Re: [Samba] Computers leaving samba domain
Harry Jede wrote: On Donnerstag, 1. Oktober 2009 wrote sgm...@mail.bloomfield.k12.mo.us: Harry Jede wrote: I was looking at the machines info and I checked on about 5 of them. For some reason it is showing that the sambaPwdLastSet has changed in the last couple of days. Is this supposed to ever change for machines if you do not remove them from a domain and then add them back in? I would think it would always stay the same. No, Windows machines will change their password on a regulare time interval. I do not remember the exact days. You must allow them to change the password field an one other. Search this list or look into the good samba documentation :-) That is strange then. I have software on my XP clients that will not let anything get changed. If there are changes made then once you reboot the computer, it will be back to the way it was when you started. If the client is recording this change also then it would not be saved on a reboot. I would think that was the problem, but I have had this software running for a few years now and I have not had this problem before. You may apply a registry patch, so that the client will NOT change the machine password :-) , before you lock the client image. Yes, that is what another pointed out to me. I actually thought that I had that patch applied (and did on all my other machines), but when I started imaging this summer, I must have grabbed one of my old images that did not have the patch. I should have caught that, but did not. I am just thankful that someone pointed that out. In case anyone sees this thread and is having an issue like this, here is the registry entry. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters add this new entry : DisablePasswordChange type boolean true Thanks for the replies. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Computers leaving samba domain
I am not sure if this is where I need to ask this or not, but I am lost to where to start even. I had 7 computers in one lab that would not login. It gave the standard computer account password bad or domain not found. I had another 9 computer in my other lab do the same thing. It seems that they have suddenly started losing the domain. I can add them to a workgroup and then re-add them back to the domain and they are fine. I am just scared that they are going to lose the domain again. I cannot spend all of my time going around removing computers and adding them back to the domain each day. Any ideas of what could cause this? Client issue? Samba issue? ldap issue? The clients are all Windows XP service pack 3 and the server is a Fedora 10 server running samba and ldap. Usually the only time that I have this happen is if I accidentally add another computer to the domain with the same name. I understand that, but I have not done that on any of these. One lab has brand new computers. The other lab just got imaged day before yesterday. I'll go ahead and get them all added back in, but I need to find what to be looking for if they keep doing this. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Computers leaving samba domain
sgm...@mail.bloomfield.k12.mo.us wrote: I am not sure if this is where I need to ask this or not, but I am lost to where to start even. I had 7 computers in one lab that would not login. It gave the standard computer account password bad or domain not found. I had another 9 computer in my other lab do the same thing. It seems that they have suddenly started losing the domain. I can add them to a workgroup and then re-add them back to the domain and they are fine. I am just scared that they are going to lose the domain again. I cannot spend all of my time going around removing computers and adding them back to the domain each day. Any ideas of what could cause this? Client issue? Samba issue? ldap issue? The clients are all Windows XP service pack 3 and the server is a Fedora 10 server running samba and ldap. Usually the only time that I have this happen is if I accidentally add another computer to the domain with the same name. I understand that, but I have not done that on any of these. One lab has brand new computers. The other lab just got imaged day before yesterday. I'll go ahead and get them all added back in, but I need to find what to be looking for if they keep doing this. Thanks. This may be an ldap question. I was looking at the machines info and I checked on about 5 of them. For some reason it is showing that the sambaPwdLastSet has changed in the last couple of days. Is this supposed to ever change for machines if you do not remove them from a domain and then add them back in? I would think it would always stay the same. Machines are added by samba with smbldap-useradd -w %u. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Computers leaving samba domain
sgm...@mail.bloomfield.k12.mo.us wrote: sgm...@mail.bloomfield.k12.mo.us wrote: I am not sure if this is where I need to ask this or not, but I am lost to where to start even. I had 7 computers in one lab that would not login. It gave the standard computer account password bad or domain not found. I had another 9 computer in my other lab do the same thing. It seems that they have suddenly started losing the domain. I can add them to a workgroup and then re-add them back to the domain and they are fine. I am just scared that they are going to lose the domain again. I cannot spend all of my time going around removing computers and adding them back to the domain each day. Any ideas of what could cause this? Client issue? Samba issue? ldap issue? The clients are all Windows XP service pack 3 and the server is a Fedora 10 server running samba and ldap. Usually the only time that I have this happen is if I accidentally add another computer to the domain with the same name. I understand that, but I have not done that on any of these. One lab has brand new computers. The other lab just got imaged day before yesterday. I'll go ahead and get them all added back in, but I need to find what to be looking for if they keep doing this. Thanks. This may be an ldap question. I was looking at the machines info and I checked on about 5 of them. For some reason it is showing that the sambaPwdLastSet has changed in the last couple of days. Is this supposed to ever change for machines if you do not remove them from a domain and then add them back in? I would think it would always stay the same. Machines are added by samba with smbldap-useradd -w %u. I'll add one more. From what I can tell, the only machines that I see in ldap are the ones that I moved over from my old server or ones that I manually added in from the command line with smbldap-useradd. Machines that were not manually added, but get added with 'add machine script = /usr/local/sbin/smbldap-useradd -w %u' are not even showing up in an ldapsearch. They have to get added though, because they can log in after I remove them from the domain and re-add them. Any ideas of what to check would be greatly appreciated. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Computers leaving samba domain
Harry Jede wrote: I was looking at the machines info and I checked on about 5 of them. For some reason it is showing that the sambaPwdLastSet has changed in the last couple of days. Is this supposed to ever change for machines if you do not remove them from a domain and then add them back in? I would think it would always stay the same. No, Windows machines will change their password on a regulare time interval. I do not remember the exact days. You must allow them to change the password field an one other. Search this list or look into the good samba documentation :-) That is strange then. I have software on my XP clients that will not let anything get changed. If there are changes made then once you reboot the computer, it will be back to the way it was when you started. If the client is recording this change also then it would not be saved on a reboot. I would think that was the problem, but I have had this software running for a few years now and I have not had this problem before. Thanks for the info. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] ldap? Samba? Nss?
Jamrock wrote: sgm...@mail.bloomfield.k12.mo.us wrote in message news:1247.204.184.27.217.1251396091.squir...@mail.bloomfield.k12.mo.us... It seems my logins are taking a long time to get logged in. I am guessing that it is worse when classes start and a lot of the kids try to login at once. My old server did not seem to have this problem though and we have the same number of students. Where should I start looking at this? I am guessing that it is ldap, but want to make sure. If I log in at a computer and go to start-run and type \\server, it may take 1-2 minutes until I can see my shares which is the same thing the students are seeing when logging into the domain. I just wanted to leave any profile copying out of the equation so I just did it this way. Do you have a db_config file set up? This usually makes a significant improvement in Openldap's performance. I have a DB_CONFIG file that contains the following: set_cachesize 0 268435456 1 set_lg_regionmax 262144 set_lg_bsize 2097152 Anything else that I need to check there? The slowdown is definitely at the start of class when there are probably 50-60 users logging on at once. At other times it is very reasonable. It should not be the network itself because nothing has changed there. It has to be something to do with a configuration or something. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] ldap? Samba? Nss?
Wikked one wrote: I'm going to comment on this because it sounds similar to a recent experience of my own. As illogical as it sounds I'm passing it on. Recently I installed a samba server as a member server on an NT4 Samba/Ldap Domain. During this process I consolidated multiple servers into this one new member server. As soon one of these legacy systems was removed from the domain, file access became increasingly slow,right click operations on even local file systems annoyed and frustrated large number of users. You said the key word old server and I am taking a stab in the dark on this but if that server does not have the same netbios name ,legacy file and drive mappings on the client side crippled even the fastest of systems on my network. If this is the case and you still have access to your old server you just might want to test it by exposing your old shares as read only and determining if that helps log on speed. In this particular case this is not a Samba issue so much as a Windows workstation registry and shell extension problem. I hope this provides some help. Good Luck. I kept the netbios name the same. I added in all new users and I have a new group of computers that never connected to the old server. The shares are setup different on this new server also. These new computers have the same problem as the others so I don't think that is the problem. My file/folder browsing seems fine actually. It is just the logging in that is really, really slow. Thanks for the info. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] ldap? Samba? Nss?
