[Samba] help needed: connecting with similar windows-unix usernames?
Hello all samba'ers I'm trying to configure samba for Windows (active-directory) authentication, with every Windows-user having a similar unix username. I've created the users in both sides but I couldn't configure the smb.conf file (either with or without SWAT) to make it work. I'm using XP clients with a Win2K3 as the domain server and Solaris 9 as the samba server. Everything works fine when I use the 'security = share' option so I believe the physical connection is ok. 1. Do I actually need to use 'security = user', or should I use 'security = server? 2. I've created the smbpasswd(5) file and edited it with smbpasswd(8), and synchronized users+passwords with the relevant ones at /etc/passwd and /etc/shadow. Do I actually need the smbpasswd(5)? 3. Is it feasible without using winbind? 4. Does any of you have some smb.conf sample for connecting using similar windows-unix usernames? 5. Do I need to use the 'username map' option even if the usernames are similar? Here is a part of the [global] section at my smb.conf, each line suffiixed (here, not actually in the file itself) with my description: [global] workgroup = GIS' windows workgroup to 'contain' the samba server null passwords = yes ' preferred, not a must valid users = minhal, +pcgis' pcgis is a group on unix. am I right? or does this parameter meant to be for windows groups? write list = minhal ' this user should have write-permission on shared directories regardless of their mode Here is another section of my smb.conf for defining a samba share: [home1] path = /home1 read only = no guest ok = yes ' not necessary, just for the test Now what am I missing? what have I done wrong? Thanks and regards, Amit Zvigoren Systematics Technologies -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help
Hi! I am using samba server.I am running windows client as well as linux server.Due to some problem I have to format my windows xp client.Before formatting I can easily share the resources between windows xp and linux.To access the windows share from linux I just have to do this: mount -t smbfs -o username=ibrahim,password=ibrahim //192.168.0.168/ibrahim /mnt/share I couldn copy and paste easily from linux to windows and vice versa.After formatting windows pc the above command does not work.It shows this output 10168: Session request to 192.168.0.168 failed (called name not present) Please help me Thanx _ One and only Ash. Find out all about her. Only on MSN Search http://server1.msn.co.in/profile/aishwarya.asp -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help
ibrahim bazarwala wrote: Hi! I am using samba server.I am running windows client as well as linux server.Due to some problem I have to format my windows xp client.Before formatting I can easily share the resources between windows xp and linux.To access the windows share from linux I just have to do this: mount -t smbfs -o username=ibrahim,password=ibrahim //192.168.0.168/ibrahim /mnt/share I couldn copy and paste easily from linux to windows and vice versa.After formatting windows pc the above command does not work.It shows this output 10168: Session request to 192.168.0.168 failed (called name not present) I guess you need to check all the obvious things such as that you have actually created a share on your windows machine that is named ibrahim. Neil -- email: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with net groupmap, users of groups don't have permits
In a Sarge Kernel 2,6 running Samba 3 as PDC security=user, I turned with net groupmap modify... the English language of the names of the groups of dominio NT to the Spanish, so these are compatible with the Spanish version of each W9x. Everything it did without problems with script downloaded from Internet. But in the list of users and groups of the window Share... in each client Windows, all the existing groups do not see themselves. In addition, although the group Admins. del Dominio (in spanish) sees itself, the users of that group (Administrators of the Domain) cannot accede to the shared resources with them What can happen? Regards Ricardo Buenos Aires -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help! mount error 11 - can't find any info on this!!
When I try to mount a windows share, I am getting the following error message: mount error 11 = Resource temporarily unavailable Refer to the mount.cifs(8) manual page (e.g.man mount.cifs) I am running this command: mount.cifs //192.168.1.2/Clinic /mnt/clinic/ -o username=administrator,password=x,rw In /var/log/messages, i get the following: kernel: CIFS VFS: cifs_mount failed w/return code = -11 I cannot find any documentation about this error, and no one else seems to be getting it. Does anyone know anything about this problem, and how I can resolve this issue. Any info would be great. Thankyou. Andrew. -- View this message in context: http://www.nabble.com/help%21-mount-error-11---can%27t-find-any-info-on-this%21%21-t1243401.html#a3292130 Sent from the Samba - General forum at Nabble.com. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help compiling 3.0.21c on Mac OS X 10.4.5
My first attempt of compiling Samba or pretty much anything like this under Mac OS X. Dragged the source down, did ./configure with success (AFAICT). When doing #root make it chugs through quite a good part of it, but then: Compiling libsmb/clikrb5.c libsmb/clikrb5.c: In function 'krb5_locate_kdc': libsmb/clikrb5.c:306: error: 'krb5_krbhst_handle' undeclared (first use in this function) libsmb/clikrb5.c:306: error: (Each undeclared identifier is reported only once libsmb/clikrb5.c:306: error: for each function it appears in.) libsmb/clikrb5.c:306: error: parse error before 'hnd' libsmb/clikrb5.c:307: error: 'krb5_krbhst_info' undeclared (first use in this function) libsmb/clikrb5.c:307: error: 'hinfo' undeclared (first use in this function) libsmb/clikrb5.c:316: error: 'KRB5_KRBHST_KDC' undeclared (first use in this function) libsmb/clikrb5.c:316: error: 'hnd' undeclared (first use in this function) libsmb/clikrb5.c:841:2: error: #error UNKNOWN_KRB5_AP_REQ_FREE_FUNCTION libsmb/clikrb5.c:883:2: error: #error UNKOWN_KRB5_AP_REQ_DECODING_FUNCTION make: *** [libsmb/clikrb5.o] Error 1 Any input on this? The reason I am trying this is to see if it'll help Mac OS X' terrible performance when talking to samba-servers, especially when a folder on the server contains many files (~ 200). If anybody has any other input on that topic, by all means Thanks in advance! Lars -- IT-ansvarlig • IT Consultant IMK, UiO • Dept of Media and Comm., Univ of Oslo http://www.larsagundersen.no/ +47 22 85 04 00 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help, we are running out of idmap uids
Dear Samba experts, Initially we set up winbind to the following: idmap uid = 1-2 thinking that 1 uids were sufficient for the number of users we would get. We also have defined our UNIX users from 20001 onwards. However, now I can see that our latest windows(idmap uid) users has uid 19123 and this troubles me. Since I cannot just extend the range to be say 1-3 because of our UNIX UIDs, I would like to ask if it is possible to define 2 ranges like: idmap uid = 1-2,3-4 I noticed that winbind will not automatically remove UIDs not used. For instance when a windows user is deleted. Is there a way to do this manually ? And will winbind then use the unused UIDs ? Kind regards, Hans. ** This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to which they are addressed. If you have received this e-mail in error please notify the system manager at [EMAIL PROTECTED] This e-mail and its contents do not constitute and shall not be considered as a financial commitment of Maersk Olie og Gas AS and its affiliates. Maersk Olie og Gas AS expressly disclaims any responsibility as to the accuracy and use of this e-mail and its contents. ** -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] help, we are running out of idmap uids
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hans B. Randgaard wrote: Initially we set up winbind to the following: idmap uid = 1-2 thinking that 1 uids were sufficient for the number of users we would get. We also have defined our UNIX users from 20001 onwards. However, now I can see that our latest windows(idmap uid) users has uid 19123 and this troubles me. Since I cannot just extend the range to be say 1-3 because of our UNIX UIDs, I would like to ask if it is possible to define 2 ranges like: idmap uid = 1-2,3-4 I noticed that winbind will not automatically remove UIDs not used. For instance when a windows user is deleted. Is there a way to do this manually ? And will winbind then use the unused UIDs ? Winbindd maintains a static mapping os DIS to Unix ids. Since SIDs are never reused, neither are the Unix ids. Ids are allocated in a monotonically increasing fashion so you're only current choice is to expand or move the idmap ranges. This has come up a lot ni the past, but all the proposed solutions were suboptimal IMO and therefore never integrated into source tree. I'm more than happy to try to find time to review patches, but I've got several ongoing projects right now and can't do this myself. Mostly, it would involve fixing the idmap range parser. Multiple ranges is not that hard to do I think. You deal with aa range in isolation until it has been exhausted and then move on to the next. cheers, jerry = I live in a Reply-to-All world--- Samba--- http://www.samba.org Centeris --- http://www.centeris.com -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFD+zFvIR7qMdg1EfYRAsOeAJ4hGxDodU2tgwpQfxoMekRlZq2mqACfQN5E TyCbsVS1Wty65Cxd1TfGnz4= =qaCP -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help w/ winbind re-bind after error Referral
Hi, we've got a samba-3.0.21a-1 systems that's set up w/ winbind to query AD to authenticate users w/out Unix accts. The system is also set up to support our LDAP'd UNIX accts. After setting the [global] section like this: [global] realm = WIN.OURDOMAIN.COM security = ads password server = thebes balsam encrypt passwords = yes log file = /var/log/samba/log.%m log level = 5 max log size = 300 debug level = 3 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 idmap uid = 15000-35000 idmap gid = 15000-35000 winbind separator = \\ winbind use default domain = no netbios name = SLOCOMBE workgroup = OURDOMAIN ... /etc/nsswitch edited like this: passwd: files ldap winbind group: files ldap winbind ...and /etc/pam.d/system-auth edited like this: authrequired /lib/security/$ISA/pam_env.so authsufficient/lib/security/$ISA/pam_unix.so likeauth nullok authoptional /lib/security/$ISA/pam_krb5.so use_first_pass minimum_uid=1 ticket_lifetime=9 renew_lifetime=63 forwardable authrequired /lib/security/$ISA/pam_ldap.so use_first_pass authsufficient/lib/security/pam_winbind.so use_first_pass account sufficient/lib/security/$ISA/pam_unix.so account [default=bad success=ok user_unknown=ignore service_err=ignore system_err=ignore] /lib/security/$ISA/pam_ldap.so account sufficient/lib/security/pam_winbind.so ... and turned OFF the nscd service... ... we can join the AD domain correctly via 'net join', and all appears to work: 'wbinfo -u' and 'wbinfo -g' show users groups in all three of our AD domains. 'wbinfo -t' succeeds as well. SAMBA shares map correctly on our XP systems for users who only have AD accts., and those w/ LDAP accts. So far, so good. But now, when you run 'id user' or 'groups user', the systems gets fairly catatonic, and smb / winbind must be restarted to regain sanity. From log.winbindd (these type of messages repeat over and over): [2006/02/09 13:53:59, 3] libads/ldap.c:ads_server_info(2541) got ldap server name [EMAIL PROTECTED], using bind path: dc=WIN,dc=OURDOMAIN,dc=COM [2006/02/09 13:53:59, 3] libads/sasl.c:ads_sasl_spnego_bind(210) ads_sasl_spnego_bind: got OID=1 2 840 48018 1 2 2 [2006/02/09 13:53:59, 3] libads/sasl.c:ads_sasl_spnego_bind(210) ads_sasl_spnego_bind: got OID=1 2 840 113554 1 2 2 [2006/02/09 13:53:59, 3] libads/sasl.c:ads_sasl_spnego_bind(210) ads_sasl_spnego_bind: got OID=1 2 840 113554 1 2 2 3 [2006/02/09 13:53:59, 3] libads/sasl.c:ads_sasl_spnego_bind(210) ads_sasl_spnego_bind: got OID=1 3 6 1 4 1 311 2 2 10 [2006/02/09 13:53:59, 3] libads/sasl.c:ads_sasl_spnego_bind(219) ads_sasl_spnego_bind: got server principal name [EMAIL PROTECTED] [2006/02/09 13:53:59, 3] libsmb/clikrb5.c:ads_cleanup_expired_creds(415) Ticket in ccache[MEMORY:winbind_ccache] expiration Thu, 09 Feb 2006 23:53:11 PST [2006/02/09 13:53:59, 3] libads/ldap.c:ads_do_paged_search(527) ads_do_paged_search: ldap_search_with_timeout((objectclass=*)) - Referral [2006/02/09 13:53:59, 3] libads/ldap_utils.c:ads_do_search_retry(66) Reopening ads connection to realm 'WIN.OURDOMAIN.COM' after error Referral [2006/02/09 13:53:59, 3] libsmb/namequery.c:resolve_lmhosts(855) resolve_lmhosts: Attempting lmhosts lookup for name balsam0x20 [2006/02/09 13:53:59, 3] libsmb/namequery.c:resolve_wins(752) resolve_wins: Attempting wins lookup for name balsam0x20 [2006/02/09 13:53:59, 3] libsmb/namequery.c:resolve_wins(755) resolve_wins: WINS server resolution selected and no WINS servers listed. [2006/02/09 13:53:59, 3] libsmb/namequery.c:resolve_hosts(917) resolve_hosts: Attempting host lookup for name balsam0x20 [2006/02/09 13:53:59, 3] libsmb/namequery.c:name_resolve_bcast(694) name_resolve_bcast: Attempting broadcast lookup for name balsam0x20 [2006/02/09 13:54:00, 3] libads/ldap.c:ads_connect(288) Connected to LDAP server 192.168.55.60 [2006/02/09 13:54:00, 3] libads/ldap.c:ads_server_info(2541) got ldap server name [EMAIL PROTECTED], using bind path: dc=WIN,dc=OURDOMAIN,dc=COM [2006/02/09 13:54:00, 3] libads/sasl.c:ads_sasl_spnego_bind(210) ads_sasl_spnego_bind: got OID=1 2 840 48018 1 2 2 [2006/02/09 13:54:00, 3] libads/sasl.c:ads_sasl_spnego_bind(210) ads_sasl_spnego_bind: got OID=1 2 840 113554 1 2 2 [2006/02/09 13:54:00, 3] libads/sasl.c:ads_sasl_spnego_bind(210) ads_sasl_spnego_bind: got OID=1 2 840 113554 1 2 2 3 [2006/02/09 13:54:00, 3] libads/sasl.c:ads_sasl_spnego_bind(210) ads_sasl_spnego_bind: got OID=1 3 6 1 4 1 311 2 2 10 [2006/02/09 13:54:00, 3] libads/sasl.c:ads_sasl_spnego_bind(219) ads_sasl_spnego_bind: got server principal name [EMAIL PROTECTED] [2006/02/09 13:54:00, 3] libsmb/clikrb5.c:ads_cleanup_expired_creds(415) Ticket in ccache[MEMORY:winbind_ccache] expiration Thu, 09 Feb 2006 23:53:11 PST [2006/02/09 13:54:00, 3] nsswitch/winbindd_ads.c:dn_lookup(393) ads:
[Samba] [HELP] Samba resets KickOffTime when changing password
hi, i experienced the following (buggy?) behaviour with samba v3.0.14a on debian and slapd 2.2.23-8 backend: when changing a domain userpassword (with smbpasswd or directly from windows client) sambaKickOffTime is handled correctly (= not reset). when changing a password with MS NT Usermanager, sambaKickOffTime is being reset (to 0 = never). is this intended behaviour by samba or Usermanager? i don´t want to blame the samba team for errors in MS code, of course!!! i just want to be sure that it´s no bug in the samba code or find somebody with experience in this. thanks for your help!!! -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution (IT) Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help with Samba v. 3.0.21b authentication
Hi All, I have this strange problem that if the user has the same username in UNIX as in Windows, he can do net view \\server file://server/ with no problem but for users whose username is not the same on UNIX as it is in Windows, net view \\server file://server/ returns: System error 5 has occurred. Access is denied and if try to map a share, I see the following in the log.winbindd: [2006/02/07 15:38:00, 3] nsswitch/winbindd_user.c:winbindd_getpwnam(336) [0]: getpwnam WINTESTUSER [2006/02/07 15:38:00, 5] nsswitch/winbindd_user.c:getpwsid_sid2uid_recv(264) Could not query user's DOMAIN\wintestuser uid [2006/02/07 15:46:04, 3] nsswitch/winbindd_misc.c:winbindd_interface_version(454) The user 'wintestuser' does not exist in unix. This is on Solaris 10 and Samba 3.0.21b, I am not using PAM for samba, not sure if that causes this problem. Other Samba servers with lower version (3.04) do not have this problem. Thanks for any help. Vahid. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help me understand ldapsam:trusted
According to smb.conf manual: the ldapsam:trusted=yes option assumes that the complete user and group database that is relevant to Samba is stored in LDAP and also: ldapsam:trusted=yes can be activated and Samba can completely bypass the NSS system to query user information. If I understand it well, enabling this option would make possible to authenticate Samba users against LDAP on systems without NSS support. However, this is not the case: no matter if this option is enabled or not, Samba won't authenticate the user if he's only in LDAP (and the operating system doesn't see that user in /etc/passwd, and can't verify in LDAP via NSS). So do I understand this option wrongly? I'm using Samba 3.0.21a on a Linux distro that doesn't support NSS. -- Tomasz Chmielewski http://wpkg.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help in server signing
Hi *! I have a samba (3.0.20b)+ldap pdc and I this problem: I can't mount a samba share from a linux client. samba/error.log: [2006/01/18 14:51:42, 1] smbd/service.c:make_connection_snum(662) 192.168.10.41 (192.168.10.41) signed connect to service pubblica initiall y asuser sambauser (uidP1, gidQ2) (pid 11527) [2006/01/18 14:51:42, 0] libsmb/smb_signing.c:srv_check_incoming_message(78 2) srv_check_incoming_message: BAD SIG: seq 4 wanted SMB signature of [2006/01/18 14:51:42, 0] libsmb/smb_signing.c:srv_check_incoming_message(78 6) srv_check_incoming_message: BAD SIG: seq 4 got SMB signature of [2006/01/18 14:51:42, 0] libsmb/smb_signing.c:signing_good(240) signing_good: BAD SIG: seq 4 [2006/01/18 14:51:42, 0] lib/util_sock.c:receive_smb(734) receive_smb: SMB Signature verification failed on incoming packet! [2006/01/18 14:51:42, 1] smbd/service.c:close_cnum(835) 192.168.10.41 (192.168.10.41) closed connection to service pubblica In internet I find a post about it in which I read that this error could be caused by server signing = auto. I solved above errors setting it to disabled. Anyone knows server signing do? Setting it to disabled can create problems to windows client? Thanks a lot, Fabio -- Dott. Fabio Marcone 2T srl Telefono +39 - 0871- 540154 Fax+39 - 0871- 571594 Email [EMAIL PROTECTED] Indirizzo Viale B. Croce 573 66013 Chieti Scalo (CH) GNU/Linux registered user #400424 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] HELP
Dear Developers! I have latest release of Samba and I have trouble.. my system charset is koi8-r and smb.conf is: [global] workgroup = ALEXSOFT server string = Samba security = share log file = /var/log/samba.%m max log size = 50 dns proxy = no restrict anonymous = no domain master = no preferred master = no max protocol = NT ldap ssl = No server signing = Auto wins server = 192.168.11.1 hostname lookups = yes unix charset = KOI8-R #display charset = KOI8-R dos charset = CP866 enhanced browsing = no browse list = no large readwrite = no unix extensions = no nt status support = no nt pipe support = no [soft_win32] case sensitive = no msdfs proxy = no path = /mnt/c/soft_win32/ guest ok = yes [flashes] case sensitive = no guest ok = yes msdfs proxy = no path = /mnt/c/Raznoe/Flashes But in konqueror shared folder named on Russian like as Äí¼Ñ¡¡¿¬ In English thats work fine I use all methods in forums and Howto's. but it's not workI think it's bug( HELP ME PLEASE!!! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] HELP cant add to ACL
I did root# net rpc join -U administrator%password on my samba 3 PDC by mistake, since then when I try to add a new entry to the ACL of a file it says: The program cannot open the required dialog box because it cannot determine whether the computer named poseidon is joined to a domain. It worked before issuing the net command. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Fwd: Re: [Samba] Help IDMAP_RID and trusted domains]
no ideas? i think it´s also important for other guys on the list using samba :) THX -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution (IT) Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] HELP!
On 12/6/05, Marco Musico' [EMAIL PROTECTED] wrote: The stuff was running pretty well up until we tried to setup and install a printer on the Linux box; I saved the old configuration (smb.conf file) and then I started to change some lines in it to allow printer sharing... my nightmare started to be real since then!! Now no user on any pc can log into the domain; root can add machines in the domain (and the machine account is created too..) but cannot log in. Apparently the server behaves as a stand alone one even when testparm shows it's a PDC; infact I can log into any Windows machine with a local user and I am able to browse the server by running \\server: Samba asks me for user/password and the let me in; at that point I can brose the shares, open files, save files and so on. Now my question is: what have I done wrong? It's clearly something we changed in smb.conf or so that is making us having an headache. I am including smb.conf, log.smbd (with a level 5 debugging). It doesn't look like these files were attached. If you can add machines to the domain, then that suggests that the server is still acting as a PDC in some capacity. I'm not sure why it's not working; maybe your smb.conf would shed some light. Josh Kelley -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help IDMAP_RID and trusted domains
hi, it´s me again :( i´m still not able to use idmap_rid in a trusted domain environment (samba v3.0.20b Sernet). well, to be clear: NSS is not working (id, getent passwd user, ...) so samba does not find the posix information for any user from a foreign domain it´s working in a single domain with # # WINBIND - Settings idmap backend = idmap_rid:DOMA=1-5 idmap uid = 1-5 idmap gid = 1-5 allow trusted domains = no winbind use default domain = yes winbind enum users = no winbind enum groups = no winbind trusted domains only = no allow trusted domains = no winbind cache time = 60 template shell = /bin/bash template homedir = /data/users/%U # but it´s not working with # # WINBIND - Settings idmap backend = idmap_rid:DOMA=1-2,DOMB=20001-5 idmap uid = 1-5 idmap gid = 1-5 allow trusted domains = yes winbind use default domain = no winbind enum users = no winbind enum groups = no winbind trusted domains only = no allow trusted domains = no winbind cache time = 60 template shell = /bin/bash template homedir = /data/users/%U # wbinfo -u gives me all users from all domains. id DOMA\user gives me the correct information. id DOMB\user gives me No such user and winbind says: NT_STATUS_NONE_MAPPED Could not lookup name for user DOMB\user wbinfo -n DOMB\user does not work, too. but DOMA\user works. is there a good manual for idmap_rid and trusts? do i have to create two-way-trusts? we just have a one-way with DOMB. i always just find idmap_rid in single domains and people telling me it works! thx in advance! -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution (IT) Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help IDMAP_RID and trusted domains
[Update] wbinfo -n now works also for trusted accounts. but id DOMB\user gives No suitable range available for sid DOMBSID-... although winbind says enabling trusted domain mapping and i have idmap backend = idmap_rid:DOMA=1-2,DOMB=20001-5 idmap uid = 1-5 idmap gid = 1-5000 please see attachment for winbind logs (don´t look too much into detail regarding packets and corresponding ASCII code - i changed domain names for sec. reasons). does anyone have a working setup please? it´s working with tdbsam backend, but that´s not what i want. thx!!! @john: the documentation says about idmap_rid: The downside is that it can be used only within a single ADS domain and is not compatible with trusted domain implementations. but this seems to be wrong because even samba developers (volkerjerry) say, that it works?!?! Michael Gasch wrote: hi, it´s me again :( i´m still not able to use idmap_rid in a trusted domain environment (samba v3.0.20b Sernet). well, to be clear: NSS is not working (id, getent passwd user, ...) so samba does not find the posix information for any user from a foreign domain it´s working in a single domain with # # WINBIND - Settings idmap backend = idmap_rid:DOMA=1-5 idmap uid = 1-5 idmap gid = 1-5 allow trusted domains = no winbind use default domain = yes winbind enum users = no winbind enum groups = no winbind trusted domains only = no allow trusted domains = no winbind cache time = 60 template shell = /bin/bash template homedir = /data/users/%U # but it´s not working with # # WINBIND - Settings idmap backend = idmap_rid:DOMA=1-2,DOMB=20001-5 idmap uid = 1-5 idmap gid = 1-5 allow trusted domains = yes winbind use default domain = no winbind enum users = no winbind enum groups = no winbind trusted domains only = no allow trusted domains = no winbind cache time = 60 template shell = /bin/bash template homedir = /data/users/%U # wbinfo -u gives me all users from all domains. id DOMA\user gives me the correct information. id DOMB\user gives me No such user and winbind says: NT_STATUS_NONE_MAPPED Could not lookup name for user DOMB\user wbinfo -n DOMB\user does not work, too. but DOMA\user works. is there a good manual for idmap_rid and trusts? do i have to create two-way-trusts? we just have a one-way with DOMB. i always just find idmap_rid in single domains and people telling me it works! thx in advance! -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution (IT) Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help IDMAP_RID and trusted domains
[Update] wbinfo -n now works also for trusted accounts. but id DOMB\user gives No suitable range available for sid DOMBSID-... although winbind says enabling trusted domain mapping and i have idmap backend = idmap_rid:DOMA=1-2,DOMB=20001-5 idmap uid = 1-5 idmap gid = 1-5000 please see attachment for winbind logs (don´t look too much into detail regarding packets and corresponding ASCII code - i changed domain names for sec. reasons). does anyone have a working setup please? it´s working with tdbsam backend, but that´s not what i want. thx!!! @john: the documentation says about idmap_rid: The downside is that it can be used only within a single ADS domain and is not compatible with trusted domain implementations. but this seems to be wrong because even samba developers (volkerjerry) say, that it works?!?! Michael Gasch wrote: hi, it´s me again :( i´m still not able to use idmap_rid in a trusted domain environment (samba v3.0.20b Sernet). well, to be clear: NSS is not working (id, getent passwd user, ...) so samba does not find the posix information for any user from a foreign domain it´s working in a single domain with # # WINBIND - Settings idmap backend = idmap_rid:DOMA=1-5 idmap uid = 1-5 idmap gid = 1-5 allow trusted domains = no winbind use default domain = yes winbind enum users = no winbind enum groups = no winbind trusted domains only = no allow trusted domains = no winbind cache time = 60 template shell = /bin/bash template homedir = /data/users/%U # but it´s not working with # # WINBIND - Settings idmap backend = idmap_rid:DOMA=1-2,DOMB=20001-5 idmap uid = 1-5 idmap gid = 1-5 allow trusted domains = yes winbind use default domain = no winbind enum users = no winbind enum groups = no winbind trusted domains only = no allow trusted domains = no winbind cache time = 60 template shell = /bin/bash template homedir = /data/users/%U # wbinfo -u gives me all users from all domains. id DOMA\user gives me the correct information. id DOMB\user gives me No such user and winbind says: NT_STATUS_NONE_MAPPED Could not lookup name for user DOMB\user wbinfo -n DOMB\user does not work, too. but DOMA\user works. is there a good manual for idmap_rid and trusts? do i have to create two-way-trusts? we just have a one-way with DOMB. i always just find idmap_rid in single domains and people telling me it works! thx in advance! -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution (IT) Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] HELP!
Hello folks! I've got stuck in a problem after setting up a Linux box as a PDC for a Windows network with Samba. The stuff was running pretty well up until we tried to setup and install a printer on the Linux box; I saved the old configuration (smb.conf file) and then I started to change some lines in it to allow printer sharing... my nightmare started to be real since then!! Now no user on any pc can log into the domain; root can add machines in the domain (and the machine account is created too..) but cannot log in. Apparently the server behaves as a stand alone one even when testparm shows it's a PDC; infact I can log into any Windows machine with a local user and I am able to browse the server by running \\server: Samba asks me for user/password and the let me in; at that point I can brose the shares, open files, save files and so on. Now my question is: what have I done wrong? It's clearly something we changed in smb.conf or so that is making us having an headache. I am including smb.conf, log.smbd (with a level 5 debugging). Any help will be really appreciated! Best regards Marco Musico' -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[samba] help! connection problems, timed out?!
Hi We are having some problems with connecting to samba. We have samba 3.0.14a on suse linux with LDAP enabled! im using smbclient -L //server -U user to test a connection Some times we get an instant response and other times we get session setup failed: NT_STATUS_LOGON_FAILURE or NT_STATUS_UNSUCESSFUL I havent got a clue what's going on, sometimes it works great and then not so. Our network guys say there is nothing wrong on any network switches/network! In the log.smbd we do have a lot of: [2005/11/30 17:36:52, 2] lib/smbldap.c:smbldap_open_connection(692) smbldap_open_connection: connection opened [2005/11/30 17:36:52, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499) init_sam_from_ldap: Entry found for user: ws0dwi [2005/11/30 17:37:07, 0] auth/auth_sam.c:check_sam_security(324) check_sam_security: make_server_info_sam() failed with 'NT_STATUS_UNSUCCESSFUL' [2005/11/30 17:37:07, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [ws0dwi] - [ws0dwi] FAILED with error NT_STATUS_UNSUCCESSFUL [2005/11/30 17:37:07, 2] smbd/server.c:exit_server(609) Closing connections and also smbldap_search_suffix: Problem during the LDAP search: (unknown) (Timed out) i have run tethereal to see the network packets as i suspect it may be problems with LDAP, when i try to test a connect and we dont get a sucessful connection this is a snippet of the out put 375.692180 157.228.98.42 - 157.228.37.92 TCP 40156 ldap [ACK] Seq=1355 Ack=2375 Win=10532 Len=0 TSV=3165855666 TSER=1174962082 384.312099 157.228.98.42 - 157.228.37.92 TCP 40157 ldap [SYN] Seq=0 Ack=0 Win=5840 Len=0 MSS=1460 TSV=3165864287 TSER=0 WS=2384.313583 157.228.37.92 - 157.228.98.42 TCP ldap 40157 [SYN, ACK] Seq=0 Ack=1 Win=49232 Len=0 TSV=1174962944 TSER=3165864287 MSS=1460 WS=0 384.313594 157.228.98.42 - 157.228.37.92 TCP 40157 ldap [ACK] Seq=1 Ack=1 Win=5840 Len=0 TSV=3165864288 TSER=1174962944 384.314124 157.228.98.42 - 157.228.37.92 LDAP MsgId=1 Bind Request, DN=cn=Directory Manager 384.314461 157.228.37.92 - 157.228.98.42 TCP ldap 40157 [ACK] Seq=1 Ack=44 Win=49189 Len=0 TSV=1174962945 TSER=3165864289 it freezes at this line /\ for a few seconds then we get the NT_STATUS_LOGON_FAILURE or NT_STATUS_UNSUCESSFUL PLease could somebody advise? This is causing thousands of users problems! -- Daniel Wilson Systems Manager Student and Learning Support University of Sunderland Tel: 0191 515 2695 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with Samba
Hello, Im current running Samba version 2.2.8a interfacing a Microsoft 2000 server with a Sun ASM box. I was told that Samba has difficulties handling large amount of connections as well as the size or length of connections. Do any of you know of any restrictions that I should be concerned about? Bart - Yahoo! Music Unlimited - Access over 1 million songs. Try it free. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help me .. SAMBA in AIX 5.0
Hi every one I am installing SAMBA in AIX 5.0 using SMIT application, but it fail. sysck: 3001-038 the name frec is not a known group for entry /usr/local/samba-3.0.20.0/bin/smbclient sysck: 3001-003 A value must be specified for group for entry /usr/local/samba-3.0.20.0/bin/smbclient Can you help me please Thanks you Saludos.. Ing. Marbellys Campos Alcalá Especialista de Proyectos Seguros Caroni, C.A. Tlf: 0286-7122156 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help for problem samba between linux and windows
Hi, Excuse my poor english !! I have a problem samba between linux and windows. I explain my actual situation : - windows 2000 SP4 - share a directory my_windows : d:\jagodin\partage - linux Redhat ES 4 - kernel version 2.6.9-5 in /etc/fstab : //my_windows/partage /export/home/cerit/jagodin/partage smbfs username=tomcat,password=x,rw,uid=tomcat,gid=tomcat,codepage=cp850,iocharset=utf8 0 0 result of df - k : //eurus/partage 65536000 3373056 62162944 6% /export/home/cerit/jagodin/partage But, there are frequently many errors in the /var/log/messages of my linux. *** Sometimes the problem is resolved automatiquely : for examples : Nov 17 23:30:32 corus kernel: smb_add_request: request [dba3ae80, mid=1222] timed out! Nov 17 23:35:01 corus mount.smbfs[1830]: [2005/11/17 23:35:01, 0] tdb/tdbutil.c:tdb_log(725) Nov 17 23:35:01 corus mount.smbfs[1830]: tdb(/var/cache/samba/gencache.tdb): tdb_lock failed on list 38 ltype=0 (Mauvais descripteur de fichier) Nov 17 23:35:01 corus mount.smbfs[1830]: [2005/11/17 23:35:01, 0] tdb/tdbutil.c:tdb_log(725) Nov 17 23:35:01 corus mount.smbfs[1830]: tdb(/var/cache/samba/gencache.tdb): tdb_lock failed on list 38 ltype=1 (Mauvais descripteur de fichier) Nov 17 23:35:01 corus mount.smbfs[1830]: [2005/11/17 23:35:01, 0] tdb/tdbutil.c:tdb_log(725) Nov 17 23:35:01 corus mount.smbfs[1830]: tdb(/var/cache/samba/gencache.tdb): tdb_lock failed on list 38 ltype=1 (Mauvais descripteur de fichier) Nov 17 23:35:01 corus kernel: SMB connection re-established (-5) *** Sometimes the system crash after a lot of timed out. The solution is the reboot. for examples : Nov 20 16:40:31 corus kernel: smb_add_request: request [ded9ce80, mid=2596] timed out! Nov 20 16:45:31 corus kernel: smb_add_request: request [dee2ae80, mid=2597] timed out! Nov 20 16:50:31 corus kernel: smb_add_request: request [def32e80, mid=2598] timed out! Nov 20 16:55:31 corus kernel: smb_add_request: request [f150fe80, mid=2599] timed out! I have searched on the web. But i don't find a solution. Have you already meet this problem. Thank you for your help. cordially, -- Christelle Ronce Administrateur des systèmes Département Exploitation Ministère de l’agriculture et de la pêche S.D.SI./C.E.R.I. BP 12668 31326 CASTANET TOLOSAN CEDEX Téléphone : 05 61 28 94 24 Félécopie : 05 61 28 92 82 Courriel : [EMAIL PROTECTED] Courriel Pôle Système : [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help for problem samba between linux and windows
On Mon, Nov 21, 2005 at 11:04:18AM +0100, Christelle Ronce wrote: Hi, Excuse my poor english !! I have a problem samba between linux and windows. I explain my actual situation : - windows 2000 SP4 - share a directory my_windows : d:\jagodin\partage - linux Redhat ES 4 - kernel version 2.6.9-5 in /etc/fstab : //my_windows/partage /export/home/cerit/jagodin/partage smbfs username=tomcat,password=x,rw,uid=tomcat,gid=tomcat,codepage=cp850,iocharset=utf8 0 0 That's a Linux Kernel SMBFS problem, not a Samba problem. The first thing to try is the Linux CIFS filesystem instead. See http://www.samba.org/samba/Linux_CIFS_client.html or man mount.cifs but it may be as simple as replacing smbfs with cifs in your /etc/fstab. If that doesn't help, contact your Red Hat support person, or an appropriate Linux kernel mailing list. Unfortunatly, I don't think smbfs has an upstream maintainer, so switching to cifs really is the best option. -- JF -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with AIX complie
I am working to compile with AD support. AIX version 5.3. This is the error I
get and the section in the code. I do not see this posted as a current bug.
# make
Using FLAGS = -I/usr/krb5/include -O -D_SAMBA_BUILD_ -D_LINUX_SOURCE_COMPAT
-qmaxmem=32000 -I./popt -Iinclude -I/home/samba/samba-3.0.20b/source/include
-I/home/samba/samba-3.0.20b/source/ubiqx -I. -I/usr/krb5/include
-I/opt/freeware/include -I/home/samba/samba-3.0.20b/source
-I/home/samba/samba-3.0.20b/source/tdb
LIBS =
LDSHFLAGS = -Wl,-bexpall,-bM:SRE,-bnoentry,-berok -L/usr/krb5/lib
-L/opt/freeware/lib
LDFLAGS = -L/usr/krb5/lib -L/opt/freeware/lib
PIE_CFLAGS =
PIE_LDFLAGS =
Compiling libsmb/clikrb5.c
libsmb/clikrb5.c, line 128.2: 1506-205 (S) #error UNKNOWN_CREATE_KEY_FUNCTIONS
libsmb/clikrb5.c, line 214.28: 1506-275 (S) Unexpected text hnd encountered.
libsmb/clikrb5.c, line 214.9: 1506-045 (S) Undeclared identifier
krb5_krbhst_handle.
libsmb/clikrb5.c, line 215.9: 1506-045 (S) Undeclared identifier
krb5_krbhst_info.
libsmb/clikrb5.c, line 215.27: 1506-045 (S) Undeclared identifier hinfo.
libsmb/clikrb5.c, line 224.67: 1506-045 (S) Undeclared identifier hnd.
libsmb/clikrb5.c, line 224.49: 1506-045 (S) Undeclared identifier
KRB5_KRBHST_KDC.
make: 1254-004 The error code from the last command is 1.
Stop.
+106 }
+107 #elif defined(HAVE_KRB5_GET_PW_SALT)
defined(HAVE_KRB5_STRING_TO_KEY_SALT)
+108 int create_kerberos_key_from_string_direct(krb5_context context,
+109 krb5_principal host_princ,
+110 krb5_data *password,
+111 krb5_keyblock *key,
+112 krb5_enctype enctype)
+113 {
+114 int ret;
+115 krb5_salt salt;
+116
+117 ret = krb5_get_pw_salt(context, host_princ, salt);
+118 if (ret) {
+119 DEBUG(1,(krb5_get_pw_salt failed (%s)\n,
error_message(ret)));
+120 return ret;
+121 }
+122
+123 ret = krb5_string_to_key_salt(context, enctype, password-data,
salt, key);
+124 krb5_free_salt(context, salt);
+125 return ret;
+126 }
+127 #else
+128 #error UNKNOWN_CREATE_KEY_FUNCTIONS
+129 #endif
+130
+131 int create_kerberos_key_from_string(krb5_context context,
+132 krb5_principal host_princ,
+133 krb5_data *password,
+134 krb5_keyblock *key,
+135 krb5_enctype enctype)
+136 {
Marty Everett
Director IDC Technology
IKON Document Efficiency At Work
1738 Bass Road
Macon Ga, 31210
Phone: (478) 238-7550
Cell: (478) 361-6843
Fax:(478) 238-7676
Email: [EMAIL PROTECTED]
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with AIX complie
I am working to compile with AD support. AIX version 5.3. This is the error I
get and the section in the code. I do not see this posted as a current bug.
I am using the IBM compiler.
I am using the open ldap rpm provided by ibm.
I am using the IBM KRB5 lpp.
# oslevel -r
5300-03
# lslpp -l vac.C
Fileset Level State Description
Path: /usr/lib/objrepos
vac.C 6.0.0.12 COMMITTED C for AIX Compiler
Path: /etc/objrepos
vac.C 6.0.0.12 COMMITTED C for AIX Compiler
[EMAIL PROTECTED] /home/samba/samba-3.0.20b/source/libsmb
# lslpp -l krb5*
Fileset Level State Description
Path: /usr/lib/objrepos
krb5.client.rte1.4.0.2 COMMITTED Network Authentication Service
Client
krb5.client.samples1.4.0.2 COMMITTED Network Authentication Service
Samples
krb5.lic 1.4.0.2 COMMITTED Network Authentication Service
License
krb5.msg.en_US.client.rte 1.4.0.2 COMMITTED Network Auth Service Client
Msgs - U.S. English
krb5.toolkit.adt 1.4.0.2 COMMITTED Network Authentication Service
App. Dev. Toolkit
Path: /etc/objrepos
krb5.client.rte1.4.0.2 COMMITTED Network Authentication Service
Client
# rpm -qa | grep ldap
openldap-2.0.21-4
openldap-devel-2.0.21-4
#
# make
Using FLAGS = -I/usr/krb5/include -O -D_SAMBA_BUILD_ -D_LINUX_SOURCE_COMPAT
-qmaxmem=32000 -I./popt -Iinclude -I/home/samba/samba-3.0.20b/source/include
-I/home/samba/samba-3.0.20b/source/ubiqx -I. -I/usr/krb5/include
-I/opt/freeware/include -I/home/samba/samba-3.0.20b/source
-I/home/samba/samba-3.0.20b/source/tdb
LIBS =
LDSHFLAGS = -Wl,-bexpall,-bM:SRE,-bnoentry,-berok -L/usr/krb5/lib
-L/opt/freeware/lib
LDFLAGS = -L/usr/krb5/lib -L/opt/freeware/lib
PIE_CFLAGS =
PIE_LDFLAGS =
Compiling libsmb/clikrb5.c
libsmb/clikrb5.c, line 128.2: 1506-205 (S) #error UNKNOWN_CREATE_KEY_FUNCTIONS
libsmb/clikrb5.c, line 214.28: 1506-275 (S) Unexpected text hnd encountered.
libsmb/clikrb5.c, line 214.9: 1506-045 (S) Undeclared identifier
krb5_krbhst_handle.
libsmb/clikrb5.c, line 215.9: 1506-045 (S) Undeclared identifier
krb5_krbhst_info.
libsmb/clikrb5.c, line 215.27: 1506-045 (S) Undeclared identifier hinfo.
libsmb/clikrb5.c, line 224.67: 1506-045 (S) Undeclared identifier hnd.
libsmb/clikrb5.c, line 224.49: 1506-045 (S) Undeclared identifier
KRB5_KRBHST_KDC.
make: 1254-004 The error code from the last command is 1.
Stop.
+106 }
+107 #elif defined(HAVE_KRB5_GET_PW_SALT)
defined(HAVE_KRB5_STRING_TO_KEY_SALT)
+108 int create_kerberos_key_from_string_direct(krb5_context context,
+109 krb5_principal host_princ,
+110 krb5_data *password,
+111 krb5_keyblock *key,
+112 krb5_enctype enctype)
+113 {
+114 int ret;
+115 krb5_salt salt;
+116
+117 ret = krb5_get_pw_salt(context, host_princ, salt);
+118 if (ret) {
+119 DEBUG(1,(krb5_get_pw_salt failed (%s)\n,
error_message(ret)));
+120 return ret;
+121 }
+122
+123 ret = krb5_string_to_key_salt(context, enctype, password-data,
salt, key);
+124 krb5_free_salt(context, salt);
+125 return ret;
+126 }
+127 #else
+128 #error UNKNOWN_CREATE_KEY_FUNCTIONS
+129 #endif
+130
+131 int create_kerberos_key_from_string(krb5_context context,
+132 krb5_principal host_princ,
+133 krb5_data *password,
+134 krb5_keyblock *key,
+135 krb5_enctype enctype)
+136 {
Marty Everett
Director IDC Technology
IKON Document Efficiency At Work
1738 Bass Road
Macon Ga, 31210
Phone: (478) 238-7550
Cell: (478) 361-6843
Fax:(478) 238-7676
Email: [EMAIL PROTECTED]
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help! Emergency
Ok, so this is probably a stupid question asked a million times, but I am a bit stuck. Up till now I have always deployed an OpenLDAP backend and a Samba domain controller in order to share the same set of data between unix and windows hosts. So jsmith with a UID of 1001 could read/write files either in Linux or windows and the same identity would be used. Now I am working for a company that uses active directory, I consolidated Linux to use AD for Unix, so now in AD I have jsmith and 1001 as the NIS Uid. Now comes the bad part, on a Linux filesystem shared by Samba to windows, when jsmith writes a file to the samba share, I expect the owner of the file to be 1001 BUT it is something like 16777216 instead! I suppose this has to do with the UID mapping, I just want the UID/GID to keep with the same AD stuff. Please, please, please tell me how I should setup Samba to use the assigned UID to the AD name. I thought by joining the AD domain samba would pick this up. I am suspecting I have to use LDAP access to AD to get the UID/GID info, but the attribute names are not standard POSIX stuff. I am sure there is an easy solution for this, the whole idea of using AD for both Windows and Unix was to eliminate administration and get closer to single signon. [global] log file = /var/log/samba/%m.log load printers = yes idmap gid = 16777216-33554431 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 wins server = 192.168.1.2 winbind use default domain = no template shell = /bin/bash dns proxy = no cups options = raw netbios name = tuvalu server string = Matisse Storage idmap uid = 16777216-33554431 workgroup = MATISSE os level = 20 printcap name = /etc/printcap security = ads max log size = 50 password server = MATISSE01 realm = MATISSENETWORKS.COM /Christian Lahti [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Help! Emergency
Ok, I solved my own problem, here is the config that works: [global] log file = /var/log/samba/%m.log load printers = yes socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 wins server = 192.168.1.2 template shell = /bin/bash dns proxy = no cups options = raw netbios name = tuvalu server string = Matisse Storage workgroup = MATISSE os level = 20 printcap name = /etc/printcap security = ads max log size = 50 password server = MATISSE01 realm = MATISSENETWORKS.COM winbind cache time = 5 winbind use default domain = yes winbind trusted domains only = Yes winbind nested groups = Yes -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Christian Lahti Sent: Friday, November 18, 2005 3:29 PM To: samba@lists.samba.org Subject: [Samba] Help! Emergency Ok, so this is probably a stupid question asked a million times, but I am a bit stuck. Up till now I have always deployed an OpenLDAP backend and a Samba domain controller in order to share the same set of data between unix and windows hosts. So jsmith with a UID of 1001 could read/write files either in Linux or windows and the same identity would be used. Now I am working for a company that uses active directory, I consolidated Linux to use AD for Unix, so now in AD I have jsmith and 1001 as the NIS Uid. Now comes the bad part, on a Linux filesystem shared by Samba to windows, when jsmith writes a file to the samba share, I expect the owner of the file to be 1001 BUT it is something like 16777216 instead! I suppose this has to do with the UID mapping, I just want the UID/GID to keep with the same AD stuff. Please, please, please tell me how I should setup Samba to use the assigned UID to the AD name. I thought by joining the AD domain samba would pick this up. I am suspecting I have to use LDAP access to AD to get the UID/GID info, but the attribute names are not standard POSIX stuff. I am sure there is an easy solution for this, the whole idea of using AD for both Windows and Unix was to eliminate administration and get closer to single signon. [global] log file = /var/log/samba/%m.log load printers = yes idmap gid = 16777216-33554431 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 wins server = 192.168.1.2 winbind use default domain = no template shell = /bin/bash dns proxy = no cups options = raw netbios name = tuvalu server string = Matisse Storage idmap uid = 16777216-33554431 workgroup = MATISSE os level = 20 printcap name = /etc/printcap security = ads max log size = 50 password server = MATISSE01 realm = MATISSENETWORKS.COM /Christian Lahti [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help needed setting up samba to authenticate against NT PDB
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello, I try to set up a Linux/Samba box to authenticate users (on Windows 2000 and XP boxes) against a Windows NT4 Primary domain controller but failed with what I tried so far. - - both machines are on the same local network (192.168.17.X) - - the windows box runs NT4. I havn't set up this and I don't know much about it either but I have adminstrator access to it. - - I tried this setting security = domain' password server = IP of PDB but then I get the following error in the samba log: [2005/11/17 12:41:25, 0] auth/auth_domain.c:check_ntdomain_security(284) check_ntdomain_security: could not fetch trust account password for domain 'TVC' What is this trust account password and how do I make it known to samba? Can somebody post a sample configuration for this kind of setup? Do I have to set up something on the PDB? Thanks in advance! I'm not very experienced in windows administration (though I do have lot of expertise on linux) so many terms in the samba docs are greek to me. Chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Puzzled by the all these strange characters? Comment: See http://smurl.name/lz5 for an introduction Comment: to public key encryption and signing. iD8DBQFDfHxEyacnDOuTzPwRAsPiAJ91CH0/yF1RxqmFcQEmPz83OTJjngCgw//W HDZj9zJgjjGnD2NS/5oyiUU= =xeCL -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Help needed setting up samba to authenticate against NT PDB
Christopher, You need to add the samba server to the NT4 domain. The procedure to follow can be looked up here: http://us2.samba.org/samba/docs/man/Samba-HOWTO-Collection/ServerType.ht ml#id2526872 Read up on Domain Security mode. Regards, Franz -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help needed setting up samba to authenticate against NT PDC
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Strebel, Franz R. wrote: You need to add the samba server to the NT4 domain. The procedure to follow can be looked up here: http://us2.samba.org/samba/docs/man/Samba-HOWTO-Collection/ServerType.ht ml#id2526872 Read up on Domain Security mode. Ok, thanks, that helped. Do I have to issue the 'net rpc join' command on the linux box after every reboot or was this just necessary once? Chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Puzzled by the all these strange characters? Comment: See http://smurl.name/lz5 for an introduction Comment: to public key encryption and signing. iD8DBQFDfKOVyacnDOuTzPwRAtGiAJoCxUME5GTHs++po/1ovJeYVcbIbACcCl74 mQogFpWsxxnfvRn5RTd9O8E= =oFFO -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with error message: Can't become connected user
I cannot even start troubleshooting until I buy a clue. What does Can't become connected user mean? It shows up fairly often. Aside from happening when I try to access a share, there's no pattern that I can see. -- 6 11:34:40 badlands smbd[20524]: [2005/11/06 11:34:40, 0] smbd/service.c:make_connection_snum(577) Nov 6 11:34:40 badlands smbd[20524]: Can't become connected user! -- Just point me to what the message actually means and I'll go from there. Thanks! Mike- -- Mornings: Evolution in action. Only the grumpy will survive. -- Please note - Due to the intense volume of spam, we have installed site-wide spam filters at catherders.com. If email from you bounces, try non-HTML, non-encoded, non-attachments. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with error message: Can't become connected user
I cannot even start troubleshooting until I buy a clue. What does Can't become connected user mean? It shows up fairly often. Aside from happening when I try to access a share, there's no pattern that I can see. -- 6 11:34:40 badlands smbd[20524]: [2005/11/06 11:34:40, 0] smbd/service.c:make_connection_snum(577) Nov 6 11:34:40 badlands smbd[20524]: Can't become connected user! -- Just point me to what the message actually means and I'll go from there. Thanks! Mike- -- Mornings: Evolution in action. Only the grumpy will survive. -- Please note - Due to the intense volume of spam, we have installed site-wide spam filters at catherders.com. If email from you bounces, try non-HTML, non-encoded, non-attachments. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with connection reset by peer
Got a wireless A network. 1 client is connected to a wireless access point, which is running WPA-PSK (TKIP) Several times each day, client Windows XP machine loses connection, on the Samba server, log file only shows: [2005/10/19 14:00:53, 0] lib/util_sock.c:read_socket_data(384) read_socket_data: recv failure for 4. Error = Connection reset by peer Other than Samba, which client pc is connected to 8 hours a day, client pc has no trouble with web browsing, email, etc. only Samba. Wired, this does not happen obviously, but, no good way for that machine to be wired. Used to run Wireless G, there are more than 20 networks in our area, and, we could never get anywhere with G, so, have been using A with great signal strength for quite some time now. It's just this annoyance. Is there any tunable settings that might prevent these disconnects on the Samba end? Anyone have thoughts on the PC or access point end? Steve -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help with connection reset by peer
On Wed, Oct 19, 2005 at 02:33:37PM -0500, Steve wrote: Got a wireless A network. 1 client is connected to a wireless access point, which is running WPA-PSK (TKIP) Several times each day, client Windows XP machine loses connection, on the Samba server, log file only shows: [2005/10/19 14:00:53, 0] lib/util_sock.c:read_socket_data(384) read_socket_data: recv failure for 4. Error = Connection reset by peer Other than Samba, which client pc is connected to 8 hours a day, client pc has no trouble with web browsing, email, etc. only Samba. Wired, this does not happen obviously, but, no good way for that machine to be wired. Used to run Wireless G, there are more than 20 networks in our area, and, we could never get anywhere with G, so, have been using A with great signal strength for quite some time now. It's just this annoyance. Is there any tunable settings that might prevent these disconnects on the Samba end? This is not a Samba problem. The client is dropping the TCP connection - we don't know why. That's what the message Connection reset by peer means. Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] help needed for samba 3.0
Try using ip address instead anf see if that works :) //henrik 15 okt 2005 kl. 13.10 skrev Sunil Kumar: Hi all, when I am tring to connect to my linux share using linux for ex: smbclient //linuxspan/kerberos -U suneel - where as linuxspan is host name and kerberos is a share name and suneel is ads user. I am getting this error : tree connect failed : NT_STATUS_BAD_NETWORK_NAME. pls help me on this. Thanks in advance. Best regards, Sunny. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help needed for samba 3.0
Hi all, when I am tring to connect to my linux share using linux for ex: smbclient //linuxspan/kerberos -U suneel - where as linuxspan is host name and kerberos is a share name and suneel is ads user. I am getting this error : tree connect failed : NT_STATUS_BAD_NETWORK_NAME. pls help me on this. Thanks in advance. Best regards, Sunny. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help with random connection loss to server from only win98 clients
I have a Suse 9.2 server, with samba 3 and about 16 users. The share used the most (named F for F Drive) randomly disconnects during users sessions from win98SE clients. There is also a WinXP PRO client, that does not have this problem. Only the Win98 clients. I have looked through the group, and found some similar problems, but with little help to get results to fix it. I have checked the ifconfig -a on the server to see if there are any dropped packets or errors, and there are 0. I have not checked the client machines to see if there is also some problem there perhaps. What are some things I can look for? Is there perhaps an option for some sort of timeout or maximum users in the smb.conf file? Thanks, Chris -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help !!!
We are running samba-2.0.20-2 on Fedora C4. It was installed 2 weeks ago, and it was working just fine. But suddenly, today smb refuse all connections. In the log file it shows several lines like this: libsmb/unexpected.c:unexpedted_packet (53) Failed to open unexpected.tdb Nmbd/nmbd_serverlistdb.c:write_browse_list(341) Write_browse_list: Can't open file /var/lib/samba/browse.dat.. Error was Permission denied. Both files exist, and all files in /var/lib/samba have owner rw permission. Any suggest is welcome TIA Ing. Fernando Cabrera Ruiz Departamento de Sistemas Vamsa Aguascalientes, SA de CV (449)910 9393 x4023 www.nissanvamsaags.com.mx -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.344 / Virus Database: 267.11.14/127 - Release Date: 10/10/2005 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help
How configure samba from login in win station? -- Renan Brendler Geiss [EMAIL PROTECTED] icq: 47856954 msn: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] help
Renan Geiss wrote: How configure samba from login in win station? -- Renan Brendler Geiss [EMAIL PROTECTED] icq: 47856954 msn: [EMAIL PROTECTED] Please provide more details. Which version of Windows are you using, for example? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] help
You have to be using XP Professional, not XP Home, to be able to log into the Samba server. However, either version can allow you to access shares and printers on the Samba server. The simplest way to proceed is to use SWAT. Install it if you don't have it. If you are running XP Professional, use the SWAT wizard to set up your Samba server as a domain controller. If not, use the Password section to create and enable user accounts for each Windows user. Then use it to create shares. Renan Geiss wrote: i from brazil, me english not is good :-( one station have suse 9.3 with samba and other machines(5) have windows xp with sp 2 how i using login of window for mapping desktop and other archives? - Original Message - From: Gary Dale [EMAIL PROTECTED] To: Renan Geiss [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Monday, September 26, 2005 9:02 PM Subject: Re: [Samba] help -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help with 3.0.20 admin users=
Hey all, Can anyone help with a problem since upgrading from samba 3.0.14 to 3.0.20 I have a problem from a share. If the admin users = is added it seems to be ignored. Before with 3.0.14 the share was defined like this [cai_hw1] comment = Dr. Cai, Graphics path = /home/meugrads/cai_hw valid users= @cai_hw1 admin users = fau\caig public = no writeable = yes browsable = no directory mask = 0700 create mode = 0700 This setup allow students in the group @cai_hw1 access to the share and then each directory below that was owned by the particular student so other students could do nothing except in their own directory. Since the professor was listed as admin user he could get into any directory to grade the homework etc. ** Please note he was NOT listed in the valid users group (he was not in @cai_hw1 /etc/netgroup) However since upgrading to 3.0.20 with the same conf file the professor is no longer able to get to the share, it gives permission denied. So I added him to the /etc/netgroup file and he can now get accees to the share but gets access denied when going into one of the student directories. Can anyone tell me how admin users and valid users works in the new version, I am not sure if this is a bug or if I neglected to do something. Thanks for your help James Mauser Computer Coordinator College of Engineering and Computer Science Florida Atlantic University 561-239-2546 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help, read_socket_data: recv failure for 11137 ??
Hi List Which means 11137 [2005/09/15 10:52:24, 0] lib/util_sock.c:read_socket_data(384) read_socket_data: recv failure for 11137. Error = [2005/09/15 10:52:24, 1] smbd/service.c:close_cnum(836) da015 (192.168.0.143) closed connection to service Projekte [2005/09/15 10:54:36, 0] lib/util_sock.c:read_socket_data(384) read_socket_data: recv failure for 4. Error By this message samba was no more accessible. From 10 Ping was successful one. NIC was already changed (new Nic). Thanks for each assistance. Stefan -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Help...!
Dear John, Thanks for the reply, I still have problem about the connection. Whenever I log on using DOMAIN\User still error came out saying XSession: Login for DOMAIN\User is disabled. And still cant log on using my DOMAIN User. Any resolution? Btw, thanks for the Clock Skew, now the kinit return a ticket for 1 week everytime I try it, I think it should be like that!! :-) Sincerely, ANRI -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help...!
Anri, The clock skew issue means that your machine's time is set incorrectly. This issue is easily corrected by running Network Time Protocol (ntpd). Edit your /etc/ntpd.conf file, and set the time server to be your existing Win2K box's IP address. See man ntpd.conf for info on the syntax of the file. A quick fix that you can try is run the ntptime command to do a one-shot time synchronization. Use ntptime [Win2K IP]. Note that any clock drift on the two hosts will eventually cause the time to get out of sync, so you will be better served using a normal NTP daemon instead over the long term. I would further tweak the ISA server and create a rule allowing unauthenticated transparent access for the SAMBA machine's IP address to the outside for the protocols of interest to you. This may not be required once the clock skew issue is resolved. On Mon, 5 Sep 2005 11:25:44 +0700, Anri wrote: Dear All, I'm a new member of this listing. And also a new user of LINUX, I tried the SuSe Linux and wanted to do a simple task of joining my existing Windows 2000 Domain. I've tried to change the SMB.conf file, also do some changes to use winbind etc, but even though I have retrieved all my AD Users, I cant get my machine to login using any of my AD account. Every time I tried to logon it keeps telling me that xsession: login for DOMAIN\User is disable. When I tried to test the KBS system, and type Kinit [EMAIL PROTECTED] I received an error msg Clock skew too big. Another problem is I'm trying to use my proxy for internet using my ISA Server proxy but keep on getting error to initialize since none of the password is accepted. I'm just trying to connect a client to be able to do some of the most basic task, like typing document, making spreadsheet, printing, internet connecting and email retrieving, but still to no avail. I hope somebody out there can help me!! Thanks in advanced guys. Sincerely, ANRI JONG -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help - Serious samba problem with Excel
Hi, Damn I hate upgrades. After updating at the weekend to FreeBSD 5.4-R in a fresh install our samba server just doesn't want to play ball. I have managed to get Samba3 working ok apart from when it comes to using Excel documents. If a user has an excel document open and another user tries to open it, Excel 2003 will fail with 'Unable to open the file, it may be read-only or encrypted' It worked perfectly before, I have driven myself mad trying to get it to work all day :( If anyone could lend a hand it would be very much appreciated.. relevant config, details etc. below: --- FreeBSD 5.4-RELEASE-p6 #1: Sun Sep 4 16:37:13 BST 2005 samba-3.0.12_1,1 from FreeBSD ports (I have tried 3.0.20 as well, no luck) [global] workgroup = TRIDENT server string = SERV01 security = domain socket options = TCP_NODELAY netbios name = SERV01 log file = /var/log/samba/log.%m dns proxy = no wins support = no interfaces = 192.168.120.6/24 encrypt passwords = yes enhanced browsing = yes [stats] comment = Operations - Stats Area path = /u/stats force user = root guest ok = no writeable = yes valid users = user1, user2, user3, user4, user5 I have taken everything else out to try and solve this problem. /u is mounted from another FreeBSD 5 box over NFS, I have tried all the various oplock settings as well and this didn't make any difference. Thanks, -- Jamie Heckford Network Manager Trident Microsystems Ltd. t: +44(0)1737-780790 f: +44(0)1737-771908 w: http://www.trident-uk.co.uk/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help - Serious samba problem with Excel
Jamie, Try adding a force user = some_unix_user line to the share. Also try a force group = some_unix_group as well. I've had to do this with MS Office apps before... they try to take ownership and mess things up pretty badly. Also try turning off oplocks as well. Once you add those lines, also make sure to chown all the affected files to the appropriate Unix user/group as well. Hope it helps!!! On Mon, 05 Sep 2005 19:49:10 +0100, Jamie Heckford wrote: Hi, Damn I hate upgrades. After updating at the weekend to FreeBSD 5.4-R in a fresh install our samba server just doesn't want to play ball. I have managed to get Samba3 working ok apart from when it comes to using Excel documents. If a user has an excel document open and another user tries to open it, Excel 2003 will fail with 'Unable to open the file, it may be read-only or encrypted' It worked perfectly before, I have driven myself mad trying to get it to work all day :( If anyone could lend a hand it would be very much appreciated.. relevant config, details etc. below: --- FreeBSD 5.4-RELEASE-p6 #1: Sun Sep 4 16:37:13 BST 2005 samba-3.0.12_1,1 from FreeBSD ports (I have tried 3.0.20 as well, no luck) [global] workgroup = TRIDENT server string = SERV01 security = domain socket options = TCP_NODELAY netbios name = SERV01 log file = /var/log/samba/log.%m dns proxy = no wins support = no interfaces = 192.168.120.6/24 encrypt passwords = yes enhanced browsing = yes [stats] comment = Operations - Stats Area path = /u/stats force user = root guest ok = no writeable = yes valid users = user1, user2, user3, user4, user5 I have taken everything else out to try and solve this problem. /u is mounted from another FreeBSD 5 box over NFS, I have tried all the various oplock settings as well and this didn't make any difference. Thanks, -- Jamie Heckford Network Manager Trident Microsystems Ltd. t: +44(0)1737-780790 f: +44(0)1737-771908 w: http://www.trident-uk.co.uk/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help...!
Dear All, I'm a new member of this listing. And also a new user of LINUX, I tried the SuSe Linux and wanted to do a simple task of joining my existing Windows 2000 Domain. I've tried to change the SMB.conf file, also do some changes to use winbind etc, but even though I have retrieved all my AD Users, I cant get my machine to login using any of my AD account. Every time I tried to logon it keeps telling me that xsession: login for DOMAIN\User is disable. When I tried to test the KBS system, and type Kinit [EMAIL PROTECTED] I received an error msg Clock skew too big. Another problem is I'm trying to use my proxy for internet using my ISA Server proxy but keep on getting error to initialize since none of the password is accepted. I'm just trying to connect a client to be able to do some of the most basic task, like typing document, making spreadsheet, printing, internet connecting and email retrieving, but still to no avail. I hope somebody out there can help me!! Thanks in advanced guys. Sincerely, ANRI JONG -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help me!
Hello Everybody... How can I install samba on solaris 10? Somebody can send some guide for me? Which samba version Do i need to install? Bye Bye V. Henry Ayma Betancourt Phone: 591-72992519 - Correo Yahoo! Comprueba qué es nuevo, aquí http://correo.yahoo.es -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with ADS authentication from Windoze
Here is my situation:
I have an AIX 4.3.3 machine, that I have compiled open-ldap, kerberos5
(1.3..6), and Samba 3.0.20.
Here is my smb.conf file:
[global]
realm = REGION.DOMAIN.COM
security = ADS
password server = randomdc.region.domain.com
workgroup = REGION
client use spnego = yes
;winbind separator = \
[homes]
comment = Home Directories
read only = no
create mode = 0750
browseable = no
[styx]
comment = Styx
path = /styx
public = yes
[styx1]
comment = Styx1
path = /styx1
public = yes
Here is my krb5.conf
[libdefaults]
default_realm = REGION.DOMAIN.COM
default_tkt_enctypes = des-cbc-md5 ; or des-cbc-crc
default_tgs_enctypes = des-cbc-md5 ; or des-cbc-crc
[realms]
REGION.DOMAIN.COM = {
kdc = randomdc.REGION.DOMAIN.COM
}
I was able to add this machine to the active directory (by the way, we are
running 2003 ADS).
I am also able to get info from wbinfo -u and wbinfo -g.
Here is where it becomes a problem:
I cannot authenticate from my Windoze box to this AIX machine running
Samba.
Here is the error message in log.smbd:
[2005/08/30 07:46:05, 1] smbd/sesssetup.c:reply_spnego_kerberos(263)
Username REGION\jbrown is invalid on this system
[2005/08/30 07:46:06, 1] smbd/sesssetup.c:reply_spnego_kerberos(263)
Username REGION\jbrown is invalid on this system
[2005/08/30 07:46:06, 1] smbd/sesssetup.c:reply_spnego_kerberos(263)
Username REGION\jbrown is invalid on this system
[2005/08/30 07:46:07, 1] smbd/sesssetup.c:reply_spnego_kerberos(263)
Username REGION\jbrown is invalid on this system
[2005/08/30 07:46:16, 1] smbd/sesssetup.c:reply_spnego_kerberos(263)
Username REGION\jbrown is invalid on this system
However, I also see this in the log too:
[2005/08/30 05:46:35, 1] smbd/service.c:close_cnum(835)
pitcairn (172.16.64.92) closed connection to service styx
[2005/08/30 05:46:59, 1] smbd/service.c:make_connection_snum(662)
pitcairn (172.16.64.92) connect to service styx initially as user nobody
(uid=
-2, gid=-2) (pid 18016)
[2005/08/30 05:47:11, 1] smbd/service.c:close_cnum(835)
pitcairn (172.16.64.92) closed connection to service styx
[2005/08/30 05:47:34, 1] smbd/service.c:make_connection_snum(662)
pitcairn (172.16.64.92) connect to service styx initially as user nobody
(uid=
-2, gid=-2) (pid 18016)
[2005/08/30 05:47:46, 1] smbd/service.c:close_cnum(835)
pitcairn (172.16.64.92) closed connection to service styx
[2005/08/30 05:48:10, 1] smbd/service.c:make_connection_snum(662)
pitcairn (172.16.64.92) connect to service styx initially as user nobody
(uid=
-2, gid=-2) (pid 18016)
Here is some interesting stuff in log.nmbd (probably not related):
[2005/08/30 07:47:43, 0] nmbd/nmbd_namequery.c:query_name_response(101)
query_name_response: Multiple (3) responses received for a query on
subnet 172
.16.64.91 for name NA1d.
This response was from IP 172.16.65.19, reporting an IP address of
172.16.65.1
9.
Here is winbindd log file:
[2005/08/29 21:01:33, 1] nsswitch/winbindd.c:main(935)
winbindd version 3.0.20 started.
Copyright The Samba Team 2000-2004
[2005/08/29 21:01:33, 0] nsswitch/winbindd_util.c:winbindd_param_init(766)
winbindd: idmap uid range missing or invalid
[2005/08/29 21:01:33, 0] nsswitch/winbindd_util.c:winbindd_param_init(767)
winbindd: cannot continue, exiting.
[2005/08/29 21:01:33, 1] nsswitch/winbindd.c:main(968)
Could not init idmap -- netlogon proxy only
Any suggestions ? Any one else come across this ?
Thank you.
Jason Brown
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] HELP Samba suddenly stopped working
can some one help me We are running samba on a mandrake v10 machine and suddenly we can't access the samba shares. it is in an ADS with MS sbs2003 as the PDC the error in the samba logs is Aug 28 08:50:06 hermes smbd[27096]: [2005/08/28 08:50:06, 0] auth/auth_domain.c:connect_to_domain_password_server(123) Aug 28 08:50:06 hermes smbd[27096]: connect_to_domain_password_server: unable to setup the NETLOGON credentials to machine SBS2003. Error was : NT_STATUS_ACCESS_DENIED. It has been running fine for 8 months and suddenly stopped on the 28th of ug nothing has been changed on either machine as I have been away from work for the past 2 weeks and no one else has permissions. it is urgent that we get this fixed but i can't work out what is wrong. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] HELP Samba suddenly stopped working
[EMAIL PROTECTED] wrote: can some one help me We are running samba on a mandrake v10 machine and suddenly we can't access the samba shares. it is in an ADS with MS sbs2003 as the PDC the error in the samba logs is Aug 28 08:50:06 hermes smbd[27096]: [2005/08/28 08:50:06, 0] auth/auth_domain.c:connect_to_domain_password_server(123) Aug 28 08:50:06 hermes smbd[27096]: connect_to_domain_password_server: unable to setup the NETLOGON credentials to machine SBS2003. Error was : NT_STATUS_ACCESS_DENIED. It has been running fine for 8 months and suddenly stopped on the 28th of ug nothing has been changed on either machine as I have been away from work for the past 2 weeks and no one else has permissions. it is urgent that we get this fixed but i can't work out what is wrong. Just a thought, what version of samba are you running? We upgraded to win 2003 sp1 which will not work with samba less than 3.0.14a. Could your windows box have run windows update automatically? I don`t know if the error your getting fits with that problem. Does event viewer show any errors on the windows side? Post your samba version etc, and the experts on this list may well be able to tell you what the problem is. Rob Keeling -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] HELP Samba suddenly stopped working
I believe it is samba 2.2 It is possible that windows ran auto update, but there is nothing in the windows event logs. -Original Message- From: Rob Keeling [mailto:[EMAIL PROTECTED] Sent: Monday, August 29, 2005 5:46 AM To: [EMAIL PROTECTED]; samba@lists.samba.org Subject: Re: [Samba] HELP Samba suddenly stopped working [EMAIL PROTECTED] wrote: can some one help me We are running samba on a mandrake v10 machine and suddenly we can't access the samba shares. it is in an ADS with MS sbs2003 as the PDC the error in the samba logs is Aug 28 08:50:06 hermes smbd[27096]: [2005/08/28 08:50:06, 0] auth/auth_domain.c:connect_to_domain_password_server(123) Aug 28 08:50:06 hermes smbd[27096]: connect_to_domain_password_server: unable to setup the NETLOGON credentials to machine SBS2003. Error was : NT_STATUS_ACCESS_DENIED. It has been running fine for 8 months and suddenly stopped on the 28th of ug nothing has been changed on either machine as I have been away from work for the past 2 weeks and no one else has permissions. it is urgent that we get this fixed but i can't work out what is wrong. Just a thought, what version of samba are you running? We upgraded to win 2003 sp1 which will not work with samba less than 3.0.14a. Could your windows box have run windows update automatically? I don`t know if the error your getting fits with that problem. Does event viewer show any errors on the windows side? Post your samba version etc, and the experts on this list may well be able to tell you what the problem is. Rob Keeling -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] HELP - Can't See the Forest for The TREES???
Mates, I have configured samba 100 times, but this time, I'm doing something increadibly stupid that I just cannot see. Please HELP! I'm about to jump.. Background, Old samba sever (nemesis) being replaced with new one (bonza). Both are up and operating. All networking is OK, Name resolution is fine, etc. The problem is that all users can see all the shares on the new machine (bonza) just fine. They can map and browse their home share, but *cannot* browse any of the other shares. I on the other hand, as admin user, can connect and browse the shares just fine. All users have unix accounts and entries in the smbpasswd file. All access groups are set up. All users can run net view \\bonza from the dos prompt and see all shares. The permissions of the shares are: [EMAIL PROTECTED] samba]# ls -l total 36 drw-rw 3 root bertin4096 Aug 13 10:54 bertin/ drw-rw 8 root ochiltree 4096 Aug 11 23:58 closed/ drw-rw 4 root ochiltree 4096 Aug 13 10:47 computer/ drw-rw 34 root ochiltree 4096 Aug 15 22:52 forms/ drw-rw 3 root guillory 4096 Aug 13 10:54 guillory/ drw-rw 5 root ochiltree 4096 Aug 16 23:31 joint/ drw-rw 3 root ochiltree 4096 Aug 13 10:54 office/ drw-rw 3 root rankin4096 Aug 13 10:54 rankin/ drw-rw 3 root ochiltree 4096 Mar 16 17:27 visionary/ Now, here is the problem I encounter with the smbclient test when attempting to connect as another user: [EMAIL PROTECTED] /home]$ smbclient -U% -L bonza Domain=[RB_LAW] OS=[Unix] Server=[Samba 3.0.13] Sharename Type Comment - --- config Disk Admin Config Share office Disk Shared Office Files rankin Disk Rankin Law Firm PLLC bertin Disk Darren Bertin guilloryDisk David Guillory jointcases Disk Joint Client Files lawtoolsDisk Case Development - Summation forms Disk Shared Forms and Briefs computerDisk Computer Drivers and Software closed Disk Rankin Law Firm PLLC print$ Disk pdf-gen Printer PDF Generator (only valid users) IPC$IPC IPC Service (Samba Server 3.0.13) ADMIN$ IPC IPC Service (Samba Server 3.0.13) Domain=[RB_LAW] OS=[Unix] Server=[Samba 3.0.13] Server Comment ---- BONZASamba Server 3.0.13 NEMESIS RB_LAW Samba Server 3.0.7 WorkgroupMaster ---- RB_LAW NEMESIS [EMAIL PROTECTED] /home]$ smbclient '\\bonza\rankin' Password: Domain=[RB_LAW] OS=[Unix] Server=[Samba 3.0.13] tree connect failed: NT_STATUS_BAD_NETWORK_NAME [EMAIL PROTECTED] /home]$ I've even set the share permissions as 0777 and still no joy. This is killing me. I really can't see the forest for the trees. Can anybody see what I'm doing stupidly wrong??? I have worked chapter 12 DIAGNOSIS in Using Samba and I'm still stuck. My smb.conf is shown below. Thank you for any help. Load smb config files from /etc/samba/smb.conf Processing section [homes] Processing section [config] Processing section [office] Processing section [rankin] Processing section [bertin] Processing section [guillory] Processing section [jointcases] Processing section [lawtools] Processing section [forms] Processing section [computer] Processing section [closed] Processing section [printers] Processing section [print$] Processing section [pdf-gen] Global parameter printcap name found in service section! Loaded services file OK. Server role: ROLE_DOMAIN_PDC Press enter to see a dump of your service definitions # Global parameters [global] workgroup = RB_LAW server string = Samba Server %v map to guest = Bad User log file = /var/log/samba/log.%m max log size = 50 name resolve order = wins lmhosts bcast socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 printcap name = cups show add printer wizard = No domain logons = Yes dns proxy = No wins server = 192.168.7.14 printer admin = @adm hosts allow = 192.168.7., 127., 66.76.63.120 [homes] comment = Home Directories read only = No browseable = No [config] comment = Admin Config Share path = / valid users = david admin users = david force user = root force group = root read only = No [office] comment = Shared Office Files path = /home/samba/office valid users = @ochiltree admin users = david force group = ochiltree read only = No inherit permissions = Yes [rankin] comment = Rankin Law Firm PLLC path = /home/samba/rankin valid users = @rankin
[Samba] help please with winbind...
All, Can anyone help me with an issue I seem to be having with my samba/winbind (3.0.9) install on Solaris 8. I've got to the stage where Samba and winbind seem to be working ok but... The # getent group command returns all the unix groups and only one Windows groups - Domain Admins - I think I'm really close with this and am unsure where the problem could be. With the # getent passwd command this works fine and returns all the users in Unix and PC Domain with a group id of 11803 for PC accounts but I can't then check the PC group name with # getent group|grep 11803 because it doesn't list this group only Domain Admins!!! Your help would be greatly appreciated and if more info is needed please let me know. Regards Greg -- This e-mail, including any attached files, may contain confidential and privileged information for the sole use of the intended recipient. Any review, use, distribution, or disclosure by others is strictly prohibited. If you are not the intended recipient (or authorized to receive information for the intended recipient), please contact the sender by reply e-mail and delete all copies of this message. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help needed please? SMB 3.0.14a - SMBPASSWD
Hello - Im having a problem w/ my users being able to change their SMB password. What is the best approach to allow users acces to smbpasswd to change their own passwords when they want? Right now Im getting the following error: machine 127.0.0.1 rejected the (anonymous) password change: Error was : Wrong Password. Failed to change password for donald Here is my global from the smb.conf [global] netbios name = WOOT socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=8192 SO_SNDBUF=8192 server string = SMB v3.0.14a local master = yes preferred master = yes domain logons = no domain master = no workgroup = Puddin interfaces = 146.61.201.2 bind interfaces only = no log file = /var/log/samba-log.%m log level = 2 max log size = 50 lock directory = /var/lock/samba printcap name = /etc/printcap wins support = no wins server = 136.61.203.14 os level = 62 remote announce = 136.61.203.255 deadtime = 15 -- Thank you Todd Johnson == Todd Johnson State of Alaska Dept. of Natural Resources Computer Information Center MicroComputer/Network Specialist (907) 269-8831 (907) 269-8920 FAX [EMAIL PROTECTED] == -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help! About SAMBA_PDC and SRVTOOLS
Thanks,but i want to the users who use the SAMBA_PDC use it as the windows_NT4_Server. So ,I have to use the SRVTOOLS to manage the SAMBA_LDAP. Is there any good suggestion? 2005/8/5, Stephen Kuhn [EMAIL PROTECTED]: On Fri, 5 Aug 2005 01:40 pm, kunyliu wrote: I want to use NT4's SRVTOOLS to manage the Samba-PDC,But when i use it ,i mean ,when i add a account for windows,Samba can only receive the username from the tool. The others ,such as logon_path,Fullname and Description cannot be received by samba. Is some thing wrong with samba? what can i do ? I add the information of a user to the LDAP-server by LDIF-file handly .It works fine.And the SRVTOOLS can read it correctly. Can samba receive all the informations from SRVTOOLS? What's so hard about using even like Webmin/SWAT for that? -- illawarra computer services stephen kuhn mobile: 0410-728-389 illawarra and regional new south wales - windows/mac/linux home and business solutions fix it right. fix it now. fix it right now. - Booze is the answer. I don't remember the question. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Help! About SAMBA_PDC and SRVTOOLS
so i use als the server tools with this setup. also make sure your ldap is setup correct with the access rights and define all the corrected attributes so you can adjust them through srvtools. I use in this setup the servertools, usrmgr.exe srvtools.exe i create users / groups with it. i only dont have all attrs in ldap defined, only the one i use. Louis -Oorspronkelijk bericht- Van: kunyliu [mailto:[EMAIL PROTECTED] Verzonden: vrijdag 5 augustus 2005 9:08 Aan: Louis van Belle Onderwerp: Re: [Samba] Help! About SAMBA_PDC and SRVTOOLS Thanks,but , Our company have to use the SRVTOOLS from NT4 to manage the users.This is the key of the problem, but when I use SRVTOOLS to add a user , it can not add all the infomation of the user to LDAP-server , if i use LDIF_file to add user , it can work as well . So I think ,SRVTOOLS So ,I have to use the SRVTOOLS to manage the SAMBA_LDAP. Is there any good suggestion? Thanks. 2005/8/5, Louis van Belle [EMAIL PROTECTED]: read this howto setup samba with ldap ( based on debian ) http://lists.samba.org/archive/samba/2005-June/107614.html http://lists.samba.org/archive/samba/2005-June/107614.html printers and rights setup http://lists.samba.org/archive/samba/2005-June/107615.html -Oorspronkelijk bericht- Van: [EMAIL PROTECTED] [mailto: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] ] Namens kunyliu Verzonden: vrijdag 5 augustus 2005 7:59 Aan: Stephen Kuhn CC: samba@lists.samba.org Onderwerp: Re: [Samba] Help! About SAMBA_PDC and SRVTOOLS Thanks,but i want to the users who use the SAMBA_PDC use it as the windows_NT4_Server. So ,I have to use the SRVTOOLS to manage the SAMBA_LDAP. Is there any good suggestion? 2005/8/5, Stephen Kuhn [EMAIL PROTECTED]: On Fri, 5 Aug 2005 01:40 pm, kunyliu wrote: I want to use NT4's SRVTOOLS to manage the Samba-PDC,But when i use it ,i mean ,when i add a account for windows,Samba can only receive the username from the tool. The others ,such as logon_path,Fullname and Description cannot be received by samba. Is some thing wrong with samba? what can i do ? I add the information of a user to the LDAP-server by LDIF-file handly .It works fine.And the SRVTOOLS can read it correctly. Can samba receive all the informations from SRVTOOLS? What's so hard about using even like Webmin/SWAT for that? -- illawarra computer services stephen kuhn mobile: 0410-728-389 illawarra and regional new south wales - windows/mac/linux home and business solutions fix it right. fix it now. fix it right now. - Booze is the answer. I don't remember the question. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Help! About SAMBA_PDC and SRVTOOLS
normally yes, but i'm at work and we are not allowed to use msn of icq etc.. rules from the network administrator .. aka me.. I block all these poorts and sites on my proxy. If you want you can email me directly, but maybe other people here can learn also from your problems. Louis -Oorspronkelijk bericht- Van: kunyliu [mailto:[EMAIL PROTECTED] Verzonden: vrijdag 5 augustus 2005 9:51 Aan: Louis van Belle Onderwerp: Re: [Samba] Help! About SAMBA_PDC and SRVTOOLS thank you very much .i have just used the ldapadmin to manage the server. i feel its so good .thanks a lot. another question is that ,if the srvtools can send all the parameters to samba_PDC,and be received completely? 谢谢! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help ! compatibility between SRVTOOLS and Samba-PDC
I want to use NT4's SRVTOOLS to manage the Samba-PDC,But when i use it ,i mean ,when i add a account for windows,Samba can only receive the username from the tool. The others ,such as logon_path,Fullname and Description cannot be received by samba. Is some thing wrong with samba? what can i do ? I add the information of a user to the LDAP-server by LDIF-file handly .It works fine.And the SRVTOOLS can read it correctly. Can samba receive all the informations from SRVTOOLS? And my smb.conf is configured as this : -- # Global parameters [global] workgroup = TECH.JSLC netbios name = PDC-SRV security = user enable privileges = yes server string = Samba Server %v encrypt passwords = Yes ldap passwd sync = Yes unix password sync = Yes passwd program = /usr/sbin/smbldap-passwd %u passwd chat = Changing password for*\nNew password* %n\n *Retype new password* %n\n passwd chat debug = Yes log level = 0 syslog = 0 log file = /var/log/samba/log.%m max log size = 10 time server = Yes socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 mangling method = hash2 Dos charset = 850 Unix charset = ISO8859-1 logon script = hello.vbs logon drive = H: logon home = \\%L\%u file://%25L/%25u logon path = \\%N\profiles\%u file://%25N/profiles/%25u domain logons = Yes domain master = Yes os level = 65 preferred master = Yes wins support = yes passdb backend = ldapsam:ldap://127.0.0.1/ ldap admin dn = cn=admin,dc=tech,dc=jslc ldap suffix = dc=tech,dc=jslc ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers add user script = /usr/sbin/smbldap-useradd -m %u delete user script = /usr/sbin/smbldap-userdel %u add machine script = /usr/sbin/smbldap-useradd -w %u add group script = /usr/sbin/smbldap-groupadd -p %g delete group script = /usr/sbin/smbldap-groupdel %g add user to group script = /usr/sbin/smbldap-groupmod -m %u %g delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g set primary group script = /usr/sbin/smbldap-usermod -g '%g' '%u' [homes] comment = Home Directories browseable = no writable = no create mask = 0700 directory mask = 0700 [netlogon] path = /home/netlogon/ browseable = No read only = yes [profiles] path = /home/profiles read only = no create mask = 0600 directory mask = 0700 browseable = No guest ok = Yes --- When i use the SRVTOOLS to add someone ,for example , i add a account who is andy,and its User Profile Path is \\PDC-SRV\profiles\andyfile://PDC-SRV/profiles/andy,Logon Script Name is hello.vbs,and he is a member of Account Operators,Backup Operators,Domain Admins. When i add it, as the parameter add user script = is set to add user script = /usr/sbin/smbldap-useradd -m %u ,this mean that ,this script smbldap-useradd will be executed,but the script has only a argument (%u). I mean ,can the other information User Profile ,Logon Script Name ,etc. be received by samba ? I know that %u means andy.And what's for the others? Off couse,when i write all the info. into a LDIF-File ,then i use ldapadd to add it to LDAP-Server. The SRVTOOLS can read it all. Thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help! About SAMBA_PDC and SRVTOOLS
I want to use NT4's SRVTOOLS to manage the Samba-PDC,But when i use it ,i mean ,when i add a account for windows,Samba can only receive the username from the tool. The others ,such as logon_path,Fullname and Description cannot be received by samba. Is some thing wrong with samba? what can i do ? I add the information of a user to the LDAP-server by LDIF-file handly .It works fine.And the SRVTOOLS can read it correctly. Can samba receive all the informations from SRVTOOLS? And my smb.conf is configured as this : -- # Global parameters [global] workgroup = TECH.JSLC netbios name = PDC-SRV security = user enable privileges = yes server string = Samba Server %v encrypt passwords = Yes ldap passwd sync = Yes unix password sync = Yes passwd program = /usr/sbin/smbldap-passwd %u passwd chat = Changing password for*\nNew password* %n\n *Retype new password* %n\n passwd chat debug = Yes log level = 0 syslog = 0 log file = /var/log/samba/log.%m max log size = 10 time server = Yes socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 mangling method = hash2 Dos charset = 850 Unix charset = ISO8859-1 logon script = hello.vbs logon drive = H: logon home = \\%L\%u logon path = \\%N\profiles\%u domain logons = Yes domain master = Yes os level = 65 preferred master = Yes wins support = yes passdb backend = ldapsam:ldap://127.0.0.1/ ldap admin dn = cn=admin,dc=tech,dc=jslc ldap suffix = dc=tech,dc=jslc ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers add user script = /usr/sbin/smbldap-useradd -m %u delete user script = /usr/sbin/smbldap-userdel %u add machine script = /usr/sbin/smbldap-useradd -w %u add group script = /usr/sbin/smbldap-groupadd -p %g delete group script = /usr/sbin/smbldap-groupdel %g add user to group script = /usr/sbin/smbldap-groupmod -m %u %g delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g set primary group script = /usr/sbin/smbldap-usermod -g '%g' '%u' [homes] comment = Home Directories browseable = no writable = no create mask = 0700 directory mask = 0700 [netlogon] path = /home/netlogon/ browseable = No read only = yes [profiles] path = /home/profiles read only = no create mask = 0600 directory mask = 0700 browseable = No guest ok = Yes --- When i use the SRVTOOLS to add someone ,for example , i add a account who is andy,and its User Profile Path is \\PDC-SRV\profiles\andy ,Logon Script Name is hello.vbs,and he is a member of Account Operators,Backup Operators,Domain Admins. When i add it, as the parameter add user script = is set to add user script = /usr/sbin/smbldap-useradd -m %u ,this mean that ,this script smbldap-useradd will be executed,but the script has only a argument (%u). I mean ,can the other information User Profile ,Logon Script Name ,etc. be received by samba ? I know that %u means andy.And what's for the others? Off couse,when i write all the info. into a LDIF-File ,then i use ldapadd to add it to LDAP-Server. The SRVTOOLS can read it all. Thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help! About SAMBA_PDC and SRVTOOLS
On Fri, 5 Aug 2005 01:40 pm, kunyliu wrote: I want to use NT4's SRVTOOLS to manage the Samba-PDC,But when i use it ,i mean ,when i add a account for windows,Samba can only receive the username from the tool. The others ,such as logon_path,Fullname and Description cannot be received by samba. Is some thing wrong with samba? what can i do ? I add the information of a user to the LDAP-server by LDIF-file handly .It works fine.And the SRVTOOLS can read it correctly. Can samba receive all the informations from SRVTOOLS? What's so hard about using even like Webmin/SWAT for that? -- illawarra computer services stephen kuhn mobile: 0410-728-389 illawarra and regional new south wales - windows/mac/linux home and business solutions fix it right. fix it now. fix it right now. - Booze is the answer. I don't remember the question. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help lib/util_sock.c Errors I don't know what to do.
Hello all, Every time a winXP/2000 computer logs on to my domain I get this error. read_socket_data: recv failure for 4. Error = Connection reset by peer I have tried everything, I don't know what to do. Could someone point me in the right direction? I am sure there is something wrong I just don't know what. Global Section of my smb.conf. __ # Samba config file created using SWAT # from 127.0.0.1 (127.0.0.1) # Date: 2005/07/15 08:03:50 # Global parameters [global] workgroup = CYBRARYN server string = log file = /var/log/samba/%m.log max log size = 50 time server = Yes keepalive = 30 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 logon script = logon.bat logon path = logon home = domain logons = Yes os level = 65 preferred master = Yes domain master = Yes dns proxy = No wins support = Yes ldap ssl = no cups options = raw - -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help! Problem with NT PDC on 3.0.14a
Hello, We are trying to add a 2nd samba server to our domain. We are using an NT 4.0 PDC and connecting to the PDC using winbind. Our network is relatively small - 25 computers. We have no Active Directory servers, no WINS servers, and the existing samba server running 3.0.11 has been running for 18 months with no issues. We are completely stuck trying to add a second server. We've configured the 2nd server EXACTLY the same as the first. It's on the same subnet, we're using the same version of Linux (RHES3), and are using the same smb.conf file (except for the 'netbios name' parameter). The only difference that we can find is the samba version (3.0.14a vs. 3.0.11). Here's the problem: when we try to join the domain, we receive an 'Unable to find a suitable server' error and 'utils/net_ads.c:ads_startup(191) ads_connect: No such file or directory'. This appears to be an Active Directory error, which is confusing since we aren't using Active Directory. If we set the 'wins server' parameter to our PDC, wbinfo -u will correctly show all the user names and passwords, but getent passwd won't list our Domain users. Any thoughts for how we can proceed? We're pretty frustrated, and thinking about just switching the 2nd server to a windows box since this has already taken a few days of time. FYI: our smb.conf is listed below Thanks, Josh Lindenmuth [global] # seperate domain and username (e.g. domain+username) winbind separator = + # valid domain users range idmap uid = 1-2 # valid domain group range idmap gid = 1-2 # allow enumeration of winbind users and groups winbind enum users = yes winbind enum groups = yes # GENERAL SAMBA SETTINGS workgroup = PAYTIME1 dns proxy = no log level = 1 log file = /var/log/samba/%m.log netbios name = LINUX2 load printers = yes server string = Samba App Server password server = * socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 os level = 20 encrypt passwords = yes printcap name = /etc/printcap security = domain max log size = 50 browsable = yes #JAL new DOS mode settings dos filemode = yes dos filetimes = yes dos filetime resolution = yes directory mask = 0775 create mask = 0777 force create mode = 0 mangled names = yes mangle prefix = 6 mangling method = hash2 # disable opportunistic locking - to fix samba issues oplocks = no level2 oplocks = no [share] comment = Shared Drive path = /var/winshare valid users = @PAYTIME1+Domain Users, @PAYTIME1+Domain Admins admin users = PAYTIME1+Administrator, @PAYTIME1+Domain Admins read only = no public = no writable = yes printable = no nt acl support = yes -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] HELP - PLEASE - COMPILE ERROR - VASPRINTF_MULTIPLE_DEFINED
NEED HELP ASAP, Trying to compile samba with ADS/LDAP/KRB5 support. Followed instructions to install heimdal, then openldap, then samba. Getting errors: vasprintf and asprintf multiply-defined, conflict between /usr/local/lib/libroken.a and lib/snprintf.o /usr/local/lib/libroken.a is Heimdal library. Using latest versions for heimdal, openldap and samba, with gcc_v3.4. Really appreciate any help. Thx Mike -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help replacing Windows 2003 Server
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Pablo Gainza Cirauqui wrote: | I believe you have to use the samba regedit tool | to manually disable it. However you can build up | a script. Read the domain controller section | on the official samba HOWTO. | | Can anyone tell me is there away\if there is a | unix version of Microsoft Group Policy or something? | I need to stop access to local drives for | some users and other things. I'll bet we could build a gpedit.msc pretty easy that you could run against remote Windows clients. If anyone is interested in working on this, let me know. And I'll try to get the available projects page at Samba.org added in the next few days. cheers, jerry -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFC1DHaIR7qMdg1EfYRAv2SAJ93+syvB5vC+PlqHQvVfBtIj3o2PQCgsJj2 Tmtio7UcOt65tCXxHS50LiA= =ul0o -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help replacing Windows 2003 Server
Can anyone tell me is there away\if there is a unix version of Microsoft Group Policy or something? I need to stop access to local drives for some users and other things. Thanks, Matt Smith NetContentFiltering.co.uk -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.323 / Virus Database: 267.8.12/46 - Release Date: 11/07/2005 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help replacing Windows 2003 Server
I believe you have to use the samba regedit tool to manually disable it. However you can build up a script. Read the domain controller section on the official samba HOWTO. On 7/11/05, Matt Smith [EMAIL PROTECTED] wrote: Can anyone tell me is there away\if there is a unix version of Microsoft Group Policy or something? I need to stop access to local drives for some users and other things. Thanks, Matt Smith NetContentFiltering.co.uk -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.323 / Virus Database: 267.8.12/46 - Release Date: 11/07/2005 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with ntlm error on Samba 3.0.14a
Hello, I'm having some trouble with the winbind process I'm getting a lot of error: [2005/07/04 14:14:48, 0] libsmb/clientgen.c:cli_send_smb(155) Error writing 494 bytes to client. -1 (Broken pipe) [2005/07/04 14:14:48, 0] rpc_client/cli_pipe.c:rpc_api_pipe(435) cli_pipe: return critical error. Error was Write error: Broken pipe [2005/07/04 14:14:49, 0] lib/util_sock.c:write_socket_data(430) write_socket_data: write failure. Error = Broken pipe [2005/07/04 14:14:49, 0] lib/util_sock.c:write_socket(455) write_socket: Error writing 202 bytes to socket 17: ERRNO = Broken pipe [2005/07/04 14:14:49, 0] libsmb/clientgen.c:cli_send_smb(155) Error writing 202 bytes to client. -1 (Broken pipe) [2005/07/04 14:14:49, 0] rpc_client/cli_pipe.c:rpc_api_pipe(435) cli_pipe: return critical error. Error was Write error: Broken pipe [2005/07/06 09:09:06, 0] lib/util_sock.c:write_socket_data(430) write_socket_data: write failure. Error = Broken pipe [2005/07/06 09:09:06, 0] lib/util_sock.c:write_socket(455) write_socket: Error writing 226 bytes to socket 14: ERRNO = Broken pipe [2005/07/06 09:09:06, 0] libsmb/clientgen.c:cli_send_smb(155) Error writing 226 bytes to client. -1 (Broken pipe) [2005/07/06 09:09:06, 0] rpc_client/cli_pipe.c:rpc_api_pipe(435) cli_pipe: return critical error. Error was Write error: Broken pipe any clue why/how can I solve this ? here is my config: # Global parameters [global] workgroup = D-CH3 password server = * security = DOMAIN winbind uid = 1-2 winbind gid = 1-2 netbios name = squid3 server string = squid3 gva %v encrypt passwords = Yes client ntlmv2 auth = yes preferred master = No local master = No domain master = No name resolve order = wins host bcast wins server = 10.1.2.8 10.1.1.9 thanks for any input. regards, Arno Streuli ** DISCLAIMER - E-MAIL --- The information contained in this E-Mail is intended for the named recipient(s). It may contain certain privileged and confidential information, or information which is otherwise protected from disclosure. If you are not the intended recipient, you must not copy,distribute or take any action in reliance on this information ** -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with ntlm error on Samba 3.0.14a
Hello, I'm having some trouble with the winbind process I'm getting a lot of error: [2005/07/04 14:14:48, 0] libsmb/clientgen.c:cli_send_smb(155) Error writing 494 bytes to client. -1 (Broken pipe) [2005/07/04 14:14:48, 0] rpc_client/cli_pipe.c:rpc_api_pipe(435) cli_pipe: return critical error. Error was Write error: Broken pipe [2005/07/04 14:14:49, 0] lib/util_sock.c:write_socket_data(430) write_socket_data: write failure. Error = Broken pipe [2005/07/04 14:14:49, 0] lib/util_sock.c:write_socket(455) write_socket: Error writing 202 bytes to socket 17: ERRNO = Broken pipe [2005/07/04 14:14:49, 0] libsmb/clientgen.c:cli_send_smb(155) Error writing 202 bytes to client. -1 (Broken pipe) [2005/07/04 14:14:49, 0] rpc_client/cli_pipe.c:rpc_api_pipe(435) cli_pipe: return critical error. Error was Write error: Broken pipe [2005/07/06 09:09:06, 0] lib/util_sock.c:write_socket_data(430) write_socket_data: write failure. Error = Broken pipe [2005/07/06 09:09:06, 0] lib/util_sock.c:write_socket(455) write_socket: Error writing 226 bytes to socket 14: ERRNO = Broken pipe [2005/07/06 09:09:06, 0] libsmb/clientgen.c:cli_send_smb(155) Error writing 226 bytes to client. -1 (Broken pipe) [2005/07/06 09:09:06, 0] rpc_client/cli_pipe.c:rpc_api_pipe(435) cli_pipe: return critical error. Error was Write error: Broken pipe any clue why/how can I solve this ? here is my config: # Global parameters [global] workgroup = D-CH3 password server = * security = DOMAIN winbind uid = 1-2 winbind gid = 1-2 netbios name = squid3 server string = squid3 gva %v encrypt passwords = Yes client ntlmv2 auth = yes preferred master = No local master = No domain master = No name resolve order = wins host bcast wins server = 10.1.2.8 10.1.1.9 thanks for any input. regards, Arno Streuli ** DISCLAIMER - E-MAIL --- The information contained in this E-Mail is intended for the named recipient(s). It may contain certain privileged and confidential information, or information which is otherwise protected from disclosure. If you are not the intended recipient, you must not copy,distribute or take any action in reliance on this information ** -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help Needed
Good Morning: I am having trouble with my samba server on FC3. For some reason I cannot get it to authenticate against the domain, In order for domain users to be able to access resources, it requires me to create samba users and input their windows password for it to work (which is terrible security practice). I have been fiddling around on a development server (which in now being rebuilt because I screwed it up so bad (not this project - several others) with the procedure from http://us4.samba.org/samba/docs/man/Samba-Guide/Unixclients.html, and everything was running along nicely till all of a sudden when I entered wbinfo -u I got a message that said - error looking up users - that's all - no more PLEASE NOTE - I am NOT looking for someone to do this for me, I really want to learn this stuff, but I am just stuck right now, and I could really use some guidance I can supply smb.conf etc if you need as soon as the server finishes rebuilding, but it is basically identical to the one in the web page mentioned above - the only differences are the ones to match our site Thanks TIM Timothy A. Holmes IT Manager / Webmaster / Science Teacher Medina Christian Academy A Higher Standard... Jeremiah 33:3 Jeremiah 29:11 Esther 4:14 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help with roaming profile
hi everybody, I set up a newtwork with one PDC domain controller using Windows 2000 server but now we need to migrate only the desktops to linux and I make the samba configuration with ldap for the clients authentication (linux desktops). how can I configure the SAMBA or MS windows PDC to serve my linux desktops a ROAMING profile ? can I do it ? is it possible ? regards, Beier, Thiago. Brazil .. | o_o |Slackware user ! | :_/ |Brasilia - DF / / \ \ ( || ) /' \_ _/ `\ \___)=(___/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help request: Windows and Linux authorisation in windows domain.
I have problem (as you noticed ;] ). I have to make unified authorisation system for large, unsecure network connected to a two Polish skelete networks. As you see I need to do it right to avoid big problems. The goal is to have windows and linux computers authorized by one Linux mashine. I can do it by installing samba as a windows domain controller. It would work for windows. Linuxes can authorize using windows domain serwer too, but I would like to avoid unneeded mess with this as they can authorize in that serwer more native way. Any user not authorized in a windows domain will not have acces to the outer world nor to the local serwers (except domain server, of course), so... so they should be visible, no matter of the authorisation way. Aslo, home folders (or at least document subfolder) should mount automaticly from authorisation server (linux boxes does it automatically right now so I don't want to destroy it), changing password should be global, pasword _can not_ be send throught the net without encryption. As you see, it is a quite big thing. I'm reading documentation a long time, but I do need some advices/links/anything. -- --- Advocatus Diaboli - someone should do this job. some kind of Molot some kind of monster ;) jid:[EMAIL PROTECTED] alt mailto:[EMAIL PROTECTED] gg:4588787 --- -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with using SWAT (STUNNEL)
To whom it may concern: I'm attempting to use SAMBA via SWAT. I have done the following: * created the stunnel account * updated the /usr/share/ss/certs with stunnel.pem * updated the /etc/stunnel/stunnel.conf file to include: home directory info, stunnel messages, SSL Cert. and ports (901/902) * created swat-stunnel in /etc/xinetd.d * disabled swat from /etc/xinetd.d/swat * added swat-tunnel 902/tcp to /etc/services and kept swat 901/tcp in /etc/services * turned off swat via chkconfig * turned on swat-stunnel via chkconfig * started stunnel * killed stunnel (pkill stunnel), restarted xinetd and started stunnel But, when I check for to see if the tcp port 902 is listening via netstat -an I only get this tcp 0 00.0.0.0:9010.0.0.0:* LISTEN I DO NOT GET THE OTHER ENTRY: tcp 0 0 127.0.0.:9020.0.0.0:* LISTEN Any ideas what I missed? Any help would be greatly appreciated. Thanks - Karen -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] help
A bit Off Topic. You can use bacula: http://www.bacula.org/ Regards, Fernando. On Tue, 2005-04-19 at 11:16 +0300, Amani Makala wrote: hi! i need to configure a linux backup server, let me give u some hints on the real environment, i have one linux machine and two windows machines, now i need to make backup of files found on windows machine,but the backup should be done on the linux machine. please anybody who can help me! thanks. -- Fernando Ruza ([EMAIL PROTECTED]) Dto. Informatica Hospital Univesitario de Guadalajara Tfl: 949 209 215 661 123 845 Linux user: #273644 (http://counter.li.org) Debian Sid (Kernel 2.4.30 ext3) --- Por favor, NO utilice formatos de archivo propietarios para el intercambio de documentos, como DOC y XLS, sino HTML, RTF, TXT, CSV o cualquier otro que no obligue a utilizar un programa de un fabricante concreto. Gracias. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] help
Fernando Ruza wrote: A bit Off Topic. You can use bacula: http://www.bacula.org/ Regards, Fernando. On Tue, 2005-04-19 at 11:16 +0300, Amani Makala wrote: hi! i need to configure a linux backup server, let me give u some hints on the real environment, i have one linux machine and two windows machines, now i need to make backup of files found on windows machine,but the backup should be done on the linux machine. please anybody who can help me! thanks. Here's what I do: Mount the w2000 file share to back up: fresno# df -h Filesystem SizeUsed Avail Capacity Mounted on /dev/ad4s1a3.3G 57M3.0G 2%/ devfs 1.0K1.0K 0B 100%/dev /dev/ad4s4d 64G6.6G 53G11%/usr /dev/ad4s3d2.4G 20M2.1G 1%/var //[EMAIL PROTECTED]/COMPANY 11G6.4G4.7G58%/w2000 Then write a cron job: # Adjust the time zone if the CMOS clock keeps local time, as opposed to # UTC time. See adjkerntz(8) for details. 1,310-5 * * * rootadjkerntz -a 0 22 * * * rootcp -R /w2000/ /usr/backup/w2000/ 45 3 * * * roottar -cyvf /usr/backup/w2000.tar.bz2 /usr/backup/w2000 30 5 * * 1 rootmv /usr/backup/w2000.tar.bz2 /usr/daily/Mon/ 30 5 * * 2 rootmv /usr/backup/w2000.tar.bz2 /usr/daily/Tues/ 30 5 * * 3 rootmv /usr/backup/w2000.tar.bz2 /usr/daily/Wed/ 30 5 * * 4 rootmv /usr/backup/w2000.tar.bz2 /usr/daily/Thurs/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] help
I currently use bacula for 3 linux servers, 1 freebsd box, and 1 windows box. It's great, allow a week for the configuration, it's rather confusing, but once it's up it runs like a champ! Thomas M. Skeren III wrote: Fernando Ruza wrote: A bit Off Topic. You can use bacula: http://www.bacula.org/ Regards, Fernando. On Tue, 2005-04-19 at 11:16 +0300, Amani Makala wrote: hi! i need to configure a linux backup server, let me give u some hints on the real environment, i have one linux machine and two windows machines, now i need to make backup of files found on windows machine,but the backup should be done on the linux machine. please anybody who can help me! thanks. Here's what I do: Mount the w2000 file share to back up: fresno# df -h Filesystem SizeUsed Avail Capacity Mounted on /dev/ad4s1a3.3G 57M3.0G 2%/ devfs 1.0K1.0K 0B 100%/dev /dev/ad4s4d 64G6.6G 53G11%/usr /dev/ad4s3d2.4G 20M2.1G 1%/var //[EMAIL PROTECTED]/COMPANY 11G6.4G4.7G58%/w2000 Then write a cron job: # Adjust the time zone if the CMOS clock keeps local time, as opposed to # UTC time. See adjkerntz(8) for details. 1,310-5 * * * rootadjkerntz -a 0 22 * * * rootcp -R /w2000/ /usr/backup/w2000/ 45 3 * * * roottar -cyvf /usr/backup/w2000.tar.bz2 /usr/backup/w2000 30 5 * * 1 rootmv /usr/backup/w2000.tar.bz2 /usr/daily/Mon/ 30 5 * * 2 rootmv /usr/backup/w2000.tar.bz2 /usr/daily/Tues/ 30 5 * * 3 rootmv /usr/backup/w2000.tar.bz2 /usr/daily/Wed/ 30 5 * * 4 rootmv /usr/backup/w2000.tar.bz2 /usr/daily/Thurs/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help: Can not connect to SAMBA server from Win2K3 Server, in TS
Hello, I posted this three weeks ago in hopes that someone here might help me. I still have not be able to solve this and really really would appreciate if anyone has some suggestions on things to look at. I'm sure it has to be a problem in Win2K3 Server settings, but don't know where to look or what to change. Original posting below. Steven Smith [EMAIL PROTECTED] writes: Subject: Win2K3 Server, in Terminal Session, Problem connecting to SAMBA server. I have looked for several days and can not find the answer to my problem, but I'm sure it has to be a simple issue. I'm trying to map drives inside Windows Server 2003 Terminal Session from a local Samba server but can't get connected. I figure the problem is in Windows Registry but can't find web page on what needs to be changed to get this working. I built a new Windows 2003 server. Logon to the new server through Terminal Services (Remote Desktop Connection). Once connected I open Windows Explorer and try to browse over to my SAMBA server. My problem is that I get a Windows Error box saying I \\FOO_SAMBA is not accessible. Then goes on saying I might not have permission. The last line says The request is not supported. Tried mapping a known share from the FOO_SAMBA server (\\FOO_SAMBA\test) and I get a different windows error message saying The drive could not be mapped because no network was found. The domain this server is in is an is older NT4 style domain. (Not Active Directory.) The Windows 2003 Server is a member of the ADOMAIN Domain. The FOO_SAMBA server in running on Solaris 8 sparc server. I do NOT have any domain machine names configured in /etc/passwd file. Only users I want to allow to connect are in the /etc/passwd file and also part of the 'adomain' group in /etc/group file. I do not have any problem connecting to the FOO_SAMBA server from Win2K or WinXP workstations. Can even connect to shares from other Win2k Terminal Server, inside a Remote Desktop Session. I have the following entries in smb.conf file. [global] workgroup = ADOMAIN server string = Samba Server ; guest account = pcguest log file = /opt/samba/var/log.%I log level = 2 security = server password server = 149.154.1.41 encrypt passwords = yes socket options = IPTOS_LOWDELAY TCP_NODELAY SO_RCVBUF=16384 SO_SNDBUF=16384 local master = no wins server = 149.154.1.32 wins proxy = yes dns proxy = no case sensitive = auto # TAC share [tac] comment = TAC Support share path = /ark/tac public = no writable = yes write list = at adomain create mode = 0660 directory mode = 0770 [test] comment = rdc test path = /ark/rdc/test public = yes writable = yes printable = no write list = at adomain -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help! Settings in roaming profile are not sticking
I'm reinstalling my Windows XP box. It has been on my home domain with a roaming profile for some time. I had earlier problems with the roaming user not able to log in at all but I can now log in using that account thanks to deleting the samba cache. The problem now is that settings in the roaming profile are not sticking. For example, the old profile has the Coffee bean background and the XP Themed appearance. Now, as it loads, it starts to set coffee bean, then before fully loaded replaces it with windows-blue, and the windows style is classic. Moreover, I can't change the desktop or theme at all, and icons refuse to stay put if I move them. In the old setup, I had Outlook all set up nicely. Now, although it starts up it says it can't load, and exits. Can anyone give me a hint as to what has gone wrong? Is there some registry or policy setting or machine-SID-related thing that would cause this? Yours hopefully, Ruth System info: PDC is Samba 3.0 on Fedora Linux. I have 2 other XP machines that have been using the profile ok, along with the former install on the problem machine. Problem machine is a P4 3GHz, 1.5GB RAM. XP SP2 plus latest patches. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Help! Settings in roaming profile are not sticking
refuse to stay put if I move them. In the old setup, I had Outlook all set up nicely. Now, although it starts up it says it can't load, and exits. I can't help you on the rest of your issues, but Outlook is particularly weird, in how it was built. Unless you've changed it, the default file location is C:\Documents and Settings\username\Local Settings\Application Data\Microsoft\Outlook\Personal Folders.pst Local Settings is a directory that does not roam by default. Odd that MS built Outlook, arguably the critical app for many people for better or worse, to put it's data in a non-roaming location. But I guess that's their way of saying Use Exchange. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help. . .read socket data errors
I am using the defaults that came with the samba RPM package on Mandrake 10.1. For socket options, it has: socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 Is that something that may fix the problem if I change it? Pablo [EMAIL PROTECTED] wrote: Pablo, you might have incorrectly set some settings in smb.conf. Check your settings for socket options. I don't mess with any of the options except for socket options = TCP_NODELAY because I get a dramatic speed increase. CompuGenic [EMAIL PROTECTED] wrote on 06/04/2005, 05:26:49 AM: I have samba setup as a fileserver with winbind on an NT 4 domain. I keep getting the errors shown below constantly, and have no clue what could be causing it. If you have any clues please let me know. Jun 3 18:08:27 baker smbd[7436]: [2005/06/03 18:08:27, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:08:27 baker smbd[7436]: read_socket_data: recv failure for 4. Error = Connection reset by peer Jun 3 18:15:15 baker smbd[6159]: [2005/06/03 18:15:15, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:15:15 baker smbd[6159]: read_socket_data: recv failure for 4. Error = Connection reset by peer Jun 3 18:36:17 baker smbd[7437]: [2005/06/03 18:36:17, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:36:17 baker smbd[7437]: read_socket_data: recv failure for 4. Error = Connection timed out Thanks, Pablo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help. . .read socket data errors
Im having the same problem in several samba servers pdc with the latest version and old versions too. Clients are win98, nt4, win2k and win2k3. I was unable to find out the reason of this messages. CompuGenic wrote: I am using the defaults that came with the samba RPM package on Mandrake 10.1. For socket options, it has: socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 Is that something that may fix the problem if I change it? Pablo [EMAIL PROTECTED] wrote: Pablo, you might have incorrectly set some settings in smb.conf. Check your settings for socket options. I don't mess with any of the options except for socket options = TCP_NODELAY because I get a dramatic speed increase. CompuGenic [EMAIL PROTECTED] wrote on 06/04/2005, 05:26:49 AM: I have samba setup as a fileserver with winbind on an NT 4 domain. I keep getting the errors shown below constantly, and have no clue what could be causing it. If you have any clues please let me know. Jun 3 18:08:27 baker smbd[7436]: [2005/06/03 18:08:27, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:08:27 baker smbd[7436]: read_socket_data: recv failure for 4. Error = Connection reset by peer Jun 3 18:15:15 baker smbd[6159]: [2005/06/03 18:15:15, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:15:15 baker smbd[6159]: read_socket_data: recv failure for 4. Error = Connection reset by peer Jun 3 18:36:17 baker smbd[7437]: [2005/06/03 18:36:17, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:36:17 baker smbd[7437]: read_socket_data: recv failure for 4. Error = Connection timed out Thanks, Pablo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help. . .read socket data errors
Matt, You're right. . .the options used by Mandrake are not all the defaults. The default is only the TCP_NODELAY. I will try removing the extra socket options, and even adding the IPTOS_LOWDELAY option and see if that fixes the issue. Any other ideas are more than welcome. Thanks, Pablo Matt Schwartz wrote: Pablo, consult the man page on smb.conf for the default settings of the socket options. I am not sure if the ones you used are defaults as per samba CompuGenic wrote: I am using the defaults that came with the samba RPM package on Mandrake 10.1. For socket options, it has: socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 Is that something that may fix the problem if I change it? Pablo [EMAIL PROTECTED] wrote: Pablo, you might have incorrectly set some settings in smb.conf. Check your settings for socket options. I don't mess with any of the options except for socket options = TCP_NODELAY because I get a dramatic speed increase. CompuGenic [EMAIL PROTECTED] wrote on 06/04/2005, 05:26:49 AM: I have samba setup as a fileserver with winbind on an NT 4 domain. I keep getting the errors shown below constantly, and have no clue what could be causing it. If you have any clues please let me know. Jun 3 18:08:27 baker smbd[7436]: [2005/06/03 18:08:27, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:08:27 baker smbd[7436]: read_socket_data: recv failure for 4. Error = Connection reset by peer Jun 3 18:15:15 baker smbd[6159]: [2005/06/03 18:15:15, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:15:15 baker smbd[6159]: read_socket_data: recv failure for 4. Error = Connection reset by peer Jun 3 18:36:17 baker smbd[7437]: [2005/06/03 18:36:17, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:36:17 baker smbd[7437]: read_socket_data: recv failure for 4. Error = Connection timed out Thanks, Pablo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] HELP! After upgrade, can't get at my shares
I'm really not looking forward to downgrading because of this but if this persists much longer I'll have to. :-( Platform: MDV LE 2005 Previous version was 3.0.9 I think. Whatever the default for Mdk 10.1 Official was. samba-swat-3.0.14a-2mdk samba-smbldap-tools-3.0.14a-2mdk samba-doc-3.0.14a-2mdk samba-client-3.0.14a-2mdk samba-common-3.0.14a-2mdk samba-vscan-clamav-3.0.14a-2mdk samba-server-3.0.14a-2mdk LDAP backend. Getent works and I have no trouble logging ldap users into Linux. Commented out LDAP ACLs and that did not seem to help. smbldap-tools seems to work fine. testparm returns no errors. I've tried setting valid users = in the homes share to various things and no dice. This included commenting it out all together. The old setting was valid users = %S. Tests show the following: [EMAIL PROTECTED] ~]# smbclient -L enigma Password: Domain=[J9STARR] OS=[Unix] Server=[Samba 3.0.14a] Sharename Type Comment - --- appsDisk Application Files public Disk print$ Disk Printer Drivers IPC$IPC IPC Service (Samba 3.0.14a) ADMIN$ IPC IPC Service (Samba 3.0.14a) Domain=[J9STARR] OS=[Unix] Server=[Samba 3.0.14a] Server Comment ---- ENIGMA Samba 3.0.14a MICROTRON WorkgroupMaster ---- J9STARR ENIGMA [EMAIL PROTECTED] ~]# OK, so as a user: [EMAIL PROTECTED] njim]$ smbclient //enigma/njim Password: Domain=[J9STARR] OS=[Unix] Server=[Samba 3.0.14a] tree connect failed: NT_STATUS_ACCESS_DENIED [EMAIL PROTECTED] njim]$ Note: CUPS isn't set up yet which I think explains the print errors. Also the smbldap script paths still need adjusting in this version of my smb.conf. testparm output is: # Global parameters [global] unix charset = LOCALE workgroup = J9STARR interfaces = eth0, lo bind interfaces only = Yes passdb backend = ldapsam:ldap://localhost passwd program = /usr/bin/passwd '%u' passwd chat debug = Yes unix password sync = Yes syslog = 0 log file = /var/log/samba/%m max log size = 50 name resolve order = wins hosts bcast time server = Yes printcap name = CUPS add user script = /usr/share/samba/scripts/smbldap-useradd.pl -a -m '%u' delete user script = /usr/share/samba/scripts/smbldap-userdel.pl '%u' add group script = /usr/share/samba/scripts/smbldap-groupadd.pl -p '%g' delete group script = /usr/share/samba/scripts/smbldap-groupdel.pl '%g' add user to group script = /usr/share/samba/scripts/smbldap-groupmod.pl -m '%u' '%g' delete user from group script = /usr/share/samba/scripts/smbldap-groupmod.pl -x '%u' '%g' set primary group script = /usr/share/samba/scripts/smbldap-usermod.pl -g '%g' '%u' add machine script = /usr/share/samba/scripts/smbldap-useradd.pl -w '%u' logon script = logon.bat logon path = \\%L\profiles\%U logon drive = Z: logon home = \\%L\%U\profiles domain logons = Yes preferred master = Yes wins support = Yes ldap admin dn = cn=enigma.j9starr.net,ou=Hosts,dc=j9starr,dc=net ldap group suffix = ou=Group ldap idmap suffix = ou=Idmap ldap machine suffix = ou=People ldap suffix = dc=j9starr,dc=net ldap ssl = no ldap user suffix = ou=People idmap backend = ldap:ldap://localhost idmap uid = 1-2 idmap gid = 1-2 printer admin = root, @Domain Admins hosts allow = 192.168.2., 127. hosts deny = ALL map acl inherit = Yes print command = lpr-cups -P %p -o raw %s -r [apps] comment = Application Files path = /mnt/apps read only = No vfs objects = vscan-clamav [netlogon] comment = Network Logon Service path = /var/lib/samba/netlogon/%a guest ok = Yes browseable = No locking = No [profiles] comment = Profile Share path = /var/lib/samba/%a/profiles read only = No profile acls = Yes browseable = No root preexec = PROFILE=/var/lib/samba/%a/profiles/%u; if [ ! -e $PROFILE ]; then mkdir -pm700 $PROFILE; chown %u.%g $PROFILE; fi root postexec = /bin/su -c /usr/local/bin/dl /var/lib/samba/%a/profiles/%u/Desktop/*[^.lnk] %u recycle:repository = ../../../../../home/%U/Desktop/Trash recycle:noversions = *.doc|*.xls|*.ppt recycle:excludedir = /tmp|/temp|/cache recycle:exclude = *.tmp|*.temp|*.o|*.obj|~$*|*.~?? recycle:maxsize = 209715200 recycle:versions = Yes recycle:touch = Yes recycle:keeptree = Yes [homes] comment
[Samba] Help. . .read_socket_data errors
I have samba setup as a fileserver with winbind on an NT 4 domain. I keep getting the errors shown below constantly, and have no clue what could be causing it. If you have any clues please let me know. Jun 3 18:08:27 baker smbd[7436]: [2005/06/03 18:08:27, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:08:27 baker smbd[7436]: read_socket_data: recv failure for 4. Error = Connection reset by peer Jun 3 18:15:15 baker smbd[6159]: [2005/06/03 18:15:15, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:15:15 baker smbd[6159]: read_socket_data: recv failure for 4. Error = Connection reset by peer Jun 3 18:36:17 baker smbd[7437]: [2005/06/03 18:36:17, 0] lib/util_sock.c:read_socket_data(384) Jun 3 18:36:17 baker smbd[7437]: read_socket_data: recv failure for 4. Error = Connection timed out Thanks, Pablo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help: Failed to verify incoming ticket! revisited, problems with Samba/2003
I am struggling with a Samba/Server 2003 problem which doesn't make sense. I have compiled Samba 3.0.14a and MIT Kerberos 1.3.6 several times on different machines. I have a set of RPMS which work fine on one of my workstations, but do not work on the server. On the server I get the dreaded: reply_spnego_kerberos(173) Failed to verify incoming ticket! in the logs. I have compiled kerberos and samba on this machine, and still get the same error message. What is strange is that everything was working with this version of Kerberos and Samba a few days ago. I deleted this and installed from my custom RPMS and nothing has worked since. I've deleted all old executables. I've made sure libnss_winbind.so is installed properly. nsswitch.conf is configured. I've checked the system time. The server is joined to the domain, yet still it doesn't work. wbinfo, getent passwd both work correctly on the server. kinit works correctly on the server. -- log.smbd with log level 3 -- [2005/06/02 11:47:24, 3] smbd/process.c:process_smb(1091) Transaction 7 of length 1418 [2005/06/02 11:47:24, 3] smbd/process.c:switch_message(886) switch message SMBsesssetupX (pid 5968) conn 0x0 [2005/06/02 11:47:24, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655) wct=12 flg2=0xc807 [2005/06/02 11:47:24, 2] smbd/sesssetup.c:setup_new_vc_session(608) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(535) Doing spnego session setup [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(566) NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_spnego_negotiate(444) Got OID 1 2 840 48018 1 2 2 [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_spnego_negotiate(444) Got OID 1 2 840 113554 1 2 2 [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_spnego_negotiate(444) Got OID 1 3 6 1 4 1 311 2 2 10 [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_spnego_negotiate(447) Got secblob of size 1187 [2005/06/02 11:47:24, 3] libads/kerberos_verify.c:ads_secrets_verify_ticket(235) ads_secrets_verify_ticket: enc type [23] failed to decrypt with error Decrypt integrity check failed [2005/06/02 11:47:24, 3] libads/kerberos_verify.c:ads_verify_ticket(347) ads_verify_ticket: krb5_rd_req with auth failed (Unknown code 0) [2005/06/02 11:47:24, 1] smbd/sesssetup.c:reply_spnego_kerberos(173) Failed to verify incoming ticket! [2005/06/02 11:47:24, 3] smbd/error.c:error_packet(129) error packet at smbd/sesssetup.c(174) cmd=115 (SMBsesssetupX) NT_STATUS_LOGON_FAILURE [2005/06/02 11:47:24, 3] smbd/process.c:process_smb(1091) Transaction 8 of length 1568 [2005/06/02 11:47:24, 3] smbd/process.c:switch_message(886) switch message SMBsesssetupX (pid 5968) conn 0x0 [2005/06/02 11:47:24, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655) wct=12 flg2=0xc807 [2005/06/02 11:47:24, 2] smbd/sesssetup.c:setup_new_vc_session(608) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(535) Doing spnego session setup [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(566) NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_spnego_negotiate(444) Got OID 1 2 840 48018 1 2 2 [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_spnego_negotiate(444) Got OID 1 2 840 113554 1 2 2 [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_spnego_negotiate(444) Got OID 1 3 6 1 4 1 311 2 2 10 [2005/06/02 11:47:24, 3] smbd/sesssetup.c:reply_spnego_negotiate(447) Got secblob of size 1337 [2005/06/02 11:47:24, 3] libads/kerberos_verify.c:ads_secrets_verify_ticket(235) ads_secrets_verify_ticket: enc type [23] failed to decrypt with error Decrypt integrity check failed [2005/06/02 11:47:24, 3] libads/kerberos_verify.c:ads_verify_ticket(347) ads_verify_ticket: krb5_rd_req with auth failed (Unknown code 0) [2005/06/02 11:47:24, 1] smbd/sesssetup.c:reply_spnego_kerberos(173) Failed to verify incoming ticket! [2005/06/02 11:47:24, 3] smbd/error.c:error_packet(129) error packet at smbd/sesssetup.c(174) cmd=115 (SMBsesssetupX) NT_STATUS_LOGON_FAILURE [2005/06/02 11:48:24, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 Any suggestions? Josh __ Discover Yahoo! Get on-the-go sports scores, stock quotes, news and more. Check it out! http://discover.yahoo.com/mobile.html -- To unsubscribe from this list go to the following URL and read the
[Samba] Help with samba and a VM
I'm having some issues with a VM accessing a Samba share on a Unix server. When the user is not logged into the VM he has no problem accessing the share. When he logs into the VM and then tries to access the samba share he gets the following message: ERROR CODE: 1326 Logon failure: unknown user name or bad password. Here are my specifics: Samba version: 2.25 OS: HP 11.00 Smb.conf: # Samba config file created using SWAT # from 0.0.0.0 (0.0.0.0) # Date: 2005/05/25 13:59:03 # Global parameters [global] workgroup = DEVELOPMENT netbios name = PAHP07 netbios aliases = pahp07 security = SERVER encrypt passwords = Yes password server = pant05 # smb passwd file = /usr/local/samba/private/smbpasswd username map = /usr/local/samba/lib/username_map.conf log level = 2 log file = /usr/local/samba/var/log/%m.log preferred master = False domain master = False wins server = 198.22.118.29 guest account = pcguest [LiquentWorking] comment = Liquent Working Share path = /disk2/documentum_sw/LiquentWorking read only = No guest ok = Yes [VistaShare] comment = VistaShare Share path = /disk2/documentum_sw/vistashare read only = No guest ok = Yes Log files: This one is strange because I can ping this server: tail nmbd.log [2005/05/26 13:19:20, 2] nmbd/nmbd_nameregister.c:(198) register_name_timeout_response: WINS server at address 198.22.118.29 is not responding. [2005/05/26 13:19:20, 2] nmbd/nmbd_nameregister.c:(198) register_name_timeout_response: WINS server at address 198.22.118.29 is not responding. [2005/05/26 13:19:20, 2] nmbd/nmbd_nameregister.c:(198) register_name_timeout_response: WINS server at address 198.22.118.29 is not responding. [2005/05/26 13:19:20, 2] nmbd/nmbd_nameregister.c:(198) register_name_timeout_response: WINS server at address 198.22.118.29 is not responding. [2005/05/26 13:19:20, 2] nmbd/nmbd_nameregister.c:(198) register_name_timeout_response: WINS server at address 198.22.118.29 is not responding. tail smbd.log [2005/05/26 11:08:10, 2] smbd/server.c:(215) waiting for a connection [2005/05/26 11:08:10, 2] smbd/reply.c:(91) netbios connect: name1=PAHP07 name2=PAVM13 [2005/05/26 11:08:10, 2] smbd/reply.c:(110) netbios connect: local=pahp07 remote=pavm13 [2005/05/26 13:18:00, 2] smbd/reply.c:(91) netbios connect: name1=PAHP07 name2=01LP111 [2005/05/26 13:18:00, 2] smbd/reply.c:(110) netbios connect: local=pahp07 remote=01lp111 tail pavm13.log [2005/05/26 10:52:04, 1] smbd/service.c:(651) pavm13 (199.196.41.35) connect to service LiquentWorking as user pcguest (uid=251, gid=20) (pid 5118) [2005/05/26 10:52:47, 1] smbd/password.c:(1173) password server PANT05 rejected the password [2005/05/26 10:52:47, 1] smbd/password.c:(552) Account for user 'dmadmin' was disabled. [2005/05/26 10:52:47, 2] smbd/reply.c:(972) NT Password did not match for user 'dmadmin'! [2005/05/26 10:52:47, 2] smbd/reply.c:(982) Defaulting to Lanman password for dmadmin [2005/05/26 10:52:47, 1] smbd/password.c:(552) Account for user 'dmadmin' was disabled. [2005/05/26 10:52:47, 1] smbd/reply.c:(998) Rejecting user 'dmadmin': authentication failed [2005/05/26 10:59:15, 0] lib/util_sock.c:(499) write_socket_data: write failure. Error = Broken pipe [2005/05/26 10:59:15, 2] smbd/process.c:(1147) password server keepalive failed. [2005/05/26 11:08:10, 2] smbd/server.c:(461) Closing connections Any help is most greatly appreciated. Pati Moss This email may contain material that is confidential, privileged and/or attorney work product for the sole use of the intended recipient. Any review, reliance or distribution by others or forwarding without express permission is strictly prohibited. If you are not the intended recipient, please contact the sender and delete all copies. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] HELP !!! samba shows shares without content
Hello, I've upgraded to samba 3.0.14a on several Debian Sarge machines, but this morning it went wrong. The update went fine, users (XP SP2) can logon and all the mapped drives and printers are visible. Only when they click on the drive, no content is shown. Outlook can however access the outlook.mdb which lives in a subdir on the home drive ??? I've run the default tests to check for faults, but couldn'f find any. Loglevel up to 5 didn't give any clues to why it goes wrong. When I log in as a user with smbclient //SERVER/user (on the server) I get connected to it's home share. A dir command only shows the . (dot) and .. entry's. I can make a new directory with mkdir TESTDIR, but a dir command doesn't show it. I can even cd TESTDIR. BTW TESTDIR is created in the users home dir with the proper permissions. The only (relevant?) thing I found in the log was about the sys_get_vfs_quota() failing on /dev/md0 (/home) with an invalid argument. However I get this same failure with another server that has no problems. Any one has a clue to what causes this problem? - Remy - -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] HELP !!! samba shows shares without content
Remy Cool wrote: Hello, I've upgraded to samba 3.0.14a on several Debian Sarge machines, but this morning it went wrong. The update went fine, users (XP SP2) can logon and all the mapped drives and printers are visible. Only when they click on the drive, no content is shown. Outlook can however access the outlook.mdb which lives in a subdir on the home drive ??? I've run the default tests to check for faults, but couldn'f find any. Loglevel up to 5 didn't give any clues to why it goes wrong. When I log in as a user with smbclient //SERVER/user (on the server) I get connected to it's home share. A dir command only shows the . (dot) and .. entry's. I can make a new directory with mkdir TESTDIR, but a dir command doesn't show it. I can even cd TESTDIR. BTW TESTDIR is created in the users home dir with the proper permissions. The only (relevant?) thing I found in the log was about the sys_get_vfs_quota() failing on /dev/md0 (/home) with an invalid argument. However I get this same failure with another server that has no problems. Any one has a clue to what causes this problem? If probably found the answer to this problem. The bugreport: https://bugzilla.samba.org/show_bug.cgi?id=2514 reports the same problem and the 'temporary' solution. I've set hide special files = No and the dir command in the smbclient session now lists the files. Why hide special files was set to 'Yes' in the first place is a bit weird since I didn't set it. Maybe the debian upgrade modified smb.conf. Cups support was also replaced with bsd. Tomorrow I'll verify if the problem is realy solved. - Remy - -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help in performing a Half-Migration from NT to samba3.
I am currently planning half a migration (and half a new configuration) from NT to Samba PDC, and I would like to have some help. I have read the howto and I have understood something useful, but I also understood that I don't know enough of Samba domain internals to be sure not to make terrible mistakes. I currently have a NT4 PDC that also shares files and printers. Since groups and shares are a complete mess (not made by myself), I would like to migrate to samba (with tdbsam) and, in the process, recreate groups and shares (and access control to files) in a completely different way. I have about 60 workstations and 60 users, with an awful lot of printers (30 or so). I have started thinking about a migration plan, and have come up with some very generic ideas, on which I ask for some advice. - I should migrate printers to linux before everything else, while the users still use the nt4 server, because I need to go to every workstation and change the printers settings individually, and I would like to do this while the network is still in use (planning to use one entire day or more for this task). Ideally users should print through samba and cups while still using the NT server for everyting else. Question: is it better to use samba printing or to use LPD printing or IPP printing, provided that the workstations (XP sp2 and win2000) can do it? - I should then take the network down, use net rpc vampire to get the users, groups and machine accounts from NT to Samba, then discard the groups information and create my own group structure. Move the shared files from NT to Samba, modify login scripts, and test access from some workstations, then restart the network (during a week long holiday when the office is closed). Question: can I vampire only users and machine accounts and no groups (since I want to change them completely)? Question: I have read in the samba howto (or was it by example?) that I can (and should in some cases) run vampire, then export tdbsam to smbpasswd to strip domain information, then go back to tdbsam. This seems a good idea to strip out things like the home directory that must be changed for every user to the new server, but there is one aspect I don't understand: if I strip all domain information, doesn't the user's SID get lost and then recreated differently? What happens if I change the users SID numbers? Doesn't this make an horrible mess on the workstations that already know the domain users by the old SIDs? Any help (even in suggesting to read more of TFM, and possily a link to the part of the manual that I have to read) is really appreciated. -- Fabio Kurgan Muzzi -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help in performing a Half-Migration from NT to samba3.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Fabio Muzzi wrote: | Question: is it better to use samba printing or to use LPD | printing or IPP printing, provided that the workstations | (XP sp2 and win2000) can do it? Configuring your windows clients to access the printers via Samba gives you central control over the print drivers and settings that are deployed to clients. The next stable release of Samba should have support for MSs Print Migrator tool (http://www.microsoft.com/printserver/). cheers, jerry = Alleviating the pain of Windows(tm) --- http://www.samba.org GnuPG Key- http://www.plainjoe.org/gpg_public.asc I never saved anything for the swim back. Ethan Hawk in Gattaca -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCkdC5IR7qMdg1EfYRAmvSAKDagL/5HU04gf6vggq85JUCCGBfhACdE/Y/ 0NDpAO4ZycmL54vQlb+9iZI= =OZgQ -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help for the Net Services Mail Server
This is an automatic response triggered when [EMAIL PROTECTED] can't understand a message you sent to it. It's also sent out in response to a help command. The Net Services Mail Server sends out files by e-mail. Files currently available are: mrcooli.exe Mr.Cool, a W95/NT program for downloading files from slow sites. (Windows 95/98/NT) See http://www.netservs.com/mrcool/ coolinfo.txtInformation about Mr. Cool update.txt Update file for Mr. Cool stats.txt FTPMail/Agora Statistics. Daily updated list secrets.hlp Secrets of Solving Computer Software Problems (Windows) mlsc5.exe Mollusc 5 (Email privacy/security with PGP) (W95/98/NT) pgpkeyv2.ascOur PGP (V2.6) Public Key pgpkeyv5.ascOur PGP (V5) Public Key sci.exe Spamicide anti-junk mail program (Windows 95/98/NT) spamh.exe Spam Hater junk mail tracing and retaliation program (Windows) t2h101.exe Free Text to HTML program (Windows) emotsprt.exeDatabase of emotional support resources (Windows) glossi.exe Glossary program explains jargon (Windows 95/98/NT) starrprt.exeStarr report in easy browse format - requires web browser. To get the file you want, send mail to [EMAIL PROTECTED] and in the body, put: get file name_of_file You will get two messages - the transaction report and a message containing the MIME encoded file (or the file if it is a text file). Example: -- From: Ann Example [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: not needed get file mrcooli.exe -- Troubleshooting Tips: * Some e-mail programs add lots of garbage such as HTML or MIME to your message. This confuses the mailserver. and clear By default, send HTML messages * You must put the command in the body of the message, not the subject Where to report problems Should you still have any problems or questions, please email [EMAIL PROTECTED] who will be happy to help. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] help
here is how i do it. there may be a better way. 1. mount the windows box from the linux box: /bin/mount -t smbfs -o username=validusernameonwindowsbox,password=validusernameonwindowsbox'spassw ord //windowsbox/sharename /unixmountpoint the values validusernameonwindowsbox, validusernameonwindowsbox'spassword, windowsbox, sharename, and unixmountpoint are self explanatory. 2. sync up the files to the backup location on the linux box: /usr/bin/rsync -av /unixmountpoint/ /backup/windosbox/share hope this helps. stu - Original Message - From: Amani Makala [EMAIL PROTECTED] To: samba@lists.samba.org Sent: Tuesday, April 19, 2005 3:16 AM Subject: [Samba] help hi! i need to configure a linux backup server, let me give u some hints on the real environment, i have one linux machine and two windows machines, now i need to make backup of files found on windows machine,but the backup should be done on the linux machine. please anybody who can help me! thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help
hi! i need to configure a linux backup server, but am not very well on the way to configure it, let me give u some hints on the environment, i have three windows machine and one linux machine. now i need to configure the linux machine to be a backup server, files to be backed up are all found in these three windows machines, and i need to make a backup on an external hard drive, please let me know how to do this. thanks! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] help
hi! i need to configure a linux backup server, let me give u some hints on the real environment, i have one linux machine and two windows machines, now i need to make backup of files found on windows machine,but the backup should be done on the linux machine. please anybody who can help me! thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] HELP !!! migrating from win2000 pdc to linux pdc
Hello, I have a test environment with 1 windows 2000 AD domain pdc ( mixed mode install ), 1 linux server ( to become pdc ) and a win xp box to test logon when the migration was completed. The problem is no matter what I try after the migration the win xp's logonserver = windows server not linux server. I have no idea what is going on here. I've listed the process for migration just incase I'm doing something wrong. NB: Initially I had a problem with the migration because machines were not being created. The problem was due to useradd conforming to the posix standard and wouldn't allow accounts prefixed with $. Got an interim fix from RedHat which fixed this problem. Is there anything obvious I've missed? I've been at this for weeks now and have no idea what to check next. ( logs are a blur now ). Domain: TESTPDC0 Windows 2000: TESTPDC ( 192.168.44.80 ) Linux ServerLINUXPDC ( RHES4 )( 192.168.44.81 ) WinXP ( 192.168.44.20 ) ( machine name HP96281120913 ) Added linuxpdc and testpdc to /etc/samba/lmhosts Added linuxpdc and testpdc to our DNS cleaned groups up with -- delGrps.sh net groupmap cleanup net groupmap delete ntgroup=Print Operators net groupmap delete ntgroup=Domain Guests net groupmap delete ntgroup=System Operators net groupmap delete ntgroup=DnsAdmins net groupmap delete ntgroup=Replicator net groupmap delete ntgroup=Guests net groupmap delete ntgroup=Power Users net groupmap delete ntgroup=DnsUpdateProxy net groupmap delete ntgroup=Administrators net groupmap delete ntgroup=Account Operators net groupmap delete ntgroup=Backup Operators net groupmap delete ntgroup=Users net groupmap delete ntgroup=Domain Users net groupmap delete ntgroup=Domain Admins net groupmap delete ntgroup=Domain Computers net groupmap delete ntgroup=Cert Publishers net groupmap delete ntgroup=RAS and IAS Servers net groupmap delete ntgroup=Pre-Windows 2000 Compatible Access net groupmap delete ntgroup=Group Policy Creator Owners net groupmap delete ntgroup=Enterprise Admins net groupmap delete ntgroup=Domain Controllers net groupmap delete ntgroup=Schema Admins net groupmap delete ntgroup=Server Operators -- delGrps.sh end removed secrets.tdb and passwd.tdb set up smb.conf to be ROLE_DOMAIN_BDC testparm showed no errors net rpc join -S testpdc -W testpdc0 -UAdministrator%password joined the domain ok. checked on the win2000 server and linuxpdc was listed as a domain controller net rpc getsid -S testpdc -W testpdc0 sid was put into secrets net getlocalsid testpdc0 showed correct sid net getlocalsid no sid available so used: net setlocalsid sid from above net getlocalsid correct sid showing used initGrps.sh script to add groups --- initGrps.sh -- net groupmap modify ntgroup=Domain Admins unixgroup=root net groupmap modify ntgroup=Domain Users unixgroup=users net groupmap modify ntgroup=Domain Guests unixgroup=nobody --- initGrps.sh end -- net rpc vampire -S testpdc -U Administrator%password no errors list the groups on win 2000 box net group -l -S testpdc -U Administrator%password list groups on linuxpdc net groupmap list everything seems ok checked users and groups. everything migrated ok. added all imported users to the users group. changed linuxpdc to be domain master testparm verified this switched off win2000 pdc started smb with: service smb start switched on win xp box used regedit to change signorseal HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\netlogon\parameters RequireSignOrSeal=dword: re-booted xp machine seemed to log in ok username: pdawson password: password opened console with cmd run set LOGONSERVER=\\TESTPDC --- not what I was expecting no drive mapping and logon.bat didn't run Regards, Phil -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] [HELP-Syntax] net rpc share migrate
hi, i'm trying to migrate files and shares from NT PDC to samba v3 (3.0.14a) box net rpc share migrate shares netlogon -S server -Uadministrator password: *mypass* error: cannot add share - WERR_ACCESS_DENIED it's making a connection to localhost IPC$ i manually mounted IPC$ as administrator, which worked fine i also have full access to netlogon on server did you ever manage to migrate files/shares (with acls)? it's badly documented :( how can i specify migrating acls on the commandline? usually net only migrates files/shares without acls thx in advance! -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
