RE: [Samba] Samba 3.0 and ADS How to
Wolfgang, Please would you give us an update on your progress with the documentation you provided below. I am sure many people will be interested to see this develop further. Cheers, John T. On Thu, 6 Nov 2003, Wolfgang Wagner wrote: Hello Dominik, From: Dominik Brosch [mailto:[EMAIL PROTECTED] HelloList, Do someone have got a link/document/How To for setting up Samba 3.0 in ADS-Enviroment. I read Samba-Collection-How-To, but I got stuck and need help. My favour will be a easy and perspicuous manual like a walkthrough I started to write a siple walkthrough, but I am not finished yet. Also it is only in german: --- Samba 3 an ADS auf Debian-Woody unter Verwendung von Paketen von http://www.backports.org/debian 1. Installation Samba 3 2. Installation Winbindd 3. Konfiguration des DNS für Kerberos: in /var/cache/bind/Zonefiles: ;MS-ADS-Server adssrv86400 IN A 192.168.1.1 ; Kerberos-Server (ADS-Server) _kerberos IN TXT YOUR.REALM.HERE _kerberos-master._udp IN SRV 0 0 88 adssrv _kerberos-adm._tcp IN SRV 0 0 749 adssrv _kpasswd._udp IN SRV 0 0 464 adssrv ; Round-robin setup _kerberos._udp IN SRV 0 0 88 adssrv _ldap._tcp IN SRV 0 0 389 adssrv Damit wird der Kerberos-Server auch via DNS gefunden. Tip: Realm und DNS-Einträge aus dem ADS abschauen: auf ADS-Server im DNS-Manager die Einträge suchen 4. Konfiguration samba3 in /etc/samba/smb.conf -fehlt noch- wie im Howto Kap. 7 beschrieben 5. Konfiguration Winbindd: in /etc/nsswitch.conf ändern von passwd: compat group: compat shadow: compat nach: passwd: files winbind group: files winbind shadow: compat 6. Den Rechner zur Domäne hinzufügen: samba:# net ads join -U administrator administrator password: [2003/11/06 12:31:37, 0] libads/ldap.c:ads_join_realm(1314) Host account for riwake1 already exists - deleting old account Using short domain name -- your.domainname.here Joined 'SAMBA' to realm 'YOUR.REALM.HERE' 7. Testen, ob winbindd funktioniert: samba:# net ads user -U administrator administrator password: Userliste aus ADS 8. Laufwerksmapping von einem Windows-Rechner im ADS aus versuchen, sollte nun gehen --- Mit freundlichen Grüßen Wolfgang Wagner -- Systemadministration Riwa GmbH, Zwingerstraße 1, 87435 Kempten, +49-831-52 29 63-537 eMail:[EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- John H Terpstra Email: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3.0 and ADS How to
HelloList, Do someone have got a link/document/How To for setting up Samba 3.0 in ADS-Enviroment. I read Samba-Collection-How-To, but I got stuck and need help. My favour will be a easy and perspicuous manual like a walkthrough Thanks in advance. Regards Dominik Brosch -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Samba 3.0 and ADS How to
Hello Dominik, From: Dominik Brosch [mailto:[EMAIL PROTECTED] HelloList, Do someone have got a link/document/How To for setting up Samba 3.0 in ADS-Enviroment. I read Samba-Collection-How-To, but I got stuck and need help. My favour will be a easy and perspicuous manual like a walkthrough I started to write a siple walkthrough, but I am not finished yet. Also it is only in german: --- Samba 3 an ADS auf Debian-Woody unter Verwendung von Paketen von http://www.backports.org/debian 1. Installation Samba 3 2. Installation Winbindd 3. Konfiguration des DNS für Kerberos: in /var/cache/bind/Zonefiles: ;MS-ADS-Server adssrv86400 IN A 192.168.1.1 ; Kerberos-Server (ADS-Server) _kerberos IN TXT YOUR.REALM.HERE _kerberos-master._udp IN SRV 0 0 88 adssrv _kerberos-adm._tcp IN SRV 0 0 749 adssrv _kpasswd._udp IN SRV 0 0 464 adssrv ; Round-robin setup _kerberos._udp IN SRV 0 0 88 adssrv _ldap._tcp IN SRV 0 0 389 adssrv Damit wird der Kerberos-Server auch via DNS gefunden. Tip: Realm und DNS-Einträge aus dem ADS abschauen: auf ADS-Server im DNS-Manager die Einträge suchen 4. Konfiguration samba3 in /etc/samba/smb.conf -fehlt noch- wie im Howto Kap. 7 beschrieben 5. Konfiguration Winbindd: in /etc/nsswitch.conf ändern von passwd: compat group: compat shadow: compat nach: passwd: files winbind group: files winbind shadow: compat 6. Den Rechner zur Domäne hinzufügen: samba:# net ads join -U administrator administrator password: [2003/11/06 12:31:37, 0] libads/ldap.c:ads_join_realm(1314) Host account for riwake1 already exists - deleting old account Using short domain name -- your.domainname.here Joined 'SAMBA' to realm 'YOUR.REALM.HERE' 7. Testen, ob winbindd funktioniert: samba:# net ads user -U administrator administrator password: Userliste aus ADS 8. Laufwerksmapping von einem Windows-Rechner im ADS aus versuchen, sollte nun gehen --- Mit freundlichen Grüßen Wolfgang Wagner -- Systemadministration Riwa GmbH, Zwingerstraße 1, 87435 Kempten, +49-831-52 29 63-537 eMail:[EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3.0 in ADS
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Lewis Edward E wrote: How do I connect a Samba3.0 server to a OU in ADS ?? For example I only have privilege to connect machines to OU test which belongs to corp.domain.com. You can define an OU to use with the net command when joining the domain IIRC. cheers, jerry -- Hewlett-Packard- http://www.hp.com SAMBA Team -- http://www.samba.org GnuPG Key http://www.plainjoe.org/gpg_public.asc You can never go home again, Oatman, but I guess you can shop there. --John Cusack - Grosse Point Blank (1997) -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE/oqw+IR7qMdg1EfYRAm9vAKCJQeY/EhXdhe6sD/kSfRECm6VchQCgvRuq y/ljwwp/P77eDC6eJYfbcN8= =hQ8z -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3.0 in ADS
How do I connect a Samba3.0 server to a OU in ADS ?? For example I only have privilege to connect machines to OU test which belongs to corp.domain.com. Regards, Edward ~~~ Edward Lewis Information Engineering Systems -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3.0 as ADS server member
Hi; I've a problem like; I have configured my smb.conf file for security=ads mode and krb5.conf is also OK.I'm sure because I've tested it with kinit command it works well.but when I try to see the shared files with smbclient I've got 2 different problems. 1st is whenI use -k parameter to run it with kerberos the error is NT_STATUS_LOGON_FAILURE 2nd is when I use smbclient without -k it asks for password I enter it but it gives an error like service setup failed in mu opinion the problem may be about encrypt password parameter in smb.conf because of encrypted passwords have been enabled by default in order to inter-operate better with out-of-the-box Windows client installations. This does mean that either (a) a samba account must be created for each user, or (b) 'encrypt passwords = no' must be explicitly defined in smb.conf. but I am not sure.. I have a line encrypt password=yes in smb.conf!! thanks for help - This mail sent through IMP: http://webmail.students.itu.edu.tr -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] samba 3.0, winbindd/ADS and mailaccounts, possible?
Hi list, i wonder if the folowing szenario will be possible with samba 3.0: a win2k domain with samba as member-server, on the samba server runs winbindd to get the useraccounts from the domain for filesharing and for mail send/delivery with fetchmail and sendmail. I don't want to have to create the mailusers localy on the linuxbox, the domain should be completly manageable from the win2k server. is this possible? Christoph -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3.0 as ADS domain member (atleast).
Hi all, I am trying to set up a Samba 3.0 beta, as an additional domain controller on a domain that has a windows 2000 (ADS integrated) DC. I would like some pointers on how I could achieve this; I am to understand that there may not be tried-and-tested howtos but, even some raw documentation in that direction would do. The closest I got was the Chapter 8 (Samba as a ADS domain member), bundled, in the documentation with the, distribution. This document I followed but, on trying net use * \\sambaServer\shareName, it asks me for a password, inspite of a successful './net ads join'. 'klist tickets' tells me that 'klist: No credentials cache found (ticket cache FILE:tickets)'. After some googling, did add 'winbind cache time = 10', but it didn't help the situation. Kindly help. Regards, suraj. __ Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba