Hi,
On Thu, Feb 22, 2007 at 03:59:00PM +1000, Bradley Schatz wrote:
Thanks Mark,
I did the following:
net ads keytab ADD HTTP/foundry.example.local
It placed the following in my keytab:
klist -k:
snip
2 HTTP/foundry.example.local/[EMAIL PROTECTED]
2
in 3.0.23a...
- Mark
On 2/21/07, Mark Proehl [EMAIL PROTECTED] wrote:
Hi,
try
net ads join createupn=host/foundry.example.local
- Mark
On Tue, Feb 20, 2007 at 05:57:47PM +1000, Bradley Schatz wrote:
I suspect I might be grossly misunderstanding kerberos and AD here, but
I
Hi,
try
net ads join createupn=host/foundry.example.local
- Mark
On Tue, Feb 20, 2007 at 05:57:47PM +1000, Bradley Schatz wrote:
I suspect I might be grossly misunderstanding kerberos and AD here, but I
cant seem to grok the following.
net ads join integrates my linux samba server
Hi,
On Wed, Nov 15, 2006 at 06:03:37PM -, Gautier, B (Bob) wrote:
...
I'm not entirely clear what you want to do, but you could look
at using just pam_krb5 (i.e. use AD's Kerberos functionality
for authentication) - that way, you won't need a domain join.
pam_krb5 should validate the
On Fri, Oct 20, 2006 at 03:56:06PM +0800, Zhou,Alan wrote:
Hi
??I installed Samba 3.0.23c on the freebsd 6.1 via ports, I have
configure krb5.conf and nsswitch.conf, when I execute ???kinit [EMAIL
PROTECTED] system response ???kinit: NOTICE: ticket renewable lifetime is 10
hours???
On Thu, Jul 27, 2006 at 03:02:16PM -0400, simo wrote:
On Thu, 2006-07-27 at 20:53 +0200, Mark Proehl wrote:
On Thu, Jul 27, 2006 at 04:57:39PM +0200, Mark Proehl wrote:
Hi,
is idmap backend = ad with winbind nss info = sfu supposed to work
with trusted domains?
- Mark
Hi,
is idmap backend = ad with winbind nss info = sfu supposed to work
with trusted domains?
- Mark
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
On Thu, Jul 27, 2006 at 04:57:39PM +0200, Mark Proehl wrote:
Hi,
is idmap backend = ad with winbind nss info = sfu supposed to work
with trusted domains?
- Mark
my problem is this:
vm1:~ # wbinfo -S S-1-5-21-4038355506-4058439304-2375676978-500
13
vm1:~ # wbinfo -S S-1-5-21
you should not run the daeomons while joining. The daemon log files
don't provide any information about the join process. You should run
the net command with a higher debug level, e.g. net ads join -d 3
On Mon, May 22, 2006 at 10:39:01AM +0200, diego Pelizzi wrote:
Problem with join to Active
Hi,
if you create a new user with luseradd, is this new user immediately
available? Or do you have to wait some time between the following two
commands:
/usr/sbin/luseradd -g Domain Computers -c Machine -s /bin/false -d
/dev/null -n -M testuser
id testuser
Mark
On Fri, May 19, 2006 at
Hi,
why do I have to specify idmap uid and idmap gid ranges to have
filesystem ACLs working?
My environment is a samba controlled domain. All Unix account
information is stored in LDAP.
In samba-3.0.14a it was possible to use winbind in netlogon proxy
only mode (i.e. no ranges for idmap uid /
Hi,
if your samba is compiled without libcups, then you should not set
printing = CUPS.
From the smb.conf manual page:
For printing = CUPS : If SAMBA is compiled against libcups, then printcap =
cups uses the CUPS API
to submit jobs, etc.
If samba is not compiled against libcups, how
Hello,
the same problem happens to me with a RHEL4 system.
Another point is that using net ads join with existing kerberos
credentials is not working:
[EMAIL PROTECTED] tmp]# kinit Administrator
Password for [EMAIL PROTECTED]:
[EMAIL PROTECTED] tmp]# klist -5
Ticket cache:
Hi,
is there a way of disabling the creation of the (insecure) lm-hash in
the passdb backend of a samba3-pdc?
Mark
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Hi Jerry,
thanks for your reply.
On Thu, Mar 02, 2006 at 11:17:58AM -0600, Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark Proehl wrote:
Hi,
is there a way of disabling the creation of the (insecure) lm-hash in
the passdb backend of a samba3-pdc
On Thu, Mar 02, 2006 at 02:35:50PM -0600, Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark Proehl wrote:
I am aware, that both hashes are equivalent to clear text passwords
and must be protected therefore. But cracking passwords with tools
like john
On Thu, Mar 02, 2006 at 09:52:47PM +0100, Mark Proehl wrote:
On Thu, Mar 02, 2006 at 02:35:50PM -0600, Gerald (Jerry) Carter wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark Proehl wrote:
I am aware, that both hashes are equivalent to clear text passwords
and must
Hi,
im looking for a binary package of samba with a libnss_winbind.1
for HP-UX-11.0
The depot files in
http://de.samba.org/samba/ftp/Binary_Packages/hp/samba-3.0.14a
look good, but there are these three requierements:
OpenLdap 2.1.3 (http://hpux.cs.utah.edu)
OpenSSL 0.9.7d
Hello,
you have to set
unix password sync = No
ldap passwd sync = Yes
and use an LDAP-server that supports the password modify extended
operation (like OpenLDAP). A password change via smbpasswd will
update all userPassword attributes of the LDAP entry
Mark
--
To unsubscribe from this
Hi,
I did some testing with 3.0.6rc2. My smb.conf looks like this:
[global]
log level = 3
wide links = No
follow symlinks = No
[test]
path = /tmp
When connecting \\myserver\test from XP-Box I get access denied
Accesing the share with smbclient works, but I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tuesday 04 May 2004 19:01, Javid Abdul-AJAVID1 wrote:
Till now, I used ./smbpasswd -j dom -r pdc as unix root ( after
creating domain machine acct in winodws domain)
With Samba-3.0 , net join command I need to have windowns domain password (
I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Bob,
I read your mini howto. You suggest to delete /etc/krb5.keytab. But this file
is needed by other kerberized services on the unix server, eg. sshd.
Is it possible to use the same keytab file for samba and the other services?
What happens to
(like goodlinktodirectory_1 in my
example) do work.
Mark Proehl
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
23 matches
Mail list logo