It seems my logins are taking a long time to get logged in. I am guessing that it is worse when classes start and a lot of the kids try to login at once. My old server did not seem to have this problem though and we have the same number of students. Where should I start looking at this? I am guessing that it is ldap, but want to make sure. If I log in at a computer and go to start-run and type \\server, it may take 1-2 minutes until I can see my shares which is the same thing the students are seeing when logging into the domain. I just wanted to leave any profile copying out of the equation so I just did it this way. I noticed this first on my batch user add program for adding users to ldap/samba. The program reads in the users and groups with getpwent and getgrent and it really takes a long time. Any suggestions of what to start looking for would be appreciated. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] ldap? Samba? Nss?
Ryan Suarez wrote: Michal Dobroczynski wrote: Hello, If you want to avoid using get try setting ldapsam:trusted = yes. This way Samba will fetch user info directly from LDAP instead of going through the getpwent and others which reaally pull a lot of data. That should reduce the time needed to login a bit (at least that worked for me). The get as in my perl script actually. I will have to do some reading to figure out how to get the info I need without it. You're assuming that his samba is setup as a domain controller, not simply a domain member. And that it has write access to ldap with the necessary attributes. Scott, you need to provide more info. Rest of the info is at the bottom of this post. Just curious, Are you using samba with nss_ldap and pam_ldap for user lookups and authentication? Yes. I hope it is all setup correctly. It is working it seems. It seems that it really got slow in the last couple of days. I have added some users to LDAP, but not that many. There are proabably a total of 1000 users and not near all of them would log on at once. Maybe a couple of hundred at the very most and more like 75-100. sgm...@mail.bloomfield.k12.mo.us wrote: It seems my logins are taking a long time to get logged in. I am guessing that it is worse when classes start and a lot of the kids try to login at once. My old server did not seem to have this problem though and we have the same number of students. Where should I start looking at this? I am guessing that it is ldap, but want to make sure. If I log in at a computer and go to start-run and type \\server, it may take 1-2 minutes until I can see my shares which is the same thing the students are seeing when logging into the domain. I just wanted to leave any profile copying out of the equation so I just did it this way. I noticed this first on my batch user add program for adding users to ldap/samba. The program reads in the users and groups with getpwent and getgrent and it really takes a long time. Any suggestions of what to start looking for would be appreciated. I have a question about LDAP also and was wondering if this would affect it. I know that on my old server I had the following in the slapd.conf: core cosine inetorgperson nis samba On my new one it has the above plus: corba duaconf dyngroup java misc openldap ppolicy collective Those were just in there when I installed it so I left them. Should I take them out or would that not have any affect on logins at all? Here is my smb.conf [global] workgroup = BES server string = netbios name = SCHOOL1 host msdfs = yes interfaces = lo eth0 hosts allow = 127. 10.0. 192.168.0. localhost log level = 3 ldap passwd sync = Yes ldap admin dn = cn=Manager,dc=school1,dc=bloomfield.k12.mo.us ldap suffix = dc=school1,dc=bloomfield.k12.mo.us ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers ldap idmap suffix = ou=Users add machine script = /usr/sbin/smbldap-useradd -w %u add user script = /usr/sbin/smbldap-useradd -m %u ldap delete dn = Yes add group script = /usr/sbin/smbldap-groupadd -p %g add user to group script = /usr/sbin/smbldap-groupmod -m %u %g delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g set primary group script = /usr/sbin/smbldap-usermod -g %g %u Dos charset = 850 Unix charset = ISO8859-1 idmap uid = 16777216-33554431 idmap gid = 16777216-33554431 log file = /var/log/samba/log.%m security = user passdb backend = ldapsam:ldap://127.0.0.1 domain master = yes domain logons = yes logon path = /bin/false %u local master = yes os level = 65 preferred master = yes wins support = yes dns proxy = no load printers = yes cups options = raw [teacher_dfs] path = /district/dfs_shares/teachers msdfs root = yes [student_dfs] path = /district/dfs_shares/students msdfs root = yes [userhome] comment = Home Directories path = /home/%u read only = no [student] comment = School Wide Main for students path = /district/school read only = no create mask = 660 force create mode = 2660 directory mask = 770 force directory mode = 3770 [teacher] comment = School Wide Main for teachers path = /district/school read only = no create mask = 666 force create mode = 2666 directory mask = 777 force directory mode = 3777 valid users = @teacher @admin @staff [staff] comment = drive for staff to share things on path = /district/teachers read only = no create mask = 666 force create mode = 2666 directory mask = 777 force directory mode = 3777 valid users = @teacher @admin @staff [sis] path = /district/sis read only = no valid users = @sis @teacher @admin create mask = 666 directory mask = 770 force directory mode = 2770 level2 oplocks = no oplocks = no [follett] path = /district/follett read only = no [vexira] path = /district/vexira read only = yes [software] path = /district/_SOFTWARE read only = no [netlogon] comment = Network Logon Service path = /var/lib/samba/netlogon
Re: [Samba] Renaming a computer on the domain
John Drescher wrote: How come I have to disconnect from the domain, rename the computer, reboot, join the domain and then reboot again. I usually I do all of that minus the first reboot. John I was thinking that I had to reboot after the first step. Thought it gave me an error, but maybe I am wrong. I'll try it and see. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Renaming a computer on the domain
John Drescher wrote: I was thinking that I had to reboot after the first step. Thought it gave me an error, but maybe I am wrong. I'll try it and see. It does. I just ignore the box. I get the error: The following error occurred attempting to change the computer name to comp: (The domain domain was joined under the old computer name comp) Access is denied. I click on OK and it acts like it got added and asks me to reboot. When I reboot and try to logon to the domain it tells me that it cannot because the domain controller is down or the computer account was not found. I then have to logon locally, remove the computer from the domain and readd it for it to work correctly. So basically I have to. Remove computer from domain rename computer reboot computer add computer back to domain reboot computer Instead of: Remove computer from domain rename computer add computer back to domain reboot computer Basically just one more reboot, but would be nice not to have to do it. thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Renaming a computer on the domain
John Drescher wrote: It does. I just ignore the box. I get the error: The following error occurred attempting to change the computer name to comp: (The domain domain was joined under the old computer name comp) Access is denied. I vaguely remember that error. I am sorry perhaps I was wrong and you need the two reboots.. Are you using ldap and nscd on your samba pdc? Yes I am. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Renaming a computer on the domain
How come I have to disconnect from the domain, rename the computer, reboot, join the domain and then reboot again. I have always had to do this and just thought it was a domain thing, but talking with some others that run Windows servers, they do not have to do this. They just change the computer name. BTW, just wanted to say thanks to Mr. Terpstra and everyone else that helped while getting my new server going. Right now it is running smoothly and I appreciate all of the input that I received. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Profiles and samba servers
I seem to have my new server running fine. I do have a problem with my Windows Profiles though. I logged in as a local admin to copy user_oldserver_profile to user_newserver_profile, but I cannot do that since it shows the profiles from the oldserver as unknown. I am only going to copy a few of the admins profiles and the rest I am not worrying about. I see a couple of ways of doing this. I could get my oldserver up, login in as a local user and copy the oldserver profile to a local profile and then login to my new server and copy that local profile to the newserver profile. I guess I could also put both servers online, but since they are running the same domain name, couldn't that mess things up? If I were to do that then I would need to set the oldservers 'os level' to something lower than the newserver's, 'preferred master = no' and 'domain master = no', correct? I just don't want to cause problems with having two domain servers that have the same domain (workgroup = BES) on the network. I can always do it the first way, but the second would be easier. BTW, the usernames have changed is why I am having to move some profiles. I changed them from lastname.first_initial to first_initial.lastname. Thanks for any info. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] New samba server
Serdge V. Pechenko wrote: sgm...@mail.bloomfield.k12.mo.us ÐÉÓÁÌ(Á) × Ó×Ï£Í ÐÉÓØÍÅ Thu, 30 Jul 2009 08:46:50 +0700: sgm...@mail.bloomfield.k12.mo.us wrote: sgm...@mail.bloomfield.k12.mo.us wrote: sgm...@mail.bloomfield.k12.mo.us wrote: sgm...@mail.bloomfield.k12.mo.us wrote: I did not get this finished last summer, so decided to just wait and do it this summer. I have setup my new samba server and was trying to get some things tweaked to the way that I want them. I thought that I had asked this before and that I could do it, but it seems that it does not work. My new server is running as a domain server just like the old. It has the same domain name and I change the the SID using net setlocalsid to the same sid number as my old server. This new server is in a test environment right now. I was hoping that my old machines could just log into this server without having to get out of the domain and then rejoin it, but that does not work. It tells me that the domain is not there until I get out of the old one and then rejoin the new one. Is that how it has to work? I was hoping I would not have to do that if I left the domain name the same and set the SID on the new server. I just want to make sure I am not missing something before I go around to all 400 computers on campus and have them removed and rejoined to the domain. Mr. Terpstra gave me a bit of help. I had done nothing to set my domainsid, but after doing the following: net getlocalsid net getdomainsid The values are the same on both the old and the new samba server. This new server will take the place of my old one. Right now it is on a network with nothing else on it besides one of my old windows clients. If I remove one of my old clients from the domain and then re-add it, then it logs in just fine. If I take an old client from my current network and put it on this new network and try to login to the new samba server then it gives me the typical: Windows cannot connect to the domain either because the domain controller is down or otherwise unavailable, or because your computer account was not found. Please try again later. If this message continues to appear contact your System Administrator for assistance. The name of the Windows machine is business18 so I did an 'smbldap-adduser -w business18$' to make sure the machine account was added in to the directory, but the error was the same. I even changed the uid of the machine account to match the old one in case that was coming into play. Here is my samba config in case someone sees something that I don't. Which is quite possible since I forget more than I learn it seems. :) I'll be reading on the How-To to see if I can pick anything else up. [global] workgroup = BES server string = Samba Server Version %v netbios name = SCHOOL interfaces = lo eth0 hosts allow = 127. 10.0. 19 2.168.0. localhost ldap passwd sync = Yes ldap admin dn = cn=Manager,dc=school,dc=bloomfield.k12.mo.us ldap suffix = dc=school1,dc=bloomfield.k12.mo.us ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers ldap idmap suffix = ou=Users add machine script = /usr/sbin/smbldap-useradd -w %u add user script = /usr/sbin/smbldap-useradd -m %u ldap delete dn = Yes add group script = /usr/sbin/smbldap-groupadd -p %g add user to group script = /usr/sbin/smbldap-groupmod -m %u %g delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g set primary group script = /usr/sbin/smbldap-usermod -g %g %u Dos charset = 850 Unix charset = ISO8859-1 log file = /var/log/samba/log.%m max log size = 50 security = user passdb backend = ldapsam:ldap://127.0.0.1 domain master = yes domain logons = yes local master = yes os level = 65 preferred master = yes wins support = yes dns proxy = no load printers = yes cups options = raw [homes] comment = Home Directories browseable = no writable = yes [printers] comment = All Printers path = /var/spool/samba browseable = no guest ok = no writable = no printable = yes Well, I am getting ready to take the other server offline and put the new one in place. I am planning on just removing all my machines from the domain and adding them back in to get everything to work, though I would prefer not to do this. I am just not sure where else to look. Thought I would post one last time. I figure that most of this comes from me not knowing a lot about ldap and how samba interacts with it. I am still learning. The passwords on the new server are different than the old. Does that have any affect on it? Do the passwords have to be the same when it comes to the new machine being added in? I did not think that would matter, but maybe it does. If it does then that would mean taht the XP machines somehow saved the password that was used when the machine joined the domain. Thanks for
Re: [Samba] New samba server
sgm...@mail.bloomfield.k12.mo.us wrote: sgm...@mail.bloomfield.k12.mo.us wrote: I did not get this finished last summer, so decided to just wait and do it this summer. I have setup my new samba server and was trying to get some things tweaked to the way that I want them. I thought that I had asked this before and that I could do it, but it seems that it does not work. My new server is running as a domain server just like the old. It has the same domain name and I change the the SID using net setlocalsid to the same sid number as my old server. This new server is in a test environment right now. I was hoping that my old machines could just log into this server without having to get out of the domain and then rejoin it, but that does not work. It tells me that the domain is not there until I get out of the old one and then rejoin the new one. Is that how it has to work? I was hoping I would not have to do that if I left the domain name the same and set the SID on the new server. I just want to make sure I am not missing something before I go around to all 400 computers on campus and have them removed and rejoined to the domain. Mr. Terpstra gave me a bit of help. I had done nothing to set my domainsid, but after doing the following: net getlocalsid net getdomainsid The values are the same on both the old and the new samba server. This new server will take the place of my old one. Right now it is on a network with nothing else on it besides one of my old windows clients. If I remove one of my old clients from the domain and then re-add it, then it logs in just fine. If I take an old client from my current network and put it on this new network and try to login to the new samba server then it gives me the typical: Windows cannot connect to the domain either because the domain controller is down or otherwise unavailable, or because your computer account was not found. Please try again later. If this message continues to appear contact your System Administrator for assistance. The name of the Windows machine is business18 so I did an 'smbldap-adduser -w business18$' to make sure the machine account was added in to the directory, but the error was the same. I even changed the uid of the machine account to match the old one in case that was coming into play. Here is my samba config in case someone sees something that I don't. Which is quite possible since I forget more than I learn it seems. :) I'll be reading on the How-To to see if I can pick anything else up. [global] workgroup = BES server string = Samba Server Version %v netbios name = SCHOOL interfaces = lo eth0 hosts allow = 127. 10.0. 19 2.168.0. localhost ldap passwd sync = Yes ldap admin dn = cn=Manager,dc=school,dc=bloomfield.k12.mo.us ldap suffix = dc=school1,dc=bloomfield.k12.mo.us ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers ldap idmap suffix = ou=Users add machine script = /usr/sbin/smbldap-useradd -w %u add user script = /usr/sbin/smbldap-useradd -m %u ldap delete dn = Yes add group script = /usr/sbin/smbldap-groupadd -p %g add user to group script = /usr/sbin/smbldap-groupmod -m %u %g delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g set primary group script = /usr/sbin/smbldap-usermod -g %g %u Dos charset = 850 Unix charset = ISO8859-1 log file = /var/log/samba/log.%m max log size = 50 security = user passdb backend = ldapsam:ldap://127.0.0.1 domain master = yes domain logons = yes local master = yes os level = 65 preferred master = yes wins support = yes dns proxy = no load printers = yes cups options = raw [homes] comment = Home Directories browseable = no writable = yes [printers] comment = All Printers path = /var/spool/samba browseable = no guest ok = no writable = no printable = yes Well, I am getting ready to take the other server offline and put the new one in place. I am planning on just removing all my machines from the domain and adding them back in to get everything to work, though I would prefer not to do this. I am just not sure where else to look. Thought I would post one last time. I figure that most of this comes from me not knowing a lot about ldap and how samba interacts with it. I am still learning. The passwords on the new server are different than the old. Does that have any affect on it? Do the passwords have to be the same when it comes to the new machine being added in? I did not think that would matter, but maybe it does. If it does then that would mean taht the XP machines somehow saved the password that was used when the machine joined the domain. Thanks for any info.
Re: [Samba] New samba server
sgm...@mail.bloomfield.k12.mo.us wrote: sgm...@mail.bloomfield.k12.mo.us wrote: sgm...@mail.bloomfield.k12.mo.us wrote: I did not get this finished last summer, so decided to just wait and do it this summer. I have setup my new samba server and was trying to get some things tweaked to the way that I want them. I thought that I had asked this before and that I could do it, but it seems that it does not work. My new server is running as a domain server just like the old. It has the same domain name and I change the the SID using net setlocalsid to the same sid number as my old server. This new server is in a test environment right now. I was hoping that my old machines could just log into this server without having to get out of the domain and then rejoin it, but that does not work. It tells me that the domain is not there until I get out of the old one and then rejoin the new one. Is that how it has to work? I was hoping I would not have to do that if I left the domain name the same and set the SID on the new server. I just want to make sure I am not missing something before I go around to all 400 computers on campus and have them removed and rejoined to the domain. Mr. Terpstra gave me a bit of help. I had done nothing to set my domainsid, but after doing the following: net getlocalsid net getdomainsid The values are the same on both the old and the new samba server. This new server will take the place of my old one. Right now it is on a network with nothing else on it besides one of my old windows clients. If I remove one of my old clients from the domain and then re-add it, then it logs in just fine. If I take an old client from my current network and put it on this new network and try to login to the new samba server then it gives me the typical: Windows cannot connect to the domain either because the domain controller is down or otherwise unavailable, or because your computer account was not found. Please try again later. If this message continues to appear contact your System Administrator for assistance. The name of the Windows machine is business18 so I did an 'smbldap-adduser -w business18$' to make sure the machine account was added in to the directory, but the error was the same. I even changed the uid of the machine account to match the old one in case that was coming into play. Here is my samba config in case someone sees something that I don't. Which is quite possible since I forget more than I learn it seems. :) I'll be reading on the How-To to see if I can pick anything else up. [global] workgroup = BES server string = Samba Server Version %v netbios name = SCHOOL interfaces = lo eth0 hosts allow = 127. 10.0. 19 2.168.0. localhost ldap passwd sync = Yes ldap admin dn = cn=Manager,dc=school,dc=bloomfield.k12.mo.us ldap suffix = dc=school1,dc=bloomfield.k12.mo.us ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers ldap idmap suffix = ou=Users add machine script = /usr/sbin/smbldap-useradd -w %u add user script = /usr/sbin/smbldap-useradd -m %u ldap delete dn = Yes add group script = /usr/sbin/smbldap-groupadd -p %g add user to group script = /usr/sbin/smbldap-groupmod -m %u %g delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g set primary group script = /usr/sbin/smbldap-usermod -g %g %u Dos charset = 850 Unix charset = ISO8859-1 log file = /var/log/samba/log.%m max log size = 50 security = user passdb backend = ldapsam:ldap://127.0.0.1 domain master = yes domain logons = yes local master = yes os level = 65 preferred master = yes wins support = yes dns proxy = no load printers = yes cups options = raw [homes] comment = Home Directories browseable = no writable = yes [printers] comment = All Printers path = /var/spool/samba browseable = no guest ok = no writable = no printable = yes Well, I am getting ready to take the other server offline and put the new one in place. I am planning on just removing all my machines from the domain and adding them back in to get everything to work, though I would prefer not to do this. I am just not sure where else to look. Thought I would post one last time. I figure that most of this comes from me not knowing a lot about ldap and how samba interacts with it. I am still learning. The passwords on the new server are different than the old. Does that have any affect on it? Do the passwords have to be the same when it comes to the new machine being added in? I did not think that would matter, but maybe it does. If it does then that would mean taht the XP machines somehow saved the password that was used when the machine joined the domain.
Re: [Samba] New samba server
sgm...@mail.bloomfield.k12.mo.us wrote: sgm...@mail.bloomfield.k12.mo.us wrote: sgm...@mail.bloomfield.k12.mo.us wrote: sgm...@mail.bloomfield.k12.mo.us wrote: I did not get this finished last summer, so decided to just wait and do it this summer. I have setup my new samba server and was trying to get some things tweaked to the way that I want them. I thought that I had asked this before and that I could do it, but it seems that it does not work. My new server is running as a domain server just like the old. It has the same domain name and I change the the SID using net setlocalsid to the same sid number as my old server. This new server is in a test environment right now. I was hoping that my old machines could just log into this server without having to get out of the domain and then rejoin it, but that does not work. It tells me that the domain is not there until I get out of the old one and then rejoin the new one. Is that how it has to work? I was hoping I would not have to do that if I left the domain name the same and set the SID on the new server. I just want to make sure I am not missing something before I go around to all 400 computers on campus and have them removed and rejoined to the domain. Mr. Terpstra gave me a bit of help. I had done nothing to set my domainsid, but after doing the following: net getlocalsid net getdomainsid The values are the same on both the old and the new samba server. This new server will take the place of my old one. Right now it is on a network with nothing else on it besides one of my old windows clients. If I remove one of my old clients from the domain and then re-add it, then it logs in just fine. If I take an old client from my current network and put it on this new network and try to login to the new samba server then it gives me the typical: Windows cannot connect to the domain either because the domain controller is down or otherwise unavailable, or because your computer account was not found. Please try again later. If this message continues to appear contact your System Administrator for assistance. The name of the Windows machine is business18 so I did an 'smbldap-adduser -w business18$' to make sure the machine account was added in to the directory, but the error was the same. I even changed the uid of the machine account to match the old one in case that was coming into play. Here is my samba config in case someone sees something that I don't. Which is quite possible since I forget more than I learn it seems. :) I'll be reading on the How-To to see if I can pick anything else up. [global] workgroup = BES server string = Samba Server Version %v netbios name = SCHOOL interfaces = lo eth0 hosts allow = 127. 10.0. 19 2.168.0. localhost ldap passwd sync = Yes ldap admin dn = cn=Manager,dc=school,dc=bloomfield.k12.mo.us ldap suffix = dc=school1,dc=bloomfield.k12.mo.us ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers ldap idmap suffix = ou=Users add machine script = /usr/sbin/smbldap-useradd -w %u add user script = /usr/sbin/smbldap-useradd -m %u ldap delete dn = Yes add group script = /usr/sbin/smbldap-groupadd -p %g add user to group script = /usr/sbin/smbldap-groupmod -m %u %g delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g set primary group script = /usr/sbin/smbldap-usermod -g %g %u Dos charset = 850 Unix charset = ISO8859-1 log file = /var/log/samba/log.%m max log size = 50 security = user passdb backend = ldapsam:ldap://127.0.0.1 domain master = yes domain logons = yes local master = yes os level = 65 preferred master = yes wins support = yes dns proxy = no load printers = yes cups options = raw [homes] comment = Home Directories browseable = no writable = yes [printers] comment = All Printers path = /var/spool/samba browseable = no guest ok = no writable = no printable = yes Well, I am getting ready to take the other server offline and put the new one in place. I am planning on just removing all my machines from the domain and adding them back in to get everything to work, though I would prefer not to do this. I am just not sure where else to look. Thought I would post one last time. I figure that most of this comes from me not knowing a lot about ldap and how samba interacts with it. I am still learning. The passwords on the new server are different than the old. Does that have any affect on it? Do the passwords have to be the same when it comes to the new machine being added in? I did not think that would matter, but maybe it does. If it does then that would mean taht the XP machines somehow saved the password that was used when the machine joined the
[Samba] samba server version removal
Is there some way to remove that label from showing up on the shares on the windows client? I tell my teachers to look for the F: drive or whichever drive, but for some reason MS in their infinite wisdom puts the drive letter at the end of the share so it does not show up unless the windows is expanded so that it can be seen. (and even though I have told them how to see the letter, most cannot remember that.) My shares are always like the following: share on samba 'Samba Server Version . (share)(F:) I have tried commenting out the 'Server String =' in the config and even setting it to something like 'Server String =', but it shows the same thing anyways. Thanks for any info. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba server version removal
Miguel Medalha wrote: In smb.conf: server string = or server string = anything I had changed that, but it made no difference. It seems that Windows XP makes a registry entry on the first time that it contacts the server and that must be deleted. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba Permissions
I have fought with these before. I finally got them down the way that I wanted them, but I was wanting to set this up a bit different. I want to make sure that there is no way to do this without actually having to assign a bunch of different drive letters to shares. I basically one one Drive letter assigned to the top of the directory. Underneath that directory there will be several others and then others underneath each one of those. I assume each directory inherits the top share though, is that correct? For example, if I have the following. MAIN (unix permissions rwxr-xr-x) --DIR1_LEVEL1 (unix permissions rwxr-xr-x) DIR1_LEVEL2 (unix permissions rwxrwxrwx) --DIR2-LEVEL1 (unix permissions rwxr-xr-x) [main] path = /MAIN I then map T: to the MAIN share. Here is how I would like this to work. Anyone in the TEACHER group can access either the DIR1_LEVEL1 or the DIR2_LEVEL2 and anything underneath. Only students in GROUP1 can access DIR1_LEVEL1 and anything underneath. Only students in GROUP2 can access DIR2_LEVEL1 and anything underneath. MAIN and LEVEL1 directories cannot be written to, but LEVEL2 directories can. If I browse down to the LEVEL2 directory then I still do not have permissions to write to it. If I create a share to the LEVEL2 directory then I could, but I don't want that because then I start getting a lot of network drive letters. I may have to create a lot of drive letters, but I just wanted to ask and make sure that I am not missing some sort of settings first. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba Permissions
sgm...@mail.bloomfield.k12.mo.us wrote: I have fought with these before. I finally got them down the way that I wanted them, but I was wanting to set this up a bit different. I want to make sure that there is no way to do this without actually having to assign a bunch of different drive letters to shares. I basically one one Drive letter assigned to the top of the directory. Underneath that directory there will be several others and then others underneath each one of those. I assume each directory inherits the top share though, is that correct? For example, if I have the following. MAIN (unix permissions rwxr-xr-x) --DIR1_LEVEL1 (unix permissions rwxr-xr-x) DIR1_LEVEL2 (unix permissions rwxrwxrwx) --DIR2-LEVEL1 (unix permissions rwxr-xr-x) [main] path = /MAIN I then map T: to the MAIN share. Here is how I would like this to work. Anyone in the TEACHER group can access either the DIR1_LEVEL1 or the DIR2_LEVEL2 and anything underneath. Only students in GROUP1 can access DIR1_LEVEL1 and anything underneath. Only students in GROUP2 can access DIR2_LEVEL1 and anything underneath. MAIN and LEVEL1 directories cannot be written to, but LEVEL2 directories can. If I browse down to the LEVEL2 directory then I still do not have permissions to write to it. If I create a share to the LEVEL2 directory then I could, but I don't want that because then I start getting a lot of network drive letters. I may have to create a lot of drive letters, but I just wanted to ask and make sure that I am not missing some sort of settings first. This may not be a Samba question after all. I did not realize this newer version of Fedora actually has ACLs so I will see if I can give access with Samba and then narrow it down with those. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] New samba server
I did not get this finished last summer, so decided to just wait and do it this summer. I have setup my new samba server and was trying to get some things tweaked to the way that I want them. I thought that I had asked this before and that I could do it, but it seems that it does not work. My new server is running as a domain server just like the old. It has the same domain name and I change the the SID using net setlocalsid to the same sid number as my old server. This new server is in a test environment right now. I was hoping that my old machines could just log into this server without having to get out of the domain and then rejoin it, but that does not work. It tells me that the domain is not there until I get out of the old one and then rejoin the new one. Is that how it has to work? I was hoping I would not have to do that if I left the domain name the same and set the SID on the new server. I just want to make sure I am not missing something before I go around to all 400 computers on campus and have them removed and rejoined to the domain. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] New samba server
sgm...@mail.bloomfield.k12.mo.us wrote: I did not get this finished last summer, so decided to just wait and do it this summer. I have setup my new samba server and was trying to get some things tweaked to the way that I want them. I thought that I had asked this before and that I could do it, but it seems that it does not work. My new server is running as a domain server just like the old. It has the same domain name and I change the the SID using net setlocalsid to the same sid number as my old server. This new server is in a test environment right now. I was hoping that my old machines could just log into this server without having to get out of the domain and then rejoin it, but that does not work. It tells me that the domain is not there until I get out of the old one and then rejoin the new one. Is that how it has to work? I was hoping I would not have to do that if I left the domain name the same and set the SID on the new server. I just want to make sure I am not missing something before I go around to all 400 computers on campus and have them removed and rejoined to the domain. Mr. Terpstra gave me a bit of help. I had done nothing to set my domainsid, but after doing the following: net getlocalsid net getdomainsid The values are the same on both the old and the new samba server. This new server will take the place of my old one. Right now it is on a network with nothing else on it besides one of my old windows clients. If I remove one of my old clients from the domain and then re-add it, then it logs in just fine. If I take an old client from my current network and put it on this new network and try to login to the new samba server then it gives me the typical: Windows cannot connect to the domain either because the domain controller is down or otherwise unavailable, or because your computer account was not found. Please try again later. If this message continues to appear contact your System Administrator for assistance. The name of the Windows machine is business18 so I did an 'smbldap-adduser -w business18$' to make sure the machine account was added in to the directory, but the error was the same. I even changed the uid of the machine account to match the old one in case that was coming into play. Here is my samba config in case someone sees something that I don't. Which is quite possible since I forget more than I learn it seems. :) I'll be reading on the How-To to see if I can pick anything else up. [global] workgroup = BES server string = Samba Server Version %v netbios name = SCHOOL interfaces = lo eth0 hosts allow = 127. 10.0. 19 2.168.0. localhost ldap passwd sync = Yes ldap admin dn = cn=Manager,dc=school,dc=bloomfield.k12.mo.us ldap suffix = dc=school1,dc=bloomfield.k12.mo.us ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers ldap idmap suffix = ou=Users add machine script = /usr/sbin/smbldap-useradd -w %u add user script = /usr/sbin/smbldap-useradd -m %u ldap delete dn = Yes add group script = /usr/sbin/smbldap-groupadd -p %g add user to group script = /usr/sbin/smbldap-groupmod -m %u %g delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g set primary group script = /usr/sbin/smbldap-usermod -g %g %u Dos charset = 850 Unix charset = ISO8859-1 log file = /var/log/samba/log.%m max log size = 50 security = user passdb backend = ldapsam:ldap://127.0.0.1 domain master = yes domain logons = yes local master = yes os level = 65 preferred master = yes wins support = yes dns proxy = no load printers = yes cups options = raw [homes] comment = Home Directories browseable = no writable = yes [printers] comment = All Printers path = /var/spool/samba browseable = no guest ok = no writable = no printable = yes -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] New samba server
Ryan Bair wrote: Have you migrated the user data to the new ldap server? Unless Samba knows about the users, they won't be able to log in. No. I was wanting to start off clean. I have a perl script that I wrote that will add the users in at one time. I just created one user and one machine account right now to test with. Mr. Terpstra suggested using slapcat and slapadd. I could do that, but I am actually planning on changing usernames. I use to truncate them at 8 characters, but I plan on quitting that. I am going with firstinitial.lastname. I'll look at slapcat. Maybe I can just export the machines and not the users. I am still a bit stumped on why this does not work though if I have added the machine into the ldap directory. Does Windows actually store some information about the domain also that could be causing the problem? I have a feeling that this upgrade is going to be a pain in the butt when the teachers get back. Especially with the name changes, because that means when they login, a new profile is going to be created and all of their documents will be in the other profile. I have warned and warned them to keep things backed up, and not just leave them on the computer so... -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Different IPs on a samba server #2
Leonardo Boselli wrote: It occurred also to me, with a 100% win2000 (PDC and WS) network: wins is based on broadcasts. so these does not passed the routers, and yes, they need some time to propagate, even 4 or more hours ! the way i resolved was this: That must have been my problem. I emailed back later that day that it just started working and I had not done anything different (well, I had done one other thing, but then I removed what I did and then it started working). I guess it just took a few hours for it to propagate. Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? since you have no idea on what part of the message you are replying to. of course is a worse idea to quote the entire message, either top or bottom. Yep, I will agree. Thanks for the reply. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Different IPs on a samba server #2
Ok, I have played with this some more. Here is my setup. I have a local network 10.0.x.x/255.255.0.0 I have an off site network 192.168.0.x/255.255.255.0 The samba server is also my wins server and has the ip 10.0.0.2 on my local network. This is the only NIC in the Samba server. My firewall/router server shows the following from netstat -r Destination---Gateway--GenMask---Iface 192.168.0.0---*255.255.255.0--eth2 10.0.0.0--*255.255.0.0eth1 127.0.0.0-*255.0.0.0--lo eth1 is 10.0.0.1 (in the firewall/router) eth2 is 192.168.0.254 (in the firewall/router) Everything works fine from my local network as far as accessing the samba server. From the 192.168 network, it does not though. If I go to a workstation Start-Run and type in \\samba_servername it tells me the network is not found. If I type in \\samba_ipaddress\share then it gives me a logon prompt, but it will never authenticate, it just keeps asking for the password like I typed the wrong one. Both of these work fine from the 10.0. network. I added 'hosts allow = 10.0 192.168.0 localhost' in the smb.conf thinking that this would allow both networks, but I guess this is not the case. Is there anything else that I need to do to access the samba server? It is a domain controller as well (not sure if that will make any difference as far as connection from the other IP addresses). Any suggestions would be welcomed. I am not sure if I need to be looking at some routing in my firewall, or something in my Samba server. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Different IPs on a samba server #2
Adam Williams wrote: you need a trailing dot, like hosts allow = 10.0. 192.168.0. localhost Sorry, that was a TYPO. can your 10. network and 192.168. network ping each other? Yes, they can ping each other. One thing I did try was to alias a 192.168.0.3 number to the 10.0.0.2 NIC in my samba server. I can ping the 10.0.0.2 NIC from both networks, but I cannot ping the 192.168.0.3 NIC from either network, unless I ping it from the samba server itself. are you running wins server = yes and msdfs root = yes on the samba server? Yes, both of those are on my samba server. I am going to try and put the 192.168 network into the switch where my 10.0. network is and then have the 192.168.0.254 NIC in my firewall go to the switch also and see if that makes any difference instead of having the 192.168 network come directly into my 192.168.0.254 NIC (which it is doing now). If I can do that and Samba will run correctly then that will be fine with me. [EMAIL PROTECTED] wrote: Ok, I have played with this some more. Here is my setup. I have a local network 10.0.x.x/255.255.0.0 I have an off site network 192.168.0.x/255.255.255.0 The samba server is also my wins server and has the ip 10.0.0.2 on my local network. This is the only NIC in the Samba server. My firewall/router server shows the following from netstat -r Destination---Gateway--GenMask---Iface 192.168.0.0---*255.255.255.0--eth2 10.0.0.0--*255.255.0.0eth1 127.0.0.0-*255.0.0.0--lo eth1 is 10.0.0.1 (in the firewall/router) eth2 is 192.168.0.254 (in the firewall/router) Everything works fine from my local network as far as accessing the samba server. From the 192.168 network, it does not though. If I go to a workstation Start-Run and type in \\samba_servername it tells me the network is not found. If I type in \\samba_ipaddress\share then it gives me a logon prompt, but it will never authenticate, it just keeps asking for the password like I typed the wrong one. Both of these work fine from the 10.0. network. I added 'hosts allow = 10.0 192.168.0 localhost' in the smb.conf thinking that this would allow both networks, but I guess this is not the case. Is there anything else that I need to do to access the samba server? It is a domain controller as well (not sure if that will make any difference as far as connection from the other IP addresses). Any suggestions would be welcomed. I am not sure if I need to be looking at some routing in my firewall, or something in my Samba server. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Different IPs on a samba server #2
[EMAIL PROTECTED] wrote: Adam Williams wrote: you need a trailing dot, like hosts allow = 10.0. 192.168.0. localhost Sorry, that was a TYPO. can your 10. network and 192.168. network ping each other? Yes, they can ping each other. One thing I did try was to alias a 192.168.0.3 number to the 10.0.0.2 NIC in my samba server. I can ping the 10.0.0.2 NIC from both networks, but I cannot ping the 192.168.0.3 NIC from either network, unless I ping it from the samba server itself. are you running wins server = yes and msdfs root = yes on the samba server? Yes, both of those are on my samba server. I am going to try and put the 192.168 network into the switch where my 10.0. network is and then have the 192.168.0.254 NIC in my firewall go to the switch also and see if that makes any difference instead of having the 192.168 network come directly into my 192.168.0.254 NIC (which it is doing now). If I can do that and Samba will run correctly then that will be fine with me. [EMAIL PROTECTED] wrote: Ok, I have played with this some more. Here is my setup. I have a local network 10.0.x.x/255.255.0.0 I have an off site network 192.168.0.x/255.255.255.0 The samba server is also my wins server and has the ip 10.0.0.2 on my local network. This is the only NIC in the Samba server. My firewall/router server shows the following from netstat -r Destination---Gateway--GenMask---Iface 192.168.0.0---*255.255.255.0--eth2 10.0.0.0--*255.255.0.0eth1 127.0.0.0-*255.0.0.0--lo eth1 is 10.0.0.1 (in the firewall/router) eth2 is 192.168.0.254 (in the firewall/router) Everything works fine from my local network as far as accessing the samba server. From the 192.168 network, it does not though. If I go to a workstation Start-Run and type in \\samba_servername it tells me the network is not found. If I type in \\samba_ipaddress\share then it gives me a logon prompt, but it will never authenticate, it just keeps asking for the password like I typed the wrong one. Both of these work fine from the 10.0. network. I added 'hosts allow = 10.0 192.168.0 localhost' in the smb.conf thinking that this would allow both networks, but I guess this is not the case. Is there anything else that I need to do to access the samba server? It is a domain controller as well (not sure if that will make any difference as far as connection from the other IP addresses). Any suggestions would be welcomed. I am not sure if I need to be looking at some routing in my firewall, or something in my Samba server. Well, it seems to be working now and I have no idea why. I was testing some things and took the 192.168 alias off of the samba NIC, which put it back to the way it was and now everything seems to work. I have no idea why because it was not working before unless it just took a while for something to get distributed across the network. I guess that I will be happy that it is working and won't worry about why right now. Thanks for all the help. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba with different IP networks
I have the following setup. I have a 10.0.x.x network that has my samba server on it. I have a filter/firewall that has a 10.0.x.x NIC and a 192.168.x.x NIC in it. The 192.168.x.x network is a wireless network for a building up town. Can I have the computers from the 192.168.x.x network logon to my samba domain? I was going to try and add a remote announce in for the 192.168.x.x network and see if that would work, but thought I would just ask before I did too much playing around with it. I figure I could always add another NIC onto the samba server with a 192.168.x.x address and have the wireless building come directly into a switch instead of the nic on the computer, but I would rather not have to do that if I don't have to. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba and LDAP install on FreeBSD
Here is my problem. I installed the OpenLdap 2.4.10 server and SASL client. I then went to install the Samba 3.0.30 Port and it tells me that it needs to install OpenLDAP client 2.3.42, but the 2.4.10 is in the same place and I need to deinstall it. I deinstall 2.4.10 and samba will install, but now openldap will not run because it has missing files. I went to reinstall the 2.4.10 SASL client, but it tells me that the openldap 2.3.42 needs to be removed. If I go to remove the 2.3.42 openldap client, it tells me that samba 3.0.30 relies on it. I am kind of stuck here. Does samba 3.0.30 not work with openldap 2.4? Do I have to have openldap 2.3? Thanks for any suggestions. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba and LDAP install on FreeBSD
Daniel O'Connor wrote: On Tue, 22 Jul 2008, [EMAIL PROTECTED] wrote: Here is my problem. I installed the OpenLdap 2.4.10 server and SASL client. I then went to install the Samba 3.0.30 Port and it tells me that it needs to install OpenLDAP client 2.3.42, but the 2.4.10 is in the same place and I need to deinstall it. I deinstall 2.4.10 and samba will install, but now openldap will not run because it has missing files. I went to reinstall the 2.4.10 SASL client, but it tells me that the openldap 2.3.42 needs to be removed. If I go to remove the 2.3.42 openldap client, it tells me that samba 3.0.30 relies on it. I am kind of stuck here. Does samba 3.0.30 not work with openldap 2.4? Do I have to have openldap 2.3? Put this in /etc/make.conf WANT_OPENLDAP_VER=24 It tells the ports tree that you want OpenLDAP 2.4 if a port doesn't specify a particular version. Thank you. That took care of the problem. I thought something could be added somewhere to make it use 2.4, but I was looking in the actual Makefile in the port and I did not see anything there. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3.2 on FreeBSD
I uninstalled my 3.0.30 port and then downloaded the samba-latest.tar.gz file and installed it so that I was starting out with 3.2.0. After installing, I cannot find the smb.conf file anywhere other than in the examples. Where do I need to place this file? Does it need to go in /usr/local/etc? I know that on my linux boxes it always placed it in /etc/samba. I would have thought that it would have placed it where it needed to on FreeBSD also, but I guess I was wrong. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3.2 on FreeBSD
Volker Lendecke wrote: On Fri, Jul 18, 2008 at 10:06:11AM -0500, [EMAIL PROTECTED] wrote: I uninstalled my 3.0.30 port and then downloaded the samba-latest.tar.gz file and installed it so that I was starting out with 3.2.0. After installing, I cannot find the smb.conf file anywhere other than in the examples. Where do I need to place this file? Does it need to go in /usr/local/etc? I know that on my linux boxes it always placed it in /etc/samba. I would have thought that it would have placed it where it needed to on FreeBSD also, but I guess I was wrong. That depends upon how you installed it. If you did a simple ./configure; make; make install Samba would expect its configuration file under /usr/local/samba/lib/smb.conf Ok, that is how I installed it, but the other answer from Terry was: Yes in /usr/local/etc/smb.conf The config file was in neither. Most of the directories were in the 'usr/local/samba' and there was nothing in the '/usr/local/etc' as far as samba goes. I would have thought that it would have put a smb.conf in one of the directories or at least an example in one. I just want to make sure that I get it in the correct place. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3.2 on FreeBSD
Herb Lewis wrote: run the following to find out where it should be smbd -b | grep CONFIGFILE [EMAIL PROTECTED] wrote: Ok, that is how I installed it, but the other answer from Terry was: Yes in /usr/local/etc/smb.conf The config file was in neither. Most of the directories were in the 'usr/local/samba' and there was nothing in the '/usr/local/etc' as far as samba goes. I would have thought that it would have put a smb.conf in one of the directories or at least an example in one. I just want to make sure that I get it in the correct place. Thanks. I tried that and it looks like the shared object libtalloc.so.1 is not found. I searched for it on the server just to make sure it was not in the wrong place or did not have a link to it, but it is no where to be found. Guess I'll have to find out where to get it installed from. Any ideas on that? I may should have just left 3.0.30,1 on there and gone with that. :) -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3.2 on FreeBSD
[EMAIL PROTECTED] wrote: Herb Lewis wrote: run the following to find out where it should be smbd -b | grep CONFIGFILE [EMAIL PROTECTED] wrote: Ok, that is how I installed it, but the other answer from Terry was: Yes in /usr/local/etc/smb.conf The config file was in neither. Most of the directories were in the 'usr/local/samba' and there was nothing in the '/usr/local/etc' as far as samba goes. I would have thought that it would have put a smb.conf in one of the directories or at least an example in one. I just want to make sure that I get it in the correct place. Thanks. I tried that and it looks like the shared object libtalloc.so.1 is not found. I searched for it on the server just to make sure it was not in the wrong place or did not have a link to it, but it is no where to be found. Guess I'll have to find out where to get it installed from. Any ideas on that? I may should have just left 3.0.30,1 on there and gone with that. :) Whoops my bad. I had a typo. Now I need to know for sure where the libtallco.so.1 goes. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3.2 on FreeBSD
[EMAIL PROTECTED] wrote: [EMAIL PROTECTED] wrote: Herb Lewis wrote: run the following to find out where it should be smbd -b | grep CONFIGFILE [EMAIL PROTECTED] wrote: Ok, that is how I installed it, but the other answer from Terry was: Yes in /usr/local/etc/smb.conf The config file was in neither. Most of the directories were in the 'usr/local/samba' and there was nothing in the '/usr/local/etc' as far as samba goes. I would have thought that it would have put a smb.conf in one of the directories or at least an example in one. I just want to make sure that I get it in the correct place. Thanks. I tried that and it looks like the shared object libtalloc.so.1 is not found. I searched for it on the server just to make sure it was not in the wrong place or did not have a link to it, but it is no where to be found. Guess I'll have to find out where to get it installed from. Any ideas on that? I may should have just left 3.0.30,1 on there and gone with that. :) Whoops my bad. I had a typo. Now I need to know for sure where the libtallco.so.1 goes. I just uninstalled it and ran the configure again and I noticed a few WARNINGS about sys/mount.h and netinet/ip.h present but cannot be compiled. I am not sure what that is about. I think I'll just go back and use the 3.0.30 port and install it. Hopefully there is not too much that I will be missing and maybe I can just upgrade to 3.2 later on. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Replacing a Samba server
I am setting up a new samba server that is going to replace my old one. Here is the question that I have. Am I going to have to go around to each computer on campus and have it rejoin the domain when I put the new server in place? If that is the case, can I set the SID on the new samba server to be the same as the old samba server and will that do the trick so that I do have to go around to each computer? Thanks for any info. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Replacing a Samba server
[EMAIL PROTECTED] wrote: I am setting up a new samba server that is going to replace my old one. Here is the question that I have. Am I going to have to go around to each computer on campus and have it rejoin the domain when I put the new server in place? If that is the case, can I set the SID on the new samba server to be the same as the old samba server and will that do the trick so that I do have to go around to each computer? Thanks for any info. I also might add this. I have software on some of my labs that will not let the user make any changes to the computer. If they change backgrounds, settings, software, etc. then upon a reboot, the changes will be gone. I don't know if this would have any affect on the computers joining the domain or not. I will keep the domain name the same as what I have now. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Replacing a Samba server
Alan Hodgson wrote: On Monday 14 July 2008, Scott Grizzard [EMAIL PROTECTED] wrote: If you are using an LDAP backend, just slapcat all of the data out of the old server, and dump it into the new one. The new Samba will read the SID from LDAP, and your clients shouldn't notice the difference. You also need to copy the local samba databases - a lot of stuff isn't stored in LDAP, like printer driver settings. Everything from /var/lib/samba/ would be good, as well as all your share directories of course. If you copy all that stuff your clients shouldn't notice the difference. I actually am not planning on copying any of my LDAP database. My plans were to setup a totally new server, move the home directories over and add my users through my batch perl script. I want to start everything out fresh. The students don't keep files over from year to year and there are only about 70-100 teachers so re-adding the users will not be that big of a deal. I just export the students out of our student records program and then into my batch perl script to have them created. I am actually going to be using a different naming routine for users so the old ldap db would not be what I wanted anyways. Thanks. -- Scott Mayo - System Administrator Bloomfield Schools PH: 573-568-5669 FA: 573-568-4565 Question: Because it reverses the logical flow of conversation. Answer: Why is putting a reply at the top of the message frowned upon? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba and Win98
Günter Kukkukk wrote: Am Mittwoch, 7. Mai 2008 schrieb [EMAIL PROTECTED]: I have a friend that had a samba server go down. They switched to another server and are having problems with people logging into it from Windows 98. If the same user logs in from WinXp then everything works otherwise they get an error. He also said that the smb.conf files were the same on both servers. From the errors it almost looks like some sort of permission problem, but since it logs in from XP clients then that throws that theory out the door. Thanks for any info. Scott Here is the error that he said he gets: Here it the message I get when trying to login from a Windows 98 Machine. The Password is Incorrect. Try Again This only happens from Windows 98 or 95 machines. The same user can login to the samba server from Windows 2000 or XP. The log file from /var/log/samba on that machine is as follows: BTW I'm not trying to login as Administrator. [2008/05/06 09:11:20, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:20, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:11:29, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:29, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:11:35, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:35, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:11:47, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:47, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:15:12, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:15:12, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:28:32, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:28:32, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 10:02:51, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 10:02:51, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 13:18:56, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 13:18:56, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 13:49:06, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 13:49:06, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 13:53:41, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 13:53:41, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:01:34, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:01:34, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:24:56, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:24:56, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:25:50, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:25:50, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:28:47, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:28:47, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:35:56, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:35:56, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:55:06, 0]
Re: [Samba] Samba and Win98
Günter Kukkukk wrote: Am Donnerstag, 8. Mai 2008 schrieb [EMAIL PROTECTED]: Günter Kukkukk wrote: Am Mittwoch, 7. Mai 2008 schrieb [EMAIL PROTECTED]: I have a friend that had a samba server go down. They switched to another server and are having problems with people logging into it from Windows 98. If the same user logs in from WinXp then everything works otherwise they get an error. He also said that the smb.conf files were the same on both servers. From the errors it almost looks like some sort of permission problem, but since it logs in from XP clients then that throws that theory out the door. Thanks for any info. Scott Here is the error that he said he gets: Here it the message I get when trying to login from a Windows 98 Machine. The Password is Incorrect. Try Again This only happens from Windows 98 or 95 machines. The same user can login to the samba server from Windows 2000 or XP. The log file from /var/log/samba on that machine is as follows: BTW I'm not trying to login as Administrator. [2008/05/06 09:11:20, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:20, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:11:29, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:29, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:11:35, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:35, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:11:47, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:47, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:15:12, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:15:12, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:28:32, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:28:32, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 10:02:51, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 10:02:51, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 13:18:56, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 13:18:56, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 13:49:06, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 13:49:06, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 13:53:41, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 13:53:41, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:01:34, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:01:34, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:24:56, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:24:56, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:25:50, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:25:50, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:28:47, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:28:47, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:35:56, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators:
[Samba] Samba and Win98
I have a friend that had a samba server go down. They switched to another server and are having problems with people logging into it from Windows 98. If the same user logs in from WinXp then everything works otherwise they get an error. He also said that the smb.conf files were the same on both servers. From the errors it almost looks like some sort of permission problem, but since it logs in from XP clients then that throws that theory out the door. Thanks for any info. Scott Here is the error that he said he gets: Here it the message I get when trying to login from a Windows 98 Machine. The Password is Incorrect. Try Again This only happens from Windows 98 or 95 machines. The same user can login to the samba server from Windows 2000 or XP. The log file from /var/log/samba on that machine is as follows: BTW I'm not trying to login as Administrator. [2008/05/06 09:11:20, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:20, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:11:29, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:29, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:11:35, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:35, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:11:47, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:11:47, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:15:12, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:15:12, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 09:28:32, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 09:28:32, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 10:02:51, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 10:02:51, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 13:18:56, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 13:18:56, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 13:49:06, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 13:49:06, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 13:53:41, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 13:53:41, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:01:34, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:01:34, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:24:56, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:24:56, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:25:50, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:25:50, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:28:47, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:28:47, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:35:56, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:35:56, 0] auth/auth_util.c:create_builtin_users(758) create_builtin_users: Failed to create Users [2008/05/06 14:55:06, 0] auth/auth_util.c:create_builtin_administrators(792) create_builtin_administrators: Failed to create Administrators [2008/05/06 14:55:06, 0]
Re: [Samba] Samba and Win98
Adam Williams wrote: did your friend copy over the .tdb files to the new server. they are kept in /var/lib/samba usually I'll check with him on that, but if he did not do that would he still be able to login from XP machines? I would have thought that he would not have been able to login from either in that case. -- Scott Mayo System Administrator Bloomfield Schools -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] DFS link permissions
Do the permissions placed on the links have any effect on the actually saving of files and directoies to the shares? Thanks. Scott -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbldap-useradd
ons, 06.07.2005 kl. 22.02 skrev Scott Mayo: I have my new servers up and going with Samba and LDAP on them. Now I have to add my users. Here is my problem. I have written a perl script that reads a file and adds users to different groups depending on what grade they are in and it also generates a random password, that it exports to a master list. The old script would add the user to unix and then to samba, along with the password of each user. This made it easy for me to have our student records program to export all of their information and then run it through my perl script. Now that I have switched over to Samba/ldap, I see no option to add the passwd in the command line. It always prompts for the passwd. Does anyone have a way that I can add the user and passwd? The '-P' option in smbldap-useradd does not take a password in-line, but rather asks for it to be typed in. The unix 'passwd' was the same way, but it had a switch '--stdin' so that I could pipe the passwd into it and the smbpasswd actually let you put the password in-line. How about building smbpasswd into your script? smbpasswd modifies both the Unix and Windows passwords at the same time. Two possible shell solutions, one from Nick Soracco and one from an answer to Wim Bakke (which I don't have), both from this list June last (copy 'n paste): printf password\npassword\n | smbpasswd -a -s username echo -n -e $PASS1\n$PASS2 | smbpasswd -as $USERNAME Just read the passwords from your list of details for each pupil. That is actually what my old script did. I just found the '-s' after I posted this message. I do have a question about this though. Since Samba is using ldap, is it alright to use smbpasswd? Do I not have to use smbldap-passwd? Do they modify the same file? Thanks. Scott -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba