Adrian Chow wrote:
Hi Igor (and samba team),
I have done the following:-
-I have upgraded the samba versions of the both servers to be the same.
-The ldap servers are in the same version.
-DomainAPDC and DomainBPDC has winbind in nsswitch
-wbinfo all works.
-getent group and getent passwd shows
did have problem with user login when I had 'obey
pam restrictions = Yes' in smb.conf. It caused Samba to fail when it
asks PAM to verify account of the user from the trusting domain.
Thats all the questions I can think of now.
Thanks for helping.
adrian
Igor Belyi wrote:
Adrian Chow wrote:
Hi
Adrian Chow wrote:
Hi Igor,
Got some logs from the Domain_A_PDC on the domain_A_XP when domain_B
user (grade2) logs into domain_B on domain_A_XP.
[2004/11/05 11:18:45, 3] auth/auth.c:check_ntlm_password(219)
check_ntlm_password: Checking password for unmapped user
[EMAIL PROTECTED] with the
forgotten to cc to sambalists
Yes, I did. I apologize for delays - I work with Samba only in my spare
time.
Igor
Igor Belyi wrote:
== (Header) e-mail Filtrado ==
I would guess that it means that DomainA trust DomainB but DomainB
does not trust DomainA. Can you verify that trust is mutual
I would guess that it means that DomainA trust DomainB but DomainB does
not trust DomainA. Can you verify that trust is mutual between them?
Check 'net rpc trustom list' on both machines.
No, I do not use winbind for NSS (no winbind in /etc/nsswitch.conf).
Winbind is used only by Samba when it
. You can prevent users from being created if u do not
specify add user script in the smb.conf.
adrian
Igor Belyi wrote:
I've tried to login with a user testB which exists in DomainB but not
in DomainA (Client XP is a DomainA member) and noticed that there's
an attempt in DomainA to create
What error do you see in smbd log? Did you try to add -W domain name
to smbclient command?
Igor
Misty Stanley-Jones wrote:
Is this setup possible? I am converting an old server to look on LDAP for its
UNIX account info. I am able to auth in every way with a LDAP-only user
(login, telnet,
Can you list shares as a guest - without -U option and with empty
password? Does your Samba listen on 'lo' interface?
Igor
Misty Stanley-Jones wrote:
On Thursday 28 October 2004 11:33, Igor Belyi wrote:
What error do you see in smbd log? Did you try to add -W domain name
to smbclient command
If you are _not_ on FreeBSD, check your /etc/nsswitch.conf setup. Do you
see those users with 'getent passwd'?
Igor
Misty Stanley-Jones wrote:
On Thursday 28 October 2004 13:13, Igor Belyi wrote:
Can you list shares as a guest - without -U option and with empty
password? Does your Samba listen
attempt to look for a group with this gid may
indicate an incorrect check for an error in the code.
Let's do it together, shall we? :)
Igor
Igor Belyi wrote:
Ilia Chipitsine wrote:
Dear Sirs,
I did the following command (against ldapsam backend):
net groupmap add rid=3002 unixgroup=wheel type=local
was because I already got a domain member server under domain A
(samba 3.04) and I do not want to lose the SID cos I have like 260
users's home directory in that domain member server (windows 2003
server).
Thanks in advance.
Regards,
adrian
Igor Belyi wrote:
Sorry... Got busy with something else
.
Igor
Igor Belyi wrote:
Adrian Chow wrote:
Hi Igor,
Thanks for your prompt reply.
Just curious whether you have read my previous email regarding the
different setup for my side. I have :-
Domain A controller :- openldap 2.1.23 (slave), samba 3.04 (PDC)
Domain B controller :- openldap 2.1.30-3
Sorry... Got busy with something else. I'll try to do the test with
different users tomorrow. There could be a problem with my previous test
since the user present in both Domains also has the same password and
this may allow credentials from one domain to somehow be used in another.
If you
Ilia Chipitsine wrote:
Dear Sirs,
I did the following command (against ldapsam backend):
net groupmap add rid=3002 unixgroup=wheel type=local ntgroup=Marketoids
comment=Mm -d 10
I just wanted to add new group. But instead of that I saw many-many-many
records:
lib/smbldap.c:smbldap_search(963)
Miguel Angel Díaz Armentia wrote:
I've got a ldap+samba server and I should like to import ther users accounts
from my old smbpasswd from another server to ldpasam.
Any idea?
Assuming that SID of the domain is the same:
pdbedit --import smbpasswd --export ldapsam
Igor
--
To unsubscribe from this
Run /usr/sbin/useradd -m veronika from the command line and see what
error prevents it from creating such a user.
Igor
opk Bronislav wrote:
Dear all,
I have a problem with adduser script in smb.conf.
I traing to log in WinXP as a user from trusted domain. But it writes
me alwais this fail:
I'd guess that you either have nscd running on your PDC or Administrator
with that password does not exists in PDC user database.
In first case you will need either stop or restart nscd. In second -
create such user or check its password.
Hope it helps,
Igor
Tomasz Chmielewski wrote:
Hello,
I'm
by this
particular user, not 'root' .
Gary R. Webster
Igor Belyi [EMAIL PROTECTED]
Sent by: [EMAIL PROTECTED]
10/16/04 01:38 AM
To: David Rankin [EMAIL PROTECTED]
cc: [EMAIL PROTECTED]
Subject:Re: [Samba] Re: 'add/change/delete share command'(s) in
smb.conf
On a second
Is it possible that account has User Cannot Change Password set?
Igor
Steve Simeonidis wrote:
Error when you try to change your password
from Windows XP, SP1, latest patches
(ctrl-Alt-Del)
Server configuration
Fedora Core 1
samba-3.0.7-2FC1
Samba is configured as PDC with roaming profiles.
I've
Greg Adams wrote:
So am I up a creek on this issue?
Gerald (Jerry) Carter wrote:
Yup. That's my change. But since the NTLM authentication
is succeeding, then I'll assume that the token sent back
was an NTLMSSP tocken as well. So for some reason the client
either can't or won't obtain
' into DomainB I get home mapped on X: and files
are from ServerB.
I haven't try this yet with users present only in one domain and not in
the other.
BTW, can you share your smbd logs? It could help to understand what
happens in your setup.
Thanks,
Igor
Thanks.
adrian
Igor Belyi wrote:
I can give
Any error messages in smbd log?
Igor
F. Latorre wrote:
Hi
We setup a samba server (3.02a ) under Debian, acting as PDC.
Clients are w98 S.E. and XP sp1.
Server name is box-p
In smb.conf we configure:
[clouds]
...
[homes]
...
msdfs root = yes
We create dfs links in home directory of users : ln -s
Is it possible that 'ldap admin dn' used in your smb.conf does not have
write access to 'ou=Computers,dc=unimix,dc=com,dc=br'? What was the
error in smbd log when machine failed to join the Domain?
Igor
Fernando Ribeiro wrote:
Hi all,
I have smb.conf with:
add machine script =
Do you use smbfs or smbclient to view Windows files?
Igor
Joseph Earl wrote:
All,
I can view the Samba shares on any Windows system. I can not view Windows
files on my Linux system. Below is my config file.
Thanks in advance,
Jearl
# Global parameters
[global]
workgroup = DLSMIS
Flewid Productions wrote:
Hi All,
I'm not sure if this is a problem specific to samba, or to cups, or to
something else. I have a samba 3.0.7 server acting as a PDC, and print
server for my wonderfully overcomplicated home network setup. The
problem is when I send a PDF to the cups server to be
As far as I know smbfs uses uid and gid only for those shares which do
not have their own access attributes. If server exports access
attributes smbfs obeys them.
You can play with 'force user' and 'force group' attribute for this
share to force access to be by uid and gid known on server.
I can give a shoot at explaining the behavior and if I'm too off I hope
I'll be corrected.
When you select Domain into which you want to login you specify the
Domain where your credentials (username and password) should be verified
but shares specified without Domain will be retrieved from the
Igor Belyi wrote:
I can give a shoot at explaining the behavior and if I'm too off I hope
I'll be corrected.
When you select Domain into which you want to login you specify the
Domain where your credentials (username and password) should be verified
but shares specified without Domain
Ilia Chipitsine wrote:
Dear Sirs,
I installed OpenLDAP and smbldap-tools by IDEALX.
samba is 3.0.7, smbldap is 0.8.5
what else did I do:
1) smbldap-populate
2) pdbedit -i smbpasswd:/usr/local/private/smbpasswd -e
ldapsam:ldap://127.0.0.1
3) smbpasswd -w clear text password
what is not very
Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Greg Adams wrote:
| I'm sorry, I still don't quite follow you.
|
| I have security = ads, and, as far as I can tell,
| a working kerberos installation, so that means I'm
| using kerberos authentication, right?
Correct.
|
Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Greg Adams wrote:
| I tried to send a level 10 log from the moment of connection to the
| user that should be mapped touching a file, but the attachment was too
| large and the messages bounced, awaiting moderator approval.
Here's maybe even more relevant part of the log:
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 3 6 1 4 1 311 2 2 10
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 2 840 48018 1 2 2
[2004/10/18 08:08:04, 3]
Igor Belyi wrote:
Here's maybe even more relevant part of the log:
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 3 6 1 4 1 311 2 2 10
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 2 840 48018 1 2 2
[2004/10/18 08:08:04, 3] smbd
Igor Belyi wrote:
Igor Belyi wrote:
Here's maybe even more relevant part of the log:
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 3 6 1 4 1 311 2 2 10
[2004/10/18 08:08:04, 3] smbd/sesssetup.c:reply_spnego_negotiate(444)
Got OID 1 2 840 48018 1 2 2
[2004/10/18
Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Igor Belyi wrote:
| No, wait! Samba checks only the first OID! And this is the
| reason for NTLM! Here's the comment from source/smbd/sesssetup.c:
|
|/* only look at the first OID for determining the mechToken
Igor Belyi wrote:
Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Igor Belyi wrote:
| No, wait! Samba checks only the first OID! And this is the
| reason for NTLM! Here's the comment from source/smbd/sesssetup.c:
|
|/* only look at the first OID for determining
There could be number of reasons why you can't join domain. The best way
to investigate your problem is to look in smbd log for error messages.
Igor
Misty Stanley-Jones wrote:
On Monday 18 October 2004 14:51, Misty Stanley-Jones wrote:
W2K reports User not found when I try to join the domain.
-Jones wrote:
On Tuesday 19 October 2004 09:32, Igor Belyi wrote:
There could be number of reasons why you can't join domain. The best way
to investigate your problem is to look in smbd log for error messages.
There are no errors in the log. See the entire level 10 log for the time when
I
I think you will be interested in recent Andreas's experience with KDE:
http://lists.samba.org/archive/samba-technical/2004-October/037685.html
Igor
Eric Murray wrote:
-| PDC - Login isnow Slow...
-| -| winbind enum users = yes
-| winbind enum groups = yes
remove those two...
Mit
Have you tried to browse this share with smbclient?
Igor
Jason Pirok wrote:
This problem began a couple months ago with my new install of (you
guessed it) XP sp2. Now, when i mount a share from the xp machine to
my debian box, everyone, including rot, gets a permission denied
trying to ls the
Can you be a little bit more specific?
What do you mean by 'users cannot change their passwords? Does it mean
that they cannot change it via Windows' Change Password dialog? What
error message they get? Can Administrator do it for them? Can they
change it under Linux with smbpasswd? Is there
You may want to start looking at the smbd logs instead of ethereal. If
the problem isn't obvious from the default log level, try to increase it
up to 5 and see why Samba doesn't like to give a user access.
If smbd log doesn't say much to you I can try to help looking through it
- just send it
This error message is reported by smbfs kernel module, it has nothing to
do with Samba... Probably, the error code reported in this message can
give you move information.
I just want to add that pagefile.sys is a special file (swap) under
Windows which is handled somewhat special and you can
[netlogon] is a special share. I would guess Windows mounts it more than
once when user logins but you should see it then with 'log level = 5' as
'cmd=/home/samba/scripts/create-login-script.sh adrian.h' line in smbd
logs. Have you tried to put this 'root preexec' into [home] share instead?
Is there any error message reported on Samba side in smbd or nmbd logs?
Igor
ip.guy wrote:
i'm having the same problem with my samba server and photoshop 7.0
strangely enought though, the problem only exists on one of the two
mounted file systems (both identically formatted and mounted)
[EMAIL
It sounds like a locking problem to me...
Have you tried 'blocking locks = no' and 'oplocks = no' share parameters?
Igor
Brodsky Denis-RM08520 wrote:
Hello All,
I have Samba 3.0 and 3.0.7 servers that have similar problem ,
the problem occures once a week ~aprox,
all about 1 per minute
Can you provide 'smbclient -d 5' log for the problem?
Igor
P.Saffrey wrote:
I am running a Samba server on Debian testing. Each day, I run an
automatic update via apt. Up until recently, the server was working fine;
I am assuming that the update has upgraded to a non-working version.
I can log
You can start more than one samba server without a problem if you
specify explicitly what configuration file each of them use by adding
'-s config' option to smbd and nmbd daemons.
If you need each of those servers to bind to a particular interface add
'interfaces = ehx' and 'bind interfaces
Laurenz, Dirk wrote:
Hello everybody,
i have two questions concerning samba.
1st Topic - file times
NTFS has three file times for each file,
the create time, the change time and the
access time. The create time will never be
modified, the change time will be changed
Holger Krull wrote:
It's more like an ext3 question...
NTFS has create, modify, and access timestamps whereas
ext3 has change, modify, and access ones.
According to my experiments on NTFS:
'create' really never changed.
'modify' changes whenever file is saved.
'access' changes whenever property of
Any smbd log you want to share?
I'd expect some kind of error in there? :)
Igor
Mark Rutherford wrote:
ok, changed the computers name and added it just as I added 'test'
then, deleted the 'test' machine
the new machine I called 'mark'
and, it was already in a workgroup.. so I rebooted it
no
not exist'
thanks for the help :)
Igor Belyi wrote:
Any smbd log you want to share?
I'd expect some kind of error in there? :)
Igor
Mark Rutherford wrote:
ok, changed the computers name and added it just as I added 'test'
then, deleted the 'test' machine
the new machine I called 'mark'
and, it was already
Have you tried setting 'use sendfile = no' for the share in your smb.conf?
Igor
Jim Canfield wrote:
Greetings,
I have a Gentoo Linux machine running samba 3.0.7-r2
It's a member of a win2k ADS domain...all that seems to be working fine.
Problem:
When I share a directory on the Samba machine ADS
Greg Adams wrote:
Yeah, that solved the problem for valid users. Thanks.
However, I now have a different problem. The same kind of logic should
apply to the username map, right? But it doesn't seem to.
smb.conf:
bill eight wrote:
Hi,
Ok - win95 systems were on Samba 2.2.x
Now, added XP pro systems...
added user account on XP desktop
AND on samba/linux server and
did a smbpasswd -a
c:\net use \\ipaddr\share /user:user
works ..
but on the XP system (logged in as that
user) I CAN't see the network, even
The trick is in you picking SID by yourself. :o)
sambaPrimaryGroupSID: should always be either explicit mapping of
gidNumber in the groupmap or implicit arithmetic mapping: (gidNumber *
2) + 'rid base' + 1. Your problem is that you have inconsistency in you
root's setup. As a result its primary
Ok, the logic goes like this...
If you want to use root for Domain administration purposes it has to be
in the Domain user database.
If it's a Domain user its primary group should be a Domain group.
All Domain groups in Samba are mappings from UNIX groups into SIDs.
If mapping for a particular
Can you provide 'log level = 5' of smbd for the time you open the share.
Also provide at least one name of the folder which is present in this
share but is not shown in Windows.
Thanks,
Igor
Mario Bittencourt wrote:
Hi,
at least for me no changes. I've added those hide
unreadable/unwriteable
[EMAIL PROTECTED] wrote:
Is there a way to add the linux user to the system on the fly while you
run smbpasswd -a and even set the password so you do not have to do two
steps or to have adduser or useradd add a user to smb by default with the
same password if created. Many of the users in a
I think it's a good idea to ask this question on a Nautilus list:
http://mail.gnome.org/mailman/listinfo/nautilus-list
Igor
Steve Blackwell wrote:
Hi,
I'n using the nautilus file browser in a GNOME desktop environment on a
FC2 system.
If I enter smb:/// in the location bar in nautilus I can see
I use usrmgr.exe on WinXP Pro without a problem. Did you check for any
error message in smbd log and in Window's Event Viewer?
Igor
Aaron Rosenblum wrote:
Hi,
I installed UsrMgr.exe (downloaded from the MS support site) on an XP
client, joined the client to the domain hosted by the Samba 3 PDC,
Have you tried to ask on Heimdal list?
[EMAIL PROTECTED]
Igor
L. Mark Stone wrote:
Trying to follow Chapter 9.3.3 of S3BE to create a SuSE 8.2 Active Directory
domain member server.
9.3.3 says heimdal = .6 is required. I installed the Sernet packages and saw
0.6.2 source is included. Running
Greg Adams wrote:
I've got a Samba 3.0.7 member server of an ADS domain. Is there some
way to map everyone in an ADS group to a single user for the purposes
of Unix permissions? I thought I could do this with an smb.conf entry
of:
usernam map = /opt/samba/etc/username.map
and an entry in the
Have you tried to print from the same machine where cups-server runs
without invoking Samba? If it has the same problem - you will need to
ask help on cups list: http://www.cups.org/newsgroups.php
Igor
Karsten Dello wrote:
good evening,
if i print to our cups-server from a winxp-machine via the
Mario Ohnewald wrote:
Hello List,
yet another OpenLDAP/Samba problem...
OpenLDAP: slapd 2.2.17
Samba: Version 3.0.7
Debian stable with 2.4.27
I am trying to do this howto (smb auth via ldap):
http://www.idealx.org/prj/samba/smbldap-howto.en.html
Even IF the user does not exits in my ldap table,
Greg J. Zartman, P.E. wrote:
I'm attempting to start smbd and nmbd using the -F -S flags, but get the
following:
added interface ip=127.0.0.1 bcast=127.255.255.255 nmask=255.0.0.0
added interface ip=192.168.0.1 bcast=192.168.0.255 nmask=255.255.255.0
standard input is not a socket, assuming -D
[EMAIL PROTECTED] wrote:
Hello.
I need to allow one of my users to add delete shares on my Samba server
through the 'server manager' applet on his client .
This same user also writes some files to the same Samba server.
I don't want the files that he writes to be owned/written by 'root' .
The
or wherever the files of
concern are, you would be much better off.
--
David C. Rankin, J.D., P.E.
Rankin * Bertin, PLLC
510 Ochiltree Street
Nacogdoches, Texas 75961
(936) 715-9333
www.rankin-bertin.com
- Original Message -
From: Igor Belyi [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday
' as
if it were 'root'.
Igor
Igor Belyi wrote:
Hm... Interesting idea... Since access is necessary only to smb.conf
than probably changing share's path to
'path = /etc/samba' could be a better alternative...
But then again.. how 'add/change/delete share commands' will know that
this particular user has
Users (S-1-5-32-545) is a local group. Domain users should have Domain
group from their domain as their primary group. I would recommend to
change mapping by removing 'Users - users' map and adding 'Domain Users
- users' one.
The problem can be also caused if you already have 'Domain Users -
Please, read carefuly Samba doc regarding Interdomain Trust:
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/InterdomainTrusts.html
Interdomain trust implies that one Domain will trust another that a user
logged into it correctly. Your assumption that user from one Domain
should be
as a domain member.
Do you join domain some other way?
Igor
Michael Liebl wrote:
Am Mittwoch, den 13. Oktober 2004 schrubte Igor Belyi:
Using: Debian/unstable x86 Linux 2.6.5
Samba: Version 3.0.7-Debian
Interesting case... The request comes from Windows to update machine
account
Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ryan Suarez wrote:
| Greetings Admins,
|
| The howto details setting the device mode using a windows client:
|
http://us4.samba.org/samba/docs/man/Samba-HOWTO-Collection/printing.html#id2552900
|
|
| Is there a way to
Can you also provide smbd log showing the error message during your
attempts?
Igor
Brian Witowski wrote:
Hello,
I have a perplexing problem. Im running Mandrake 10.0 and samba 3.0 setup
as a domain controller. My client machines are XP Pro. I can join the
domain and my Homes directory
Monty wrote:
I am running MD 10 (Community) as a file server on a Shuttle SB61G2. This
setup worked very well under Mandrake 9.2 however, everytime I try to copy
files larger than say 550 ~650MB using MD 10, my linux box freezes and must
be rebooted. I can FTP the same file(s) perfectly fine to
Kris Van Bruwaene wrote:
When trying to connect to a new machine on our
internal network I first got:
session setup failed: NT_STATUS_PASSWORD_MUST_CHANGE
I searched the list archives and found the following
solution, which gave me a new error:
smbpasswd -U bruwaek -r //rto.be
Old SMB password:
Different people have different reason for this failure but in your case
you need to remember that besides finding Administrator Samba need to
find machine trust account as well. If it can't find it the same error
message Can't find user is reported back to Windows.
Check that machine account
Different people have different reason for this failure but in your case
you need to remember that besides finding Administrator Samba need to
find machine trust account as well. If it can't find it the same error
message Can't find user is reported back to Windows.
Check that machine account
Tilo Lutz wrote:
I got a problem with groupmapping. It doesn't work correct:
Wilma2:/home/root # net groupmap list | grep 512
Domain Admins (S-1-5-21-3371203057-3264423045-2392767973-512) - domadm
ldapsearch -x cn=domadm:
# domadm, groups, wms-hn.de
dn: cn=domadm,ou=groups,dc=my-domain
Michael Liebl wrote:
Domainname: MITTELERDE
PDC:ISENGART
Machinename I added: TESTMACHINE
My Command:
add machine script = /usr/sbin/useradd -c Samba-Computer -d /dev/null -g machines -s
/bin/false %u
If I change 'set primary group script' to /bin/true the machine will
stay in Group
Users (S-1-5-32-545) is a local group. Domain users should have Domain
group from their domain as their primary group. I would recommend to
change mapping by removing 'Users - users' map and adding 'Domain Users
- users' one.
The problem can be also caused if you already have 'Domain Users -
Can you provide smbd log showing the error message you receive on login
attempts?
Does your 'pdbedit -L' lists machine accounts as well as user's one?
How did you migrate your user database into LDAP (you may lost your
password during migration)?
Why do you use samba 2.x schema with Samba 3.0.7?
What 'getent group domadm' returns you? I suspect that it does not have
tilo as a member. If you have the same posixGroup defined both in
/etc/group and in LDAP and what to have definition (and member list) to
be taken from LDAP instead of local file you need to list 'ldap' before
'files' in
Michael Liebl wrote:
A machine account has not to be in a primary Samba group I think. That
would not make any sense to me.
I saw in the log that Samba grep'd the primary Samba group for the
machine$ (Domain Users) an then called set primary group script.
Should I add the Log to the List or
Barbara M. wrote:
Anyone have a working conf (PDC+homes+public in samba 3.0.x)?
Ok, I finally noticed that you don't have map to guest in your
smb.conf which means it gets value Never. I would recommend to set it
to Bad User and then all nonexisting in domain users will be silently
mapped to
Chris St. Pierre wrote:
I did some further investigation, and it appears that in the
conditional on lines 250-254 of rpc_server/srv_netlog_nt.c in
get_md4pw() is where the failure point is. Namely, the account is not
disabled, and the pass is not null, but none of the trust checks pass.
smbfs is not the same as Samba - they use although the same net
protocol. You can try to put files into share with smbclient to see if
Samba also has the same problem, but if it's smbfs specific you will
need to go to the correct maintainer. You can also try to mount share
with CIFS - they say
M Middleton wrote:
I've got several users I created with a blank password (only temporary
until I can get the system fully operational, long story behind that),
but for some reason when I try to access a share that a user with no
password is authorized for, NT 4 won't let me in to the share.
Any
security = DOMAIN means that server is a member of a domain and not a
PDC. To set servera as a PDC you will need to use security = USER
(which is the default). Please, read Samba-HOWTO.
Igor
opk Bronislav wrote:
Hi,
it is my project in the school, I need to create this trust between two
To prevent deletion you should remove write access on the directory
containing the file: chmod a-w /home/samba/public
Igor
Bruno Gimenes Pereti wrote:
Hi!
I'll try to explain all the situation to help you understand the
problem. I have a Samba 3.0.4 + LDAP + ACL PDC and I use poledit to
define
TRAPPE wrote:
When i do on my pdc server :
net rpc join Administrator
Create of workstation account failed
User specified does not have administrator privileges
Unable to join domain BIC.
Did you mean to issue: net rpc join -U Administrator? And I would
recommend to look
Thorsten Scherf wrote:
hi,
I set up a winbindd with a ldap backend, here is the relevant part of my
smb.conf:
idmap backend = ldap:ldap://mail.rhel.homelinux.com
ldap admin dn = cn=winbind,dc=example,dc=com
ldap suffix = dc=example,dc=com
ldap idmap suffix = ou=idmap
On the ldap server I set up
Thorsten Scherf wrote:
On Wed, 06.10.2004 Igor Belyi wrote:
Thorsten Scherf wrote:
hi,
I set up a winbindd with a ldap backend, here is the relevant part of my
smb.conf:
idmap backend = ldap:ldap://mail.rhel.homelinux.com
ldap admin dn = cn=winbind,dc=example,dc=com
ldap suffix = dc
Igor Belyi wrote:
Thorsten Scherf wrote:
this works fine.
but what is the difference to dn=(.*),ou=idmap,dc=example,dc=com?
with my understanding of the ldap-access rules it should just be a
performance issue, souldn't it?!
I think the difference is that you forgot to add '.regexp' to your
Thorsten Scherf wrote:
On Wed,, 06.10.2004 Igor Belyi wrote:
I think the difference is that you forgot to add '.regexp' to your
access statement. It should have been:
dn.regexp=(.*),ou=idmap,dc=example,dc=com
otherwise it was matching dn as it is without applying regular
expression rules
Chris St. Pierre wrote:
I had a problem similar to my current one a week or so ago, and I was
encouraged to upgrade from Samba 2.2.9 to 3.0.7, which I did. Now
that I've completed that nightmare, the problem I initially set out to
fix is still there, just different. Namely:
I am trying to set up
Chris St. Pierre wrote:
However! Here's the smbd log:
[2004/10/05 16:24:17, 1] lib/smbldap.c:add_new_domain_info(1289)
failed to add domain dn= sambaDomainName=NWU_TEST,o=nebrwesleyan.edu,o=isp with:
Object class violation
[2004/10/05 16:24:17, 0]
Mattia wrote:
[EMAIL PROTECTED] root]# slapadd -l Master.ldif -f /etc/openldap/slapd.conf
slapadd: bad configuration file!
Try adding -d 15 to your slapadd command for more verbose explanation
of the error.
Igor
--
To unsubscribe from this list go to the following URL and read the
instructions:
John H Terpstra wrote:
On Friday 01 October 2004 02:13, Thorsten Scherf wrote:
when trying to put a samba3 server into a domain (samba3 pdc) I always
get the following error messages:
[EMAIL PROTECTED] samba]# net join -d 2 -U smbadmin RHEL -S
server1.example.com
smbadmin must have uid 0.
..or be
Jim C. wrote:
access to dn.subtree=dc=j9starr,dc=net
by group/posixGroup/memberUid=cn=Domain
Controllers,ou=Group,dc=j9starr,dc=net
by * read
I pulled that info from faq-o-matic just a minute ago. No dice. See below.
access to dn.subtree=dc=j9starr,dc=net
by
1 - 100 of 140 matches
Mail list logo
