chip Technology Ltd. employees are not authorised to offer or accept contractual terms by email unless they are in the form of an attached PDF document in the correct company format in accordance with their job role by provision of an authorised signature. - -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Net Join Problem
did you delete and recreate the machine account so the new server can use it for when it joins? [Robert Mortimer] I was expecting it to auto create an account for the new NETBIOS name. I can rejoin my old BDC no problem under the same name and the add machine Script over writes the old account (same with xp clients) If I delete the account the script creates new one but spits the error If I create an account up front with the IDEALIX tools the result is the same [Robert Mortimer] I upgraded the PDC to a more recent version of SAMBA and hay-presto it works. My theory is that there is an incompatibility between SAMBA versions around 3.0.24 and 3.0.28 that can stop you joining the 3.0.28 version to the 3.0.24 version SOLVED Robert Mortimer wrote: I am having difficulty joining my new samba server to my domain. I am replacing an old member server. I am using the same config file with a new netbios name I try 'net rpc join -S my-pdc -W my-domain -U root' and get the following utils/net_rpc_join.c:net_rpc_join_newstyle(304) error setting trust account password: NT code 0x1c010002 Unable to join domain my-domain. I can dynamically join windows machines to my domain. The net join creates a partial machine account in my LDAP server. The samba deamons are off Apart from installing the RPMs and updating smb.conf is there anything else I need to do before I run net join? NB I have also had the same results downloading Samba 3.0.28 running the rpm creation script and installing the RPM Although I can find references to this problem on the Internet I have not found a cause yet! --- -- --- Blue Chip Technology Limited. Chowley Oak Lane, Tattenhall, Chester, Cheshire CH3 9EX Tel: 01829 772000 Registered in England 3110403 Vat No: GB 618 374134 Blue Chip Technology Ltd. employees are not authorised to offer or accept contractual terms by email unless they are in the form of an attached PDF document in the correct company format in accordance with their job role by provision of an authorised signature. --- -- --- - Blue Chip Technology Limited. Chowley Oak Lane, Tattenhall, Chester, Cheshire CH3 9EX Tel: 01829 772000 Registered in England 3110403 Vat No: GB 618 374134 Blue Chip Technology Ltd. employees are not authorised to offer or accept contractual terms by email unless they are in the form of an attached PDF document in the correct company format in accordance with their job role by provision of an authorised signature. --- -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba --- - Blue Chip Technology Limited. Chowley Oak Lane, Tattenhall, Chester, Cheshire CH3 9EX Tel: 01829 772000 Registered in England 3110403 Vat No: GB 618 374134 Blue Chip Technology Ltd. employees are not authorised to offer or accept contractual terms by email unless they are in the form of an attached PDF document in the correct company format in accordance with their job role by provision of an authorised signature. --- -- Blue Chip Technology Limited. Chowley Oak Lane, Tattenhall, Chester, Cheshire CH3 9EX Tel: 01829 772000 Registered in England 3110403 Vat No: GB 618 374134 Blue Chip Technology Ltd. employees are not authorised to offer or accept contractual terms by email unless they are in the form of an attached PDF document in the correct company format in accordance with their job role by provision of an authorised signature. - -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Net Join Problem
did you delete and recreate the machine account so the new server can use it for when it joins? [Robert Mortimer] I was expecting it to auto create an account for the new NETBIOS name. I can rejoin my old BDC no problem under the same name and the add machine Script over writes the old account (same with xp clients) If I delete the account the script creates new one but spits the error If I create an account up front with the IDEALIX tools the result is the same Robert Mortimer wrote: I am having difficulty joining my new samba server to my domain. I am replacing an old member server. I am using the same config file with a new netbios name I try 'net rpc join -S my-pdc -W my-domain -U root' and get the following utils/net_rpc_join.c:net_rpc_join_newstyle(304) error setting trust account password: NT code 0x1c010002 Unable to join domain my-domain. I can dynamically join windows machines to my domain. The net join creates a partial machine account in my LDAP server. The samba deamons are off Apart from installing the RPMs and updating smb.conf is there anything else I need to do before I run net join? NB I have also had the same results downloading Samba 3.0.28 running the rpm creation script and installing the RPM Although I can find references to this problem on the Internet I have not found a cause yet! - --- Blue Chip Technology Limited. Chowley Oak Lane, Tattenhall, Chester, Cheshire CH3 9EX Tel: 01829 772000 Registered in England 3110403 Vat No: GB 618 374134 Blue Chip Technology Ltd. employees are not authorised to offer or accept contractual terms by email unless they are in the form of an attached PDF document in the correct company format in accordance with their job role by provision of an authorised signature. - Blue Chip Technology Limited. Chowley Oak Lane, Tattenhall, Chester, Cheshire CH3 9EX Tel: 01829 772000 Registered in England 3110403 Vat No: GB 618 374134 Blue Chip Technology Ltd. employees are not authorised to offer or accept contractual terms by email unless they are in the form of an attached PDF document in the correct company format in accordance with their job role by provision of an authorised signature. - -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Making Home Directory available for Windows Users
Hello, I am pretty sure this is described somewhere in the official docs, but anyway: Your approach #1 should work well. The [homes] section is accessible by clients using *either* \\servername\username or \\servername\homes No modifications to your example necessary. You can Map a drive letter to the home share using logon drive = q: logon home = \\servername\%u This will map the home as the p: drive so each user gets their home drive as a p: drive. For older MS OS's you can achieve the same thing with a logon script. Bye, Andreas Alexander Schaber schrieb: Hello, Situation: We are in a school class every student logs on with the same account. Until now we had Shares that were accessable for everybody and it was therefore possible to look into and edit/delete other's files. Plan: Create a share that can be clicked on which then asks for User/Pass and directly maps to the User's home Directory upon auth. User auth is done through LDAP which works already. Example: Sharename: homedir User clicks on e.g. \\fileserver\homedir and is asked for User/Pass, after entering 'examplestudent1'/hispassword he sees /home/examplestudent1 . Possible approach 1: [homes] comment = Home Directories valid users = %S browseable = No read only = No inherit acls = Yes The Problem with this one is, that the User would have to type \\fileserver\examplestudent1 to get to his Homedir, which is _not_ wanted. Or can this one be modified? Possible approach 2: [homedir] comment = Home Directories read only = No browseable = Yes path = /home/%u This seems to work, but is it secure enough? What about 'valid users'? The computers are shut down after each lesson, so there won't be the case that a old session is still alive. Requirements: A share that always has the same name (e.g. homedir) but behind that there is the user's homedir or a share that lists /home and asks for a User/Pass for each dir you click on. I know this is party done by setting appropriate rights on the home dirs (700). I hope I made everything clear :) Thanks alot for your ideas! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] To Andrew Tridgell -- new Samba forum
Andrew, I have a software which need the following package but I can't find it in Internet. Could you advice me where I can download it? samba-3.0.10-1.4E6.HSM.2.i386 samba-common-3.0.10-1.3E.6.HSM.2 samba-client-3.0.10-1.4E.6.HSM.2 1: I am assuming that this is an RPM dependency Answer / Suggestions 1: Check with whoever built the RPMs you are installing 2: If you have a samba-3.0 packages for your system install them and force the install with no-deps. So long as a version of samba is installed you should be OK so long as the HSM rpms put stuff in all the usual locations. The SAMBA team provides source code to distribution builders (such as Red Hat and others). What you appear to be looking for is a specific RPM build. This may or may not be a vanilla compile and may have been tweaked by the distribution builder. You need the following information:- Source and name of software you want to install Distro you are trying to run it on Once you have this info take it to the mailing list for the distribution you are tying to install on and the Mailing list for the software you are trying to install. Rob -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] problem with acls and dos mode in 3.0.23d
