NetGear and Buffalo make lower cost workgroup NAS server. But this isn't
really a samba question. You want to decide SAN vs NAS. There is a big
range of stuff out there - you may want to talk to a reseller if your
company uses one. NetApp is a higher end vendor. EMC and Sun are the big
NetGear and Buffalo make lower cost workgroup NAS server. But this isn't
really a samba question. You want to decide SAN vs NAS. There is a big
range of stuff out there - you may want to talk to a reseller if your
company uses one. NetApp is a higher end vendor. EMC and Sun are the big
You may have two general options
- Have the new machine appear to be the old machine.Run testparm
-v to verify the location of the private directory, locks directory etc
and other files that you need to move over.
- Setup the new machine as a BDC in the domain, migrate your data over,
Have you tried manually creating the unix account (if necessary) and then
the samba account (with smbpasswd -a command.)
Or are you just creating the samba account with smbpasswd -a and hoping
that the add user script creates the unix account.
-Original Message-
From:
Is the new machine going to have the same IP address and machine name? I
would think that in that case you should be able to copy the configuration
files, profile directories, private and locks directories over to the new
machine. You could copy all the samba stuff over to the new machine,
On 06/14/2010 03:44 AM, Alberto Moreno wrote:
On Sat, Jun 12, 2010 at 1:58 PM, Gaiseric Vandal
gaiseric.van...@gmail.com wrote:
On each machine I would try running
net groupmap list
net user info someuser -U Administrator
That is to make sure that the group mappings
lanman and plaintext auth should only be needed if you are support
Windows 95/98 machines. NT 4 with SP6 should not require this. So
I would first disable lanman and plaintext on Domain A, and make sure it
has not broken authentication with your NT4 machine.
On 06/14/2010 11:39 AM,
I was thinking that will be more complicated.
Hey what distro are u using?
do already has this on production?
Thanks!!!
I am running Samba 3.4.8 on my PDC. Solaris 10 with Sun Directory
Server as the LDAP backend for both Samba and Unix accounts. I use
Apache Directory Studio to
On 06/14/2010 05:58 PM, Alberto Moreno wrote:
On Mon, Jun 14, 2010 at 2:40 PM, John Drescherdresche...@gmail.com wrote:
On Mon, Jun 14, 2010 at 5:36 PM, Alberto Morenoports...@gmail.com wrote:
Hi people.
I would like to know if this is possible.
Working with windows is easy
...@lists.samba.org]
On Behalf Of Alex Domoradov
Sent: Sunday, June 13, 2010 4:52 PM
To: samba@lists.samba.org
Subject: Re: [Samba] How shall I fix the multiple uidNumbers
From: Gaiseric Vandal gaiseric.van...@gmail.com
To: samba@lists.samba.org
Date: Sat, 12 Jun 2010 17:18:02 -0400
Subject: Re
If you run testparm -v on each, are the encryption parameters (NTLM etc)
the same?
From: Wikked one [mailto:wikk...@hotmail.com]
Sent: Sunday, June 13, 2010 7:56 AM
To: gaiseric.van...@gmail.com; samba@lists.samba.org
Subject: RE: [Samba] Domain Trusts with Samba 3.0.33 and 3.3.12
On each machine I would try running
net groupmap list
net user info someuser -U Administrator
That is to make sure that the group mappings for key groups (e.g. Domain
Users) is setup to verify that users are in the groups you think that they
are. You don't
Is the Mac as PDC, or a member server? What is the PDC?
Idmap is not as well documented as it could be.I am using idmap with
ldap backend for interdomain trusts, with both samba 3.0.x and samba 3.4.x
with mixed success. But the behavior you are describing is definitely not
OK.
In
What is the backend?
In domain A, you should have a user account for domain B (so that A can be
trusted by B.) And vice versa. The passwords created for those accounts
should be the passwords used when establishing trusts. So you should be
100% certain about those passwords.
Any chance
Do you even need root in ldap?
Root should be in /etc/passwd, I don't see why you need it in LDAP as well
unless root is also a samba account. Which I don't think you would need.
-Original Message-
From: samba-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org]
On Behalf
Are you using Ghost or Acronis to clone your Windows machines? If so, you
will have two machines with the same SID. Both Ghost and Acronis should
have the option to change the SID. Alternately, if you remove the machine
from the domain and then rejoin it to the domain, the PC should get a new
Just to clarify, you used net vampire to pull the info from PDC1 to PDC2?
Are you using LDAP or TDBSAM backend for samba accounts? Are you using NIS
or LDAP or /etc/passwd for unix accounts? I found that LDAP backend for
both samba and unix accounts was the best way to make sure all the
WINS handles machine name resolution and locating domain controllers.
WINS is a legacy of NT4 days when DNS was something for unix users
only.You could probably work around the multiple WINS server issues
by using lmhosts (I had some success with that) but it is probably
simpler to just
You could try using the wbinfo command
#wbinfo --set-uid-mapping=UID,SID
#wbinfo --set-gid-mapping=GID,SID
I have used it with an LDAP backend- I don't know about RID backends.
I think it is backend agnostic.
On 06/04/2010 05:23 PM, Linux Addict wrote:
Hello List, I am
I have seen that when I have domain trusts not functioning properly- it
seems to mean that the account or the password can't be validated.
You should look at the log files (maybe for entries about crap domains
or unable to map users.)
Can you verify that the account you are using is in
On 06/02/2010 09:34 AM, David Adam wrote:
On Tue, 1 Jun 2010, Ben Cohen wrote:
We use samba as a domain controller and file server for small separate
network environments. We've currently got samba configured to get
posixAccount and sambaAccount information from ldap -- and have nss_ldap
I have limited experience with Macs in conjunction with samba but so far
it seems to have been working fine for me.
What happens if you create a directory with 777 permissions in unix?
can you ls -l the directory from a mac terminal? My guess is that one
of the x bits got lost so you can't
I think the syntax may be the same as for Microsoft lmhosts
http://support.microsoft.com/kb/314108
On 05/26/2010 05:35 AM, Juan Asensio Sánchez wrote:
Hi
I am trying to stablish a relation between two different Samba domains. Each
domain has two PDCs, all they are WINS servers, and the two
Thanks
I will give that I try.
After looking at your configure command, I had another try at compiling
Samba 3.4.8 with GCC (Sunfreeware GCC3 or Blastwave GCC4.)
Setting --enable-shared or --enable-shared=yes had caused
problems. I think in this case I had not specified
This is a revision of an earlier post with some futher results.
Some time back I upgraded a domain controller (Solaris 10) from samba
3.0.x (bundled with Solaris ) to 3.4.5 (and then to 3.4.8) which I had
compiled from source code.I copied nsswitch and all the idmap modules.
In order to
If you set it for a user with pdbedit, does that work? you could
probably set it for all users with a shell script.
On 05/24/2010 08:31 PM, Steve Wolfe wrote:
I upgraded from 3.0.25 to 3.5.3, and all has been well, with one exception.
In my smb.conf, I have the line:
[global]
logon drive =
On 05/24/2010 04:46 PM, Steve Wolfe wrote:
I have a fairly old Samba server, 3.0.25, on CentOS 4.8. I'd like to update
it to something more modern, so I grabbed the Enterprise Samba 3.5 RPMs
for RHEL, and went to work on a test machine.
After upgrading via rpm -U ./*.rpm, starting nmbd and
I was hoping someone could post, or point me to, a clear set of instructions
for compiling Samba 3.5.3 (or even 3.4.8) on Solaris 10. Or even just
confirmation that Solaris 3.5.3 really can compile on Solaris 10 with active
directory, nsswitch and zfs support. (I notice that Samba and Blastwave
What OS?
Solaris has 16 group limit.
On 05/20/2010 02:43 PM, Mike A. Leonetti wrote:
Out of nowhere the share neil share disappeared for one user and the
user got the error The group name could not be found. The user was a
part of the group that was necessary to access the share. Just
On 05/18/2010 01:54 AM, Volker Lendecke wrote:
On Mon, May 17, 2010 at 10:44:35PM -0400, Gaiseric Vandal wrote:
As per Klaus Kreuzwieser's suggestions (5/12/2010) I tweeked my configure.sh
and Makefile files to support /usr/ccs/bin/ld.
However, when I compile samba 3.5.2 with sunfreeware
Thanks for the advice. I am continuing to work on trying to compile
Samba 3.4.8 or 3.5.2.
I am now using the GCC4 compiler from blastwave. The sunfreeware one
appears to be 32-bit only. Since I am running 64-bit OS I would like to
stick with 64-bit as much as possible.
I am making
-
From: Gaiseric Vandal [mailto:gaiseric.van...@gmail.com]
Sent: Monday, May 17, 2010 5:56 PM
To: Samba
Subject: Re: [Samba] Fwd: RE: Problems 'make'ing on Solaris 9/10
Thanks for the advice. I am continuing to work on trying to compile
Samba 3.4.8 or 3.5.2.
I am now using the GCC4 compiler
On 05/11/2010 10:52 AM, Björn Jacke wrote:
On 2010-05-07 at 07:14 -0400 Gaiseric Vandal sent off:
Which I really don't get since /usr/local/bin/ld is the the path.
I think Sunfreeware GCC was compiled to export /usr/ccs/bin/ld
... which is the root cause of most of the gcc build
: [Samba] Fwd: RE: Problems 'make'ing on Solaris 9/10
On 7 May 2010 21:57, Gaiseric Vandal gaiseric.van...@gmail.com wrote:
On Solaris 10 (x86), trying to compile samba 3.5.2
[...]
# mv /usr/ccs/bin/ld /usr/ccs/bin/ld.1
# ln -s /usr/local/bin/ld /usr/ccs/bin/ld
# ./configure --prefix=/usr/local
Hello Christoph
I guess samba lists will not let you include attachments. I had problems
compiling samba 3.4.7 on solaris 10- eventually I got it working. I was
trying to recompile samba 3.5.2 yesterday but this time was getting stuck
with the /usr/ccs/bin/ld and libtalloc thing (which seems
I have been trying this out on fedora core 12.
I didn't get wbinfo errors. But getent passwd does not return users
from trusted domains and I am now also getting the RPC errors you describe.
Since I have been having some issues with winbind (not RPC ones) on samba
3.4 on solaris as well I
Subject:RE: [Samba] Problems 'make'ing on Solaris 9.
Date: Fri, 7 May 2010 07:14:47 -0400
From: Gaiseric Vandal gaiseric.van...@gmail.com
To: samba@lists.samba.org
Hello Christoph
I guess samba lists will not let you include attachments. I had problems
compiling samba 3.4.7
Was the Win 2003 domain in mixed mode or 2000/2003 native?
Also, Win 2008 has some security settings changes that you may want to
change back to weaker settings.
http://support.microsoft.com/kb/889030/en-us
Does wbinfo -u on the linux machine list users in the trusted
(corporate) domain?
From: Gaiseric Vandal gaiseric.van...@gmail.com
Reply-To: gaiseric.van...@gmail.com
To: Samba samba@lists.samba.org
Some time back I upgraded a domain controller (Solaris 10) from samba
3.0.x to 3.4.5
In order to support interdomain trusts I am using winbind and idmap
allocation
From: Gaiseric Vandal gaiseric.van...@gmail.com
Reply-To: gaiseric.van...@gmail.com
To: Samba samba@lists.samba.org
Some time back I upgraded a domain controller (Solaris 10) from samba
3.0.x to 3.4.5
In order to support interdomain trusts I am using winbind and idmap
allocation
seem to
matter for the solaris PDC.
Any thoughts?
Thanks
On 05/02/2010 01:43 PM, Gaiseric Vandal wrote:
On my test Samba PDC, I updated the krb5.conf file to add realm info for
the Windows 2008. This seems to have resolved my wbinfo issue. getent
passwd is still not working (I did update
Some time back I upgraded a domain controller (Solaris 10) from samba
3.0.x to 3.4.5
In order to support interdomain trusts I am using winbind and idmap
allocation with a samba backend. Since the upgrade it appears that
samba is no allocating uid and gid's for trusted domain.
my smb.conf
to
locate an _ldap DNS record for the domain.
Ideally I will eventually merge my production Active Directory domains into
a single forest- once I verify that Samba really can support trusts with
Windows 2003 native mode domains.
-Original Message-
From: Gaiseric Vandal
Pdbedit should have some import /export commands.I don't remember if you
want to change the smb.conf entry for backend before or after you do the
import. I actually had the tdb backend for samba but already had the unix
users in ldap. I was trying to update the accounts with the samba
interest in anything besides being a server
platform for oracle and has provided a production build of Samba 3.4.
-Original Message-
From: Gaiseric Vandal [mailto:gaiseric.van...@gmail.com]
Sent: Friday, April 30, 2010 5:16 PM
To: Samba
Subject: Why do Interdomain trusts try to use
I have setup a test PDC with samba 3.4.7 on a fedora core 12 linux
machine. I have setup two way interdomain trusts with a Windows 2008
domain. The domain and forest functional levels are Windows 2003.
Since the samba machine is not emulating an Active Domain Controller,
the Windows 2008
The Samba How-To Documentation is very out of date- at least for the
section on Interdomain trusts (Apr 2003, doesn't mention anything beyond
Windows 2000.)
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/InterdomainTrusts
.html
The change notes also stop at that samba 3.0.x series
How do the clients get IP addresses? You could try adding the WINS
server value to the client ip address (either statically or via DHCP.)
Then they should be able to get the necessary netbios name info even tho
they are on a separate subnet.
Why do you have the DC distant from the clients
I had a problem with group mapping with samba 3.0.x to 3.4.x with an
ldap backend. Samba looked through the entire section samba part of
the ldap structure for group mapping, not just the defined group
section. The group mapping for Domain Administrators got messed
up.I also had
:
The W2K3 server is the VPN client or is a host behind a vpn client
that have a route to the remote network? Is the server IS the vpn
client, does the connection is being made by a service (prior to the
user login) or you just connect to the VPN after login?
Gaiseric Vandal wrote:
How
They should be the same SID. The SID of a DC should the same as the
SID of the domain itself. And if you had multiple DC's they should all
have the same SID.
At least that is what I have and it seems to work for me.
On 04/07/2010 10:14 AM, GG wrote:
Hello Vladimir and anyone else
If my notes are correct, I joined my PDC to its own domain with the
following steps
# smbpasswd -a -m PDC
# net rpc join -S PDC -W MYDOMAIN -U Administrator
On 04/02/2010 11:52 PM, Phill Edwards wrote:
Anyone have any advice/tips to offer on this? I'm totally stuck and
dont't what else
Unix and Windows/Samba servers both store passwords in a one-way
encrypted format. So when you authenticate to a server, you type in
your password, the server encrypts it and compares it to the encrypted
version it has it is password database.This is is important
since your encrypted
I believe we are still in Extended Daylight Savings time (if you are
in the USA.) MS never released a patch to fix this for Windows 2000.
On 03/26/2010 07:10 PM, Felix Miata wrote:
On 2010/03/26 15:53 (GMT-0700) Loren M. Lang composed:
I'm seeing timestamps off one hour in Windows
According to how you have described your environment, whether or not you
use LDAP for Samba's backend, your users will still need corresponding
unix accounts AND will still have separate unix and windows
passwords.If you use ldap there will be separate fields for the
different passwords.
On 03/24/2010 03:07 PM, PTaco wrote:
Is there a way to synch multiple servers at once so when one is changed,
samba updates all the other servers at the same time automatically?
Do you mean sync account information (e.g. if you want multiple domain
controllers) or changes in the files
On 03/26/2010 07:53 AM, Kilaru Sambaiah wrote:
Hi,
I have setup Samba 3.0 as PDC and all the desktops are able to login
and no issues. One laptop user is not
able to logon out side the office (PDC is not available). Win 2003,
he doesn't have such problem. How to enable cache so that
On 03/19/2010 05:26 PM, Ben LeMasurier wrote:
Hey everyone,
I've got a Samba server running with an LDAP backend, and for the most
part it works great. The only issue I'm having is that when I attempt
to use USERMGR.exe on the windows side I get this (typical Microsoft)
error:
A device
On 03/16/2010 07:53 PM, Edson Tadeu Almeida da Silveira wrote:
i have been trying to join my windows 7 machines in a samba domain, but it
aways fails.
I can join a windows 7 machine in a Samba domain. Then i have an error:
_netr_ServerAuthenticate3: netlogon_creds_server_check failed.
I am pretty sure you want Samba 3.3.x or higher.
On 03/17/2010 09:51 AM, Edson Tadeu Almeida da Silveira wrote:
I'm using Samba Version 3.2.3
2010/3/17 Gaiseric Vandal gaiseric.van...@gmail.com
mailto:gaiseric.van...@gmail.com
On 03/16/2010 07:53 PM, Edson Tadeu Almeida da Silveira
Which Windows client version? Solaris 10 has samba 3.0.x as the default
version which won't work with Windows 7 (I think it works with Vista
with registry tweeks.)
Is the nmbd daemon also running?
What does net use should from the command line of the windows
machine? You could also try
On 03/17/2010 04:04 AM, Jochen Eggemann wrote:
Am 16.03.2010 17:51, schrieb Gaiseric Vandal:
On 03/16/2010 10:09 AM, Jochen Eggemann wrote:
HI,
we had a server crash and luckily no backup. So our samba domain is
gone, so I had to set up a new server with a new domain. Except for one
On 03/16/2010 10:09 AM, Jochen Eggemann wrote:
HI,
we had a server crash and luckily no backup. So our samba domain is
gone, so I had to set up a new server with a new domain. Except for one
NT 4.0 Server all XP clients where able to join this new domain.
When trying to put NT4 into the domain
On 03/16/2010 09:38 AM, Vincent Zakofski wrote:
Hello,
I'm using samba with ldap backend and I would like to know if there's a way
to add a second password to a user account.
I need this to work in the user environment without asking him his password.
If it's not possible, is there a way to
On 03/16/2010 03:19 AM, csirt wrote:
David,
thank you! Silly enough i wrote the page, only recognising the registry
hacks not the required Samba version.
Are there any pitfalls while upgrading from 3.0.x to 3.3 or above? Which is
the recommende Version i should upgrade to?
regards
2010/3/16
On 03/14/2010 04:07 PM, Miguel Medalha wrote:
I have been using Samba+Linux+openLDAP. The password synchronization
between the Samba and Unix accounts works well with the use of the
ldap passwd sync parameter in smb.conf.
Now I am in the process of installing my first server using CentOS/Red
On 03/15/2010 12:33 PM, simo wrote:
On Mon, 2010-03-15 at 12:27 -0400, Gaiseric Vandal wrote:
I am using Sun Directory Server. I believe that both the Sun
Directory
server and the RedHat/Fedora directory server are forks of the
earlier
Iplanet/Netscape directory server.The samba
I think you have to set
encrypt passwords = false
lanman auth = true
which is not enabled by default since it is considered a big security hole.
On 03/15/2010 03:08 PM, Michael Lueck wrote:
Greetings-
Since the last time I tried to connect a Win98 client PC to our Samba
PDC I upgraded
On 03/11/2010 09:18 PM, Steve Holdoway wrote:
Are there any best practices for this? AIUI all you need to do is set
the logon path to to disable them, but what happens to the clients?
Is there a way to copy the roaming profile to the local machine???
Or am I just worrying about nothing?
On 03/11/2010 10:38 AM, Volker Lendecke wrote:
On Wed, Mar 10, 2010 at 02:10:14PM -0800, Purnell, Alton J wrote:
I'm not sure if anyone will get this note.
If you are willing to help me, page me @ 800.247.0493 .
I have Samba 2.28 installed and working on 2 Windows Server 2003.
I am having
On 03/11/2010 11:31 AM, Volker Lendecke wrote:
On Thu, Mar 11, 2010 at 11:05:15AM -0500, Gaiseric Vandal wrote:
On 03/11/2010 10:38 AM, Volker Lendecke wrote:
On Wed, Mar 10, 2010 at 02:10:14PM -0800, Purnell, Alton J wrote:
I'm not sure if anyone will get this note.
If you
On the OLD server you ideally would have typed
net getdomainsid
net getlocalsid
(I think you could have also used pdbedit or smbpasswd or smbpasswd -w
to get this info.)
The resulting SID should be the same same. On the new machine you would
then type
net setdomainsid SID
net
Just to clarify, you are using local profiles? There is not profile
share on the server and the profile types on the PC's show up as local
not roaming
Does the new samba PDC have the same SID as the old one? Did you have
rejoin the machines to the domain? My guess is the PC's think it is a
smb.conf will list where samba searches in ldap.
e.g.
ldap suffix=o=abc.com
ldap user suffix=ou=employees,ou=people
ldap group suffix = ou=groups
ldap machine suffix=ou=machines,ou=people
I think the main challenge will be configuring access control lists.
If you have a server you only
On 03/08/2010 10:37 AM, John Drescher wrote:
On Mon, Mar 8, 2010 at 9:57 AM, Mike Egglestonmikee...@mac.com wrote:
Morning,
I have a user that keeps getting a temporary profile. The user is
logging into the machine so the authentication through samba to ldap
is working. The only item that
On 03/08/2010 11:05 AM, Mike Eggleston wrote:
On Mon, 08 Mar 2010, John Drescher might have said:
On Mon, Mar 8, 2010 at 9:57 AM, Mike Egglestonmikee...@mac.com wrote:
Morning,
I have a user that keeps getting a temporary profile. The user is
logging into the machine so the
What do the permissions look like in Windows? I am using Samba 3.0.x on
Solaris 10 ZFS file systems, so this may not be relevant in your case.
I found that sometimes Samba/Windows interprets permissions differently
than unix. E.g. a 660 permission in unix sometimes results in a Windows
First of all, I am not familiar with using Samba with AD so none of this
my apply
- Should security = domain ?
- technically, I think the Windows clients in the domain are
authenticating against the AD DC not the samba server.If the client
machine is not in the domain you would have
We had a few users with the same problem when we moved the password
backend from tdb to ldap.The following command seem to fix it.
pdbedit -P maximum password age -C -1
On 02/24/2010 04:25 PM, Marcelo Terres wrote:
Samba 3.0.24 doesn't have the problem, maybe because it doesn't
Windows 7 requires Samba 3.3.x or 3.4.x. I know between 3.4.x and 3.0.x
there are changes in how ldap and the samba group mapping. If you don't
have group mapping working for some of the key domain groups things are
not going to work. I have to think there is a whole list of other
Did you create a unix account for YOURMACHINE$ ?
On 02/08/10 16:31, Jim Christiansen wrote:
I have followed:
http://rudd-o.com/en/linux-and-free-software/making-windows-xp-join-a-samba-domain-in-5-minutes
and
http://samba.org/samba/docs/man/Samba-HOWTO-Collection/ClientConfig.html#WXPP009
Does it work if you specify a *.bat or *.cmd file?I haven't seen
*.vbs files used as a logon script before.
Once you logon to the PC, are you able to view the netlogon share and
logon scripts?
Are you trying to have a different logon script for each user?
Variables in the script
On 02/05/10 09:36, Thijs Hakkenberg wrote:
On 4-2-2010 19:19, Gaiseric Vandal wrote:
On 02/04/10 12:07, Thijs Hakkenberg wrote:
List,
I've installed an samba server as PDC next to another samba server.
The DHCP/DNS is handled by a router (vigor 2110).
For the first domain (DOMAIN1) I can
On 02/04/10 04:07, Liam Gretton wrote:
Hi,
I'm implementing a Samba service on Solaris (the native CIFS service
being unreliable in our environment); all is working well but I have a
couple of questions regarding winbind which I can't find answers to in
the documentation. I'm using 3.0.37 at
guessing at this point.
On 02/04/10 11:47, Liam Gretton wrote:
On 04/02/2010 15:00, Gaiseric Vandal wrote:
On 02/04/10 04:07, Liam Gretton wrote:
What I've done to get round this is to use the ldap backend for
winbind, and create the mappings myself. This seems to work perfectly
well but I
On 02/04/10 11:34, Arzilla Flavio wrote:
Hi,
I have a problem with samba configuration. I have a server with Fedora
11, and few servers Windows 2003, Linux and Apple.
Samba works very well with Linux and Windows but not with Apple Leopard.
In my station I have another linux servers and that
On 02/02/10 18:07, Brett Charbeneau wrote:
Greetings all
I'm running Samba 3.0 on an Ubuntu box as a PDC and I'm having trouble
changing passwords with XP clients - here's my smb.conf
http://pastebin.com/m1bb6d4a6
I've played with a variety of passwd chat settings but no joy. I am
trying
What samba version? After you login from Win 7 can you actually open
and save files? It does seem like it is trying to reauthenticate as an
active directory client.
Maybe config samba to only listen on port 139 and not 445 (smb ports
in smb.conf.)That might force the Win 7 client to
) and a unix account (verify with getent passwd.)
On 02/03/10 12:42, graham wrote:
Gaiseric Vandal wrote on 03/02/2010 17:27:
What samba version?
version 3.4.5
After you login from Win 7 can you actually open
and save files?
yes. I'm not familiar enough with smb etc. to understand why
You should be able to have separate OU's in LDAP for each domain. From
the point-of-view of samba, each samba PDC would only know about its own
section of the LDAP tree- and in effect would be the same as separate
LDAP servers.
You would want to make sure that the underlying unix
On 01/29/10 05:59, Thibault Vançon wrote:
Hello,
I need some help to set up a multi-site authentication architecture with
samba.
Our company is composed by 6 sites which are VPN-Linked.
On each, there is Samba 3.0.27 PDC with LDAP backend on Debian Etch (I will
probably upgrade it to lenny
Try using net ... -U Administrator instead, since root is not by
default a member of the domain admin group. This presumes you have
created the Administrator account in samba, created the domain admins
group and setup the approp group mapping for key groups (domain admins,
domain users
]: send_ldap_response: msgid=1147
tag=101 err=0
---
Med Venlig Hilsen / Best regards
Henrik Dige Semark
On 27-01-2010 21:06, Gaiseric Vandal wrote:
Try using net ... -U Administrator instead, since root is not
by default a member of the domain admin group. This presumes you have
created
On 01/25/10 16:23, Henrik Dige Semark wrote:
I have a serous problem.
I have for some time now tried to get an SAMBA based Domain Controller
working.
I have tried with OpenLDAP and tdbsam as backend, but I get the same
error every time.
I wood prefer to use LDAP as my backend.
I have read
Maybe try using Administrator as the name - I think you want to use an
account on the domain that has rights to add machines to the domain,
rather than the local root account.
YOu may also be able to precreate the machine account on NT4.And are
you running the latest NT4 patch (6a.)
machine has an idmap range, but so
does the PDC. Are you suggesting that in a simple setup (two nearly
identical servers) where users and groups are manually coordinated
that isn't necessary?
Gaiseric Vandal wrote:
On the PDC, both the unix and samba account info is on that
machine. The samba
On 01/12/10 21:14, Rob Feldman wrote:
Hi Don,
Yeah, the behavior you describe is what I expected but not what I'm getting.
All domain UID/Password pairs authenticate fine when connected, none do when
disconnected. The login credentials are not being cached, but I can't figure
out why. I checked
On 01/12/10 10:33, Andreas Moroder wrote:
Since we upgraded samba to 3.4.3 ( from 3.0.26a ) on our fileserver
only one user at a time can use a ms access ( .mdb ) program we wrote.
The second user that tries to start this application gets a message
that the mdb is lockeb by another user. The
On the PDC, both the unix and samba account info is on that machine.
The samba user info includes which is the local unix user. On the
member server, the samba account info is pulled from the PDC. Which
means that even both unix machines have identical unix accounts (e.g.
the same
On 01/12/10 10:58, Wasim Bashir wrote:
Hi,
Is there a way of changing the default idmap caching ? I believe it is
current set to 1 week. I am using samba 3.3.9.
Also any ideas why when this cache expires it does not renew which means I
have to do a net cache flush to clear the cache ?
Thanks
501 - 600 of 695 matches
Mail list logo
