On 09/14/2013 05:33 PM, Andrew Bartlett wrote:
On Fri, 2006-10-06 at 12:32 -0400, Yannick Gingras wrote:
[...]
You can't do a domain logon without a machine account. You could set
them up as just standalone workstation however.
Andrew Bartlett
Andrew,
while I appreciate you taking the
: 16/09/2013 14:04
Objet : Re: [Samba] On Machine Accounts
Envoyé par : samba-boun...@lists.samba.org
On 09/14/2013 05:33 PM, Andrew Bartlett wrote:
On Fri, 2006-10-06 at 12:32 -0400, Yannick Gingras wrote:
[...]
You can't do a domain logon without a machine account. You could set
them up
On Sun, 2013-09-15 at 11:53 -0700, Yannick Gingras wrote:
On 09/14/2013 05:33 PM, Andrew Bartlett wrote:
On Fri, 2006-10-06 at 12:32 -0400, Yannick Gingras wrote:
[...]
You can't do a domain logon without a machine account. You could set
them up as just standalone workstation however.
On Fri, 2006-10-06 at 12:32 -0400, Yannick Gingras wrote:
I have a few (~20) workstations dual booted with GNU/Linux and Windows
XP. When configuration changes on these systems (about once a month)
I deploy a full disk image with UDPcast [1]. Unlike recent versions
of Norton Ghost, UDPcast
Hi
Is there anything special about accounts ending in $?
I ask because I've just installed the whole of Samba 3.6 just to get the
net command to join a Linux box to a Samba 4 domain. Afterwards, the
machine will be using Samba 4 for authentication and filesharing with
win 7 clients. net ads
How do I migrate machine accounts from tdbsam backend to ldap backend?
I want to change the backend from tdbsam to ldap and I do not want to re-join
each machine onto the domain.
--
Dean Montgomery
Network Support Tech./Programmer
dmo...@sd73.bc.ca
School District #73
--
To unsubscribe from
On 05/17/2010 11:07 AM, Dean Montgomery wrote:
How do I migrate machine accounts from tdbsam backend to ldap backend?
I want to change the backend from tdbsam to ldap and I do not want to re-join
each machine onto the domain.
pdbedit -i tdbsam -e ldapsam
- John T.
--
To unsubscribe from
Hi List,
During a recent power outage my domain controller froze at the bios
screen.
So for all intents and purposes there was no PDC (nor BDC) for the domain.
When I arrived on scene I restored order and rebooted the PDC,most machines were
not affected,however several NT4 systems as
only ou=users, need i a second one for hosts? can i do this belated?
yes to (1) and I think yes to (2)...
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
is nss_ldap configured to search for posix accounts in ou=hosts?
Sven Buchstaller wrote:
Hi list
samba3-3.0.31-36
openldap2-2.3.43-1.1
my problem is i have stop my working openldap and restart it again, in
the Log i see now = pdb_get_group_sid: Failed to find Unix account
for ... a lot of
Hi list
samba3-3.0.31-36
openldap2-2.3.43-1.1
my problem is i have stop my working openldap and restart it again, in
the Log i see now = pdb_get_group_sid: Failed to find Unix account
for ... a lot of machine accounts.
Whats wrong? i must now all accounts rejoin to domain?
example from a host
/etc/ldap.conf
are you including a line like
nss_base_passwd ou=hosts,dc=server,dc=intern?one
/etc/nsswitch.conf
does it include the following?
passwd: files ldap
shadow: files ldap
group: files ldap
This is how machine accounts in ldap become 'unix accounts' or that's
An: Sven Buchstaller a...@quickline.de
Kopie: samba@lists.samba.org
Betreff: Re: [Samba] samba machine accounts problem
Datum: Wed, 15 Apr 2009 06:13:21 -0700
/etc/ldap.conf
are you including a line like
nss_base_passwd ou=hosts,dc=server,dc=intern?one
/etc/nsswitch.conf
does it include
I recently started playing with pdbedit to set the maximum password age policy
on v3.0.25a. After setting
this policy, I see that running pdbedit -Lv shows the machine accounts expiring
in the same time frame as
the user accounts. So my question is do the machine accounts actually expire
Hi,
(Sorry if a newbie question)
I can join XP machines to my Samba-LDAP domain by doing :
smbldap-useradd -w machine
smbpasswd -a -m machine$
...and the XP machines don't notice the replacement of the win2k Domain
Controler for the Samba one...but:
The windows 2000 machines do note the
I have a few (~20) workstations dual booted with GNU/Linux and Windows
XP. When configuration changes on these systems (about once a month)
I deploy a full disk image with UDPcast [1]. Unlike recent versions
of Norton Ghost, UDPcast have no post-deploy option to change the
machine name and/or
Dear all,
I want to ask if I can hide the machine accounts shown in getent passwd ? I
know it is harmless but they are not user accounts after all.
I am using security = ads and using libnss_winbind.
Thanks.
Cheers,
Jacky Hui
--
To unsubscribe from this list go to the following URL and read
Hi!
I use Debian Sarge + Samba 3.0.22 + OpenLDAP 2.2.23 Server for a
domain controller. Once a month i have to rejoin windows XP clients to
the domain, because samba thinks they're not in the domain(users
cannot log in).
The error message found in each machine log:
_net_auth2:
Greetings.
Please reference:
http://lists.samba.org/archive/samba-ntdom/2001-September/019783.html
That list is listed as inactive on the samba site, so I'm following up here.
Does anyone know if this functionality was ever achieved? We just
replaced out NT4 PDC with samba and I'm facing
At 5:50 PM -0400 8/22/05, Romeyn Prescott scribbled:
Greetings.
Please reference:
http://lists.samba.org/archive/samba-ntdom/2001-September/019783.html
Shoot. I meant:
http://lists.samba.org/archive/samba-ntdom/2001-September/019834.html
Sorry.
--
signat-url:
On Mon, 2005-08-22 at 17:50 -0400, Romeyn Prescott wrote:
Greetings.
Please reference:
http://lists.samba.org/archive/samba-ntdom/2001-September/019783.html
That list is listed as inactive on the samba site, so I'm following up here.
Does anyone know if this functionality was ever
Greetings.
Please reference:
http://lists.samba.org/archive/samba-ntdom/2001-September/019783.html
That list is listed as inactive on the samba site, so I'm following up here.
Does anyone know if this functionality was ever achieved? We just
replaced out NT4 PDC with samba and I'm facing
On Thu, 2005-06-30 at 21:28 +0200, Jérémy Cluzel wrote:
Hi,
Is it possible to authenticate a machine account with ntlm_auth ?
When a machine tries to authencate itself, the username looks like this:
host/hostname.domain.org
I don't know if ntlm_auth is able to understand this format...
It
Hi,
Is it possible to authenticate a machine account with ntlm_auth ?
When a machine tries to authencate itself, the username looks like this:
host/hostname.domain.org
I don't know if ntlm_auth is able to understand this format...
Regards
Jeremy
--
To unsubscribe from this list go to the
Hi,
after a few days I found the solution. The problem was in bad SID
numbers.
The Machine Account in the /etc/smbpasswd
vs3$:501:F74786067472.3E527018D189760:382721F51C7C.C9C1E9A81BB
145:[W ]:LCT-416E659B:
has to be transformed into LDAP directory with the same number:
Rauno Tuul schrieb:
Hi,
I want to achieve, that the IT staff could add machines (2000/XP) to samba-3
(LDAP backend) on the fly.
Creating a new machine account to LDAP requires special access to samba
(uid=0).
In samba-2.2.x was a great parameter called domain admin group. So
everyone, who
Hi,
I want to achieve, that the IT staff could add machines (2000/XP) to samba-3
(LDAP backend) on the fly.
Creating a new machine account to LDAP requires special access to samba
(uid=0).
In samba-2.2.x was a great parameter called domain admin group. So
everyone, who belonged to the specified
I have a Samba 2.2.7 PDC, and I am now trying to set up a new 3.0.1 server.
I want this machine to act as a BDC initially and replicate all the
accounts over. When I followed the howto it said to use smbpasswd -S to
transfer the machine SID and then to replicate the smbpasswd file to the
new
Change the add machine script to this:
add machine script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M
%u
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Santos Soler
MCP, Network+, A+
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
--
To unsubscribe from this list go to the following URL and read the
Roberto Mason wrote:
I've added the seal registry patch and modified the script to include add
machine script. I also added root to the smbpasswd and enabled the user,
and still I get unknown user or password. There's something still missing.
I seem to remember having this same problem and solving
Roberto Mason wrote:
I've added the seal registry patch and modified the script to include add
machine script. I also added root to the smbpasswd and enabled the
user,
and still I get unknown user or password. There's something still missing.
I seem to remember having this same problem and
at # password database type you are using.
passdb backend = tdbsam ldapsam_compat:ldap://localhost
Samba is doing exactly what it was told to do - use tdbsam!
If you don't want to use tdbsam, remove it :-)
Yeahi'm sometimes a bit stupid. :-)
But what made me wrong is that i use
Hello everybody,
I'm asking myself a rather simple issue (i hope it hasn't already be explained
somewhere).
I'm using ldapsam_compat on 3.0.1pre3(+Debian patches smbldap-tools 0.8.1) to store
both user accounts and machine accounts.
It works just fine, but there still is something that i find
On Thu, 2003-11-27 at 09:15, Fabien Chevalier wrote:
Hello everybody,
I'm asking myself a rather simple issue (i hope it hasn't already be explained
somewhere).
I'm using ldapsam_compat on 3.0.1pre3(+Debian patches smbldap-tools 0.8.1) to
store both user accounts and machine accounts.
It should all be in ldap - what is your smb.conf?
Good news!!
But in this case i may have missed something :-(
Attached is my smb.conf
Fabien.
#
# Sample configuration file for the Samba suite for Debian GNU/Linux.
#
#
# This is the main Samba configuration file. You should read the
#
On Wed, Nov 26, 2003 at 11:38:13PM +0100, Fabien Chevalier wrote:
It should all be in ldap - what is your smb.conf?
Good news!!
But in this case i may have missed something :-(
# If you are using encrypted passwords, Samba will need to know what
# password database type you are using.
you were so close. It's a combination of the two.
/usr/local/bin/smbldap-useradd.pl -a -w computerName
from smb.conf
add machine script = /usr/local/bin/smbldap-useradd.pl -a -w %m
-=Carl=-
J B Bell [EMAIL PROTECTED] wrote in message
news:[EMAIL PROTECTED]
--
To unsubscribe from this list
may want to check if this is uncommented in your smbldap-useradd.pl file
if (!$with_smbpasswd) {
# (jtournier)
# Objectclass sambaSAMAccount is now added directly by samba when joigning
the domain (for samba3)
if (!add_samba_machine_mkntpwd($userName, $userUidNumber)) {
die $0: error while
On Wed, 2003-10-15 at 17:11, Carl Weiss wrote:
may want to check if this is uncommented in your smbldap-useradd.pl file
if (!$with_smbpasswd) {
# (jtournier)
# Objectclass sambaSAMAccount is now added directly by samba when joigning
the domain (for samba3)
if
My apolgies in posting this again. However I was hoping someone
had a suggestion...
Symptom: After upgrading our Primary Domain Controller
from Samba 2.2.2 to Samba 2.2.8a, users attempting
to login from Windows 2000 clients are no longer
able to do so.
-Original Message-
From: Geoff Stitt [mailto:[EMAIL PROTECTED]
Sent: Wednesday, June 18, 2003 10:34 AM
To: [EMAIL PROTECTED]
Subject: [Samba] Win2K Machine Accounts No Longer Valid after
Samba PDC
Upgrade (2.2.2 to 2.2.8a)
My apolgies in posting this again. However I
Symptom: After upgrading our Primary Domain Controller
from Samba 2.2.2 to Samba 2.2.8a, users attempting
to login from Windows 2000 clients are no longer
able to do so.
Details: After some research it was discovered that if a Windows
2000 client
[ FreeBSD not allowing '$' in usernames, ]
hi adam.
i've got openbsd, and have the same scenario there with the
machine names.
i did what basically amounts to your suggestion #2.
# adduser
for the machine account i'm going to create. most lately it was
for an account for
# adduser
for the machine account i'm going to create. most lately it was
for an account for machine 'phoenix'.
then i did
# vipw
and added the '$' to the username.
I edited the source of 'pw' and took out the $ restriction so I am now
able to add machine accounts from the
Due to FreeBSD not allowing '$' in usernames, and because I have to add
a machine account for each computer I add to my Samba domain, what can I
do to try and accomplish the following?
1. Automate FreeBSD to allow me to add machines to a domain the same
way Windows lets you do it from the
After verifying my smb.conf file, the only thing that changed was this
panic action command was added. My smb.conf is attached.
All our workstations stopped working. If I change the computer name,
switch to workgroup, then try to re-join the domain under a different
computer name, it works. Do
Irving,
On Tue, Dec 03, 2002 at 05:26:42PM -0500, Irving Carrion wrote:
After verifying my smb.conf file, the only thing that changed was this
panic action command was added. My smb.conf is attached.
All our workstations stopped working. If I change the computer name,
switch to workgroup,
Well that's because I started out using the following:
passdb backend = tdbsam:/etc/samba/passdb.tdb unixsam
Through debugging and trial and error I ended up with the smb.conf I
sent you. The only reason I'm using smbpasswd format now is because I
can verify that all machine accounts are listed.
On Tue, Dec 03, 2002 at 05:41:05PM -0500, Irving Carrion wrote:
Well that's because I started out using the following:
passdb backend = tdbsam:/etc/samba/passdb.tdb unixsam
Well, shoot -- that was my best guess. :)
All our workstations stopped working. If I change the computer name,
switch
Hi, I'm having a problem with 2.2.3a. I have successfully set up an LDAP
directory to support a Samba 2.2.3a domain. The problem is that Samba is not
automatically adding machine accounts. Indeed, it's not even running my add
user script.
Thus I can't join client workstations to the domain
50 matches
Mail list logo