Robert Mortimer пишет: Check the UNIX user permissions. Samba stores the windows read only attribute here. If the owner does not have write access than samba assumes the read only bit is set. I have write permissions on fs ( i.e. linux ) level This is a problem with the fudge to Windows file attributes to Unix attributes file. IMHO, it is problem in permissions calculation in current samba code... It's to do with the mapping of permissions on file systems that do not support the same attributes. If a file's user does not have write access this is flagged as being the same as the windows read only bit. The SAMBA create mode configuration can determine default state of the user's Unix permissions. There is nowhere in the ext file system to map the read only bit so this translation was decided upon. Since the adoption of this convention acl's are now common but the old translation is still the one used. My problem is I can not get create mode to do what I want but that is a different thread. Rob -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] ]On Behalf Of Dmitry Melekhov Sent: 05 December 2006 10:22 To: samba@lists.samba.org Subject: [Samba] problem with acls and dos mode in 3.0.23d Hello! I have direstory with following acl: getfacl Visio2002 # file: Visio2002 # owner: ilyin # group: ilyin user::rwx user:dm:rwx user:pitomtsev:rwx user:nap:rwx user:mav:rwx user:goi:rwx user:ilyin:rwx user:huzyahmetov:rwx group::r-x group:common:r-x mask::rwx other::--- default:user::rwx default:user:pitomtsev:rwx default:user:nap:rwx default:user:mav:rwx default:user:goi:rwx default:user:ilyin:rwx default:group::rwx default:group:common:r-x default:mask::rwx default:other::--- I'm user dm ;-) I can delete directory from console, but I can't do it from windows. And I see this directory as read-only... I tried to read debug 10 log, but can't find any reasons for such behaviour. Any ideas? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] modifying file permissions
Hi Gary First of all the permissions assigned from windows are actually Access control lists which are not supported by default Windows/SAMBA can map ACLs to fine-grain windows permissions but it always reads the UNIX permissions as well. The UNIX permissions are where it encodes the windows READ ONLY permission that is unsupported by UNIX. If you set a file/Directory so that the owner does not have simple UNIX write permissions this will be cause SAMBA to report the windows read only flag even if the user does have write permissions assigned under ACLs more about these mappings can be found here:- http://www.oreilly.com/catalog/samba/chapter/book/ch05_03.html SAMBA can also Map system, archive and hidden attributes be messing with the UNIX file permissions but these are off by default (I think) Please reply to the list rather than direct to me. Rob so first enable acl support for the filesystem for which you want to assign permissions from windows. ie /etc/fstab file for example for /public file system LABEL=/public /public ext3 defaults,* acl * 1 1 and give this command mount -o remount,rw /public and in smb.conf in global section add the following entries nt acl support = yes inherit acls = Yes map acl inherit = Yes Try this Regards Niranjan On 12/8/06, Gary R. Day [EMAIL PROTECTED] wrote: Folks, I have smbd 2.2.7 running on a Redhat Linux 9.0 system from which I am mapping directories onto my Windows XP Professional system. For the most part everything is working fine. The one thing that doesn't seem to work is that of changing permissions on a file from Windows. I have a user grday in group developer on the linux system with home directory /home/grday. I have the smb.conf file shown below. The share mapps ok, and I can create a file which gets the correct permissions from the creation mask. However, when I right-click the file, and select the security tab from the properties dialog, and then try to set the write permission for the developer group I get access denied when I click ok. Also, an oddity is that, unless I put user nobody in the smbpasswd database I get a lot of messages like: [2006/12/04 16:55:25, 1] smbd/password.c:pass_check_smb(545) Couldn't find user 'nobody' in passdb. I have a similar problem with smbd 2.2.12 running on a solaris 9 system with a bunch of Windows 2000 clients. In that case, I got rid of the nobody messages by putting nobody in the smbpasswd database. However, I now get a lot of messages like: [2006/12/04 10:28:46, 0] smbd/service.c:(563) Can't become connected user! The messages don't seem to do any harm, but I'm wondering if they have anything to do with my inability to change permissions. here is my smb.conf file. [global] interfaces = 127.0.0.1/255.255.255.0 192.168.1.7/255.255.255.0 bind interfaces only = yes name resolve order = hosts invalid users = root null passwords = yes security = user encrypt passwords = yes log level = 1 max log size = 1000 lock directory = /var/lock/samba directory mask = 0755 create mask = 0644 map archive = yes share modes = yes read only = no delete readonly = yes browsable = no [homes] valid users = +developer -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] create mode not working with ACLs for me
I have two directories that look the same but when a user edits a document belonging to another user in one of them it sets the read-only flag. In the other it does not. I have the following in the main part of my smb.conf and in the share create mode = 660 force create mode = 660 directory mode = 770 read only = no Directory one has the following Unix and ACL permissions drwxrwx---+ 2 rwallis TS_quality 4096 Dec 13 12:21 Processor # file: Processor # owner: rwallis # group: TS_quality user::rwx user:rwallis:rwx group::rwx group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- default:user::rwx default:group::rwx default:group:AD_Domain_Users:r-x default:group:TS_quality:rwx default:mask::rwx default:other::--- if I (rmortimer member of TS_quality) edit a file it goes from -rwxrwx---+ 1 rwallis TS_main 30208 Dec 13 08:54 TP934_DVT1.doc # file: TP934_DVT1.doc # owner: rwallis # group: TS_main user::rwx user:rwallis:rwx group::rwx group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- to -rwxrwx---+ 1 rmortimer TS_main 30208 Dec 13 12:33 TP934_DVT1.doc # file: TP934_DVT1.doc # owner: rmortimer # group: TS_main user::rwx user:rwallis:rwx group::rwx group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- Directory TWO has the following Unix and ACL permissions drwxrwx---+ 2 rwallis TS_quality 4096 Dec 13 12:21 Systems # file: Systems # owner: rwallis # group: TS_quality user::rwx user:rwallis:rwx group::rwx group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- default:user::rwx default:group::rwx default:group:AD_Domain_Users:r-x default:group:TS_quality:rwx default:mask::rwx default:other::--- When I edit the following file -rwxrwx---+ 1 rwallis TS_quality 12800 Oct 26 1998 Tp3802.doc # file: Tp3802.doc # owner: rwallis # group: TS_quality user::rwx user:rwallis:rwx group::rwx group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- I end up with -r--rwx---+ 1 rmortimer TS_main24064 Dec 13 12:44 Tp3802.doc # file: Tp3802.doc # owner: rmortimer # group: TS_main user::r-- user:rwallis:rwx group::--- group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- As you can see this is flagged as read only (user = r--) Both these directories are on the same share Samaba is samba-common-3.0.23c-4 samba-swat-3.0.23c-4 samba-client-3.0.23c-4 samba-debuginfo-3.0.23c-4 samba-doc-3.0.23c-4 samba-3.0.23c-4 (from official source RPM) Any pointers? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] create mode problems
I have two directories that look the same but when a user edits a document belonging to another user in one of them it sets the read-only flag. In the other it does not. I have the following in the main part of my smb.conf create mode = 660 force create mode = 660 directory mode = 770 read only = no Directory one has the following Unix and ACL permissions drwxrwx---+ 2 rwallis TS_quality 4096 Dec 13 12:21 Processor # file: Processor # owner: rwallis # group: TS_quality user::rwx user:rwallis:rwx group::rwx group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- default:user::rwx default:group::rwx default:group:AD_Domain_Users:r-x default:group:TS_quality:rwx default:mask::rwx default:other::--- if I (rmortimer member of TS_quality) edit a file it goes from -rwxrwx---+ 1 rwallis TS_main 30208 Dec 13 08:54 TP934_DVT1.doc # file: TP934_DVT1.doc # owner: rwallis # group: TS_main user::rwx user:rwallis:rwx group::rwx group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- to -rwxrwx---+ 1 rmortimer TS_main 30208 Dec 13 12:33 TP934_DVT1.doc # file: TP934_DVT1.doc # owner: rmortimer # group: TS_main user::rwx user:rwallis:rwx group::rwx group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- Directory TWO has the following Unix and ACL permissions drwxrwx---+ 2 rwallis TS_quality 4096 Dec 13 12:21 Systems # file: Systems # owner: rwallis # group: TS_quality user::rwx user:rwallis:rwx group::rwx group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- default:user::rwx default:group::rwx default:group:AD_Domain_Users:r-x default:group:TS_quality:rwx default:mask::rwx default:other::--- When I edit the following file -rwxrwx---+ 1 rwallis TS_quality 12800 Oct 26 1998 Tp3802.doc # file: Tp3802.doc # owner: rwallis # group: TS_quality user::rwx user:rwallis:rwx group::rwx group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- I end up with -r--rwx---+ 1 rmortimer TS_main24064 Dec 13 12:44 Tp3802.doc # file: Tp3802.doc # owner: rmortimer # group: TS_main user::r-- user:rwallis:rwx group::--- group:AD_Domain_Users:r-x group:TS_quality:rwx mask::rwx other::--- As you can see this is flagged as read only (user = r--) Both these directories are on the same share Any pointers? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Samba and DOS databases (Benckmark results)
To run our overnight updates the NT4 server took 15min With the same data and oplocks enabled the SAMBA server takes 9min but in this configuration users are complaining of initial application load times SAMBA with oplocks 1 disabled results in a time of 11 min Disabling oplocks 2 results in a punishing drop in performance to 57min (this is not going to make friends in userland) Same data was used throughout. Minor time variations were seen between runs. As a rule the second run was fractionally faster (presumably due to cashing). -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] ]On Behalf Of Robert Mortimer Sent: 27 June 2006 16:07 To: samba@lists.samba.org Subject: [Samba] Samba and DOS databases (oplock settings not getting sameresults as under NT4) Before you reply note I have read the op-locks bit of the samba manual We have a micro-focus Cobol (dos) database that ran on an old Novell server. When we moved to NT4 performance bombed. We added the correct registry keys to turn off op-locks on the NT4 server and all was OK for the next 6 years. We have no moved to SAMBA but we can not get it to perform as well as our old NT machine despite a huge hardware boost. With Oplocks on performance is OK but we get more record locks than we used to and often as the user moves to a new task there is a long delay (presumably as other peoples op-locks are broken and the data is cached locally) With Oplocks off the performance is unacceptable. Reports that were taking 10 min on the old NT4 machine are now taking over an hour to run. Using the sysinternal tools I see that the dos application is attempting to lock individual portions of the data files. Is this possible on Samba running on an ext3 file system. Is this a problem with samba of should I look at my underlying file system. Any pointers welcome. I am going to do some benchmarking over the next week all suggestions welcome We are running FC4 with samba-3.0.14a on the default ext3 filesystem. Regards Robert -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba and DOS databases (oplock settings not getting same results as under NT4)
Before you reply note I have read the op-locks bit of the samba manual We have a micro-focus Cobol (dos) database that ran on an old Novell server. When we moved to NT4 performance bombed. We added the correct registry keys to turn off op-locks on the NT4 server and all was OK for the next 6 years. We have no moved to SAMBA but we can not get it to perform as well as our old NT machine despite a huge hardware boost. With Oplocks on performance is OK but we get more record locks than we used to and often as the user moves to a new task there is a long delay (presumably as other peoples op-locks are broken and the data is cached locally) With Oplocks off the performance is unacceptable. Reports that were taking 10 min on the old NT4 machine are now taking over an hour to run. Using the sysinternal tools I see that the dos application is attempting to lock individual portions of the data files. Is this possible on Samba running on an ext3 file system. Is this a problem with samba of should I look at my underlying file system. Any pointers welcome. I am going to do some benchmarking over the next week all suggestions welcome We are running FC4 with samba-3.0.14a on the default ext3 filesystem. Regards Robert -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Problem
No config details No hardware specs No log output No description of the operating environment No definition of slow. Humm let me think? If you ring up the garage and tell them your car is slow would you expect them to have an answer without looking at it or maybe asking some more questions (model, funny noises, position of petrol gauge etc)? Maybe start with the following question Where can I find out about trouble shooting samba performance issues? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] ]On Behalf Of Bastiaan Hollander (Bas Kwadraat ) Sent: 22 May 2006 08:06 To: [EMAIL PROTECTED] Subject: [Samba] Problem I have a problem with my samba server and mij Apple imac G5. The connection is very slow. Can you tell me what the problem is. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] samba as a dc
Hello! I want to connect computers with windows xp (pro/home) to a one computer linux (with samba). I want to every user who want to use his/her account data may use any of the computers in the office and have theys personal data (in any pleace in the office) (domain or something, i don't know). I have a little problem with a how to plan and configure all of that and i am thinking if it is really possible to do. Please give an advice, links. Thx Dawid Computers with XP home will not recognise centralised logon details (Microsoft have chosen to exclude this functionality in this version). Users can however map drives using domain authenticated credentials. The SAMBA list can not substitute for the following. 1: A basic understanding of windows/SMB networking 2: Reading the supplied documentation However Some Distros provide basic graphical configuration utilities that may meet your requirements (Red Hat, Fedora, Suse Mandrake) For a PDC configuration look at the excellent smbldap-installer available from http://www.vcsvikings.org/docuwiki/cgi-bin/moin.cgi/ This script works with Fedora Core 4 Umbuntu and will provide you with an NT4 stile domain controller. PS Ensure that ACLs are configured if you want NT style file permissions (google ACL SAMBA LINUX). Most modern SAMBA binaries now come with ACL by default but you may need to change the mount options for your underlying file system. Robert -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] samba 4 for home network sharing
Most Distro's come with a SAMBA binary. Is suggest that you start with that. There are clear minimum config suggestions in the documentation (your distro often has a default config (see /etc/samba/smb.conf). Mac OS X should be able to use NFS so should not need SAMBA as this is a Unix2Unix setup (you can use SAMBA if you wish though) If you want you can install services for Unix on your windows box (2000/XP/98) http://support.microsoft.com/kb/324055/en-us and use NFS NFS / SAMBA (it is up to you to choose) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] ]On Behalf Of F. Heitkamp Sent: 28 April 2006 01:37 To: samba@lists.samba.org Subject: [Samba] samba 4 for home network sharing I can't get samba 3 to work with glibc 2.4. Samba 4 seems to work though. I just want to set up a simple share to share my Linux home directory to a Windows PC and a Mac OS X. Can this be done with Samba 4? Does anyone have a sample config file that works? Fred -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] remote BDC
In the old NT4 model I think it was up to the client to decide who to send the authentication request to. I also seem to remember the BDC was preferred over the PDC as it was assumed the BDC would have less load. In short I think the clients get to choose based on what they can see in the network browser and/or WINS. If both the PDC and BDC are WINS serves you could list the priority for the WINS servers and add the static entries to get the desired result. IMHO I would always try to get authenticate against the local server and look at propagation between PDC BDC if there is a syncronisation constraint. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] ]On Behalf Of Dmitry Melekhov Sent: 05 April 2006 05:44 To: samba@lists.samba.org Subject: [Samba] remote BDC Hello! I want to have BDC in another subnet. I.e. PDC--router--4Mbit linkrouterBDC---users I want users workstations logins into PDC if link is up and into BDC. If I setup BDC as /|domain master = no|//| domain logons = yes then users logins into BDC although #1c records in wins are for BDC too. Is it possible to implement PDC-BDC as I want? :-) Thank you! |/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] tree connect failed: NT_STATUS_BAD_NETWORK_NAME
Hi, I am running samba 2.2.12 on Freebsd 4.3, on an internal network, with no firewall. I have a very simple smb.conf. Here are the relevant entries: [global] workgroup = Workgroup socket options = TCP_NODELAY printing = bsd guest account = nobody hosts allow = 192.168.1.0/24 Where in the section above is the host name for your SAMBA machine? Do you have a line like netbios name = HOTSTUFF If the machine has no name I guess that may be why you can not find it. [tmp] comment = Temporary file space browseable = yes writeable = yes path = /temp read only = no public = yes create mode = 0777 /temp is owned by nobody, and has read / write privileges for everyone. My windows machines can see the samba server, but they cannot browse to it. When I run [EMAIL PROTECTED] smbclient //machinename/ I get the following output: added interface ip=192.168.1.151 bcast=192.168.1.255 nmask=255.255.255.0 Password: Anonymous login successful Domain=[WORKGROUP] OS=[Unix] Server=[Samba 2.2.12] tree connect failed: NT_STATUS_BAD_NETWORK_NAME Help appreciated. Charlie -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Why does Samba need a password and Windows doesn't
A windows machine will try the current logged on user's credentials against any share thrown at it (often with-out domain or workgroup checks). It can do this because only one active logged on user is permitted at any one time and the SMB protocol is it's native protocol. Linux can have multiple active users on different screens (virtual or real). You can overcome this by mounting the Windows share automatically in your user's home directory using SMB mount. Unix to Unix you can use NFS and this allows you the integration of permissions enjoyed by windows/SMB. Alternatively if you are running a small private network you can look at allowing guest accounts to remove logon requirements. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] ]On Behalf Of Vayu Sent: 27 March 2006 00:13 To: samba@lists.samba.org Subject: [Samba] Why does Samba need a password and Windows doesn't For both my FreeBSD and my Linux machine to access my WinXP machine I need to supply the username and password. From the WinXP machine I can access both the FreeBSD machine and the Linux machine directly, there is no pause for username and password. I would like to not use a password in both directions. If windows doesn't need it why should Samba? To make it easy on my pathetic networking skills I've set up the exact same username and password on all three machines. All three machine have the same workgroup. Once I give the password I have successful read/write on all machines in both directions. If the answer is that I need to setup a domain, then I don't understand why doesn't the WinXP box think that? Here's my smb.conf for the FreeBSD machine after testparm -s: [global] workgroup = VAYU server string = Akasha log file = /var/log/samba/log.%m max log size = 50 dns proxy = No [satyam] comment = Akasha/usr/home/satyam path = /usr/home/satyam valid users = satyam read only = No [printers] comment = All Printers path = /var/spool/samba printable = Yes browseable = No Here's smb.conf for the Linux machine: [global] workgroup = VAYU server string = %h server (Samba, Ubuntu) obey pam restrictions = Yes passdb backend = tdbsam, guest passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n . syslog = 0 log file = /var/log/samba/log.%m max log size = 1000 max protocol = LANMAN2 dns proxy = No panic action = /usr/share/samba/panic-action %d invalid users = root [Satyam] comment = Santosha-Ubuntu/home/satyam path = /home/satyam valid users = satyam read only = No create mask = 0700 directory mask = 0700 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] cannot see the samba server when browsing
Name resolution for windows machines is by WINS or Broadcast. Broadcast is not going to like the firewall. Wins could be configured if you look up the ports to allow and run the SAMBA wins server on the linux machine. My only question is what do you not trust on your local network (why the firewall?) Robert -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] ]On Behalf Of Jon Miller Sent: 27 March 2006 14:09 To: samba@lists.samba.org Subject: [Samba] cannot see the samba server when browsing I would like to know if there is a rule that can be created in iptables that would allow a samba server shares to be seen on the internal LAN. The interface is on eth0 the ip address of eth0 is 192.168.0.1. It seems that when I applied a firewall I have blocked smb from showing up. Now the users cannot see any shares via Network Neighborhood , but I can map a drive via Start-Run-\\192.168.0.1\sharename. This is on a Debian 3.1 server. Thanks Jon -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] cannot see the samba server when browsing
Samba is on the same server that is attached to the router and it was hacked before. Options: Get a better router/firewall Get a firewall dedicated (Smoothwall pfSense IPCop) Put two NICs in the samba machine (one to the router one to the internal network) Firewall the one to the router Robert Mortimer [EMAIL PROTECTED] 11:03:45 pm 27/03/2006 Name resolution for windows machines is by WINS or Broadcast. Broadcast is not going to like the firewall. Wins could be configured if you look up the ports to allow and run the SAMBA wins server on the linux machine. My only question is what do you not trust on your local network (why the firewall?) Robert -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] ]On Behalf Of Jon Miller Sent: 27 March 2006 14:09 To: samba@lists.samba.org Subject: [Samba] cannot see the samba server when browsing I would like to know if there is a rule that can be created in iptables that would allow a samba server shares to be seen on the internal LAN. The interface is on eth0 the ip address of eth0 is 192.168.0.1. It seems that when I applied a firewall I have blocked smb from showing up. Now the users cannot see any shares via Network Neighborhood , but I can map a drive via Start-Run-\\192.168.0.1\sharename. This is on a Debian 3.1 server. Thanks Jon -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Storing passwords in LDAP, but not a PDC
Hello, Is it possible to store samba passwords in ldap without configuring samba as a PDC? All the documents/references I've come across are related to using LDAP as a samba PDC backend, not as just a db file replacement. Thanks, LDAP is a heavyweight store for massive amounts of passwords and extended data needed to for 100s or 1000s of PCs. In a workgroup there is no central password store. In a workgroup each windows (LINUX/Samba) machine has local users and would never consult a central authentication database so the LDAP would only hold accounts for the local Linux machine's users. This is a Sledgehammer + nut situation I suggest you look at the normal samba database Regards Rob David Filion -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] SAMBA+LDAP in a Workgroup
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] ]On Behalf Of Markus Korth Sent: 17 March 2006 08:28 To: samba@lists.samba.org Subject: Re: [Samba] SAMBA+LDAP in a Workgroup HiHo Tom! Tom Haerens wrote: Hi, This may be a dumb question (I'm new with this), but is it possible to use SAMBA in combination with LDAP in a Workgroup? All the manuals and examples I can find, are talking about Domains and PDCs. LDAP is a heavyweight store for massive amounts of passwords and extended data needed to run 100s or 1000s of PCs. In a workgroup there is no central password store. In a workgroup each windows client has local users and would never consult a central authentication database so the LDAP would only hold accounts for the local Linux machine/samba users. This is a Sledgehammer + nut situation Look at the normal samba database Regards Rob I've such a setup running here and I'm quite satisfied. We once migrated from NIS to LDAP and later added the Samba scheme to our LDAP server. We are just using simple file- and print services with Samba. We don't use the PDC functionality as, up to now, I don't see an advantage for us - just more administration effort. Roughly said, the LDAP is just used for user accounts and groups, i.e. passwords and userid/group matching. There are enough websites that describe such a setup, by the way. Start with these here: http://www.ofb.net/~jheiss/samba/ldap.shtml http://www.coe.tamu.edu/cs/Manuals/Samba/Samba-LDAP-HOWTO.html Markus -- Senior Executive - Systemadministration Direct Phone: + 49 / 234 9787-57 Direct Fax: +49 / 234 9787-77 Viisage Technology AG Universitaetsstrasse 160 44801 Bochum Germany http://www.viisage.com -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] SAMBA not reading ACL group permissions
I have added ACL support to the file system on my FC3 server In windows the security dialogue shows correct permissions When I open a file in word it opens read only even though as part of the ACL extended group membership I have write permissions (Unix main group is read only) Using the security dialogue permissions can be re-set This is my setup for a typical share [Data] recycle:touch = Yes vfs objects = recycle comment = Data printable = no writable = yes nt acl support = Yes force group = TS_main # acl map full control = True (produced error on testparm) # acl check permissions = True (produced error on testparm) # acl group control = True (produced error on testparm) veto files = /.Junk/ path = /home/samba/data/ recycle:excludedir = /tmp|/temp|/cache recycle:exclude = *.tmp|*.temp|*.o|*.obj|~$*|*.~?? recycle:keeptree = Yes recycle:maxsize = 209715200 recycle:repository = ./.Junk recycle:versions = No smbstatus -V returns Version 3.0.10-1.fc3 Setup is LDAP samba IDEALIX tools. Standard Fedora RPM is used Regards Robert -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba