Re: [Samba] Samba Groups Vanished
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Felipe Augusto van de Wiel wrote: On 08/31/2006 07:05 AM, Diarmuid Bourke escreveu: On 08/28/2006 09:49 AM, Diarmuid Bourke escreveu: [...] Our Samba Groups appear to have vanished. I've verified this by trying, net group /domain in windows and it returns no results. Trying net rpc group -S nuada on our master server returns nothing either. net rpc info on both our master and backup return Domain Name: DIAS Domain SID: S-1-5-21-463069746-3761697030-3888642000 Sequence number: 1156762378 Num users: 63 Num domain groups: 0 Num local groups: 0 Try improve the debuglevel (-d) when using net, it could reveal some nice information to help you out (and also help the rest of us to help you). :-) Heres the output of net rpc group list -d3 -S nuada using debug -- [2006/08/31 10:26:57, 3] param/loadparm.c:lp_load(4207) lp_load: refreshing parameters [2006/08/31 10:26:57, 3] param/loadparm.c:init_globals(1393) Initialising global parameters [2006/08/31 10:26:57, 3] param/params.c:pm_process(574) params.c:pm_process() - Processing configuration file /etc/samba/smb.conf [2006/08/31 10:26:57, 3] param/loadparm.c:do_section(3662) Processing section [global] [2006/08/31 10:26:57, 2] lib/interface.c:add_interface(81) added interface ip=160.6.1.26 bcast=160.6.1.255 nmask=255.255.255.0 [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_lmhosts(855) resolve_lmhosts: Attempting lmhosts lookup for name nuada0x20 [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_wins(752) resolve_wins: Attempting wins lookup for name nuada0x20 [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_wins(755) resolve_wins: WINS server resolution selected and no WINS servers listed. [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_hosts(917) resolve_hosts: Attempting host lookup for name nuada0x20 Password: [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_start_connection(1389) Connecting to host=nuada [2006/08/31 10:27:02, 3] lib/util_sock.c:open_socket_out(870) Connecting to 160.6.1.102 at port 445 [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_session_setup_spnego(710) Doing spnego session setup (blob length=58) [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_session_setup_spnego(735) got OID=1 3 6 1 4 1 311 2 2 10 [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_session_setup_spnego(744) got principal=NONE [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:ntlmssp_client_challenge(929) Got challenge flags: [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(63) Got NTLMSSP neg_flags=0x60890215 [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:ntlmssp_client_challenge(951) NTLMSSP: Set final flags: [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(63) Got NTLMSSP neg_flags=0x60080215 [2006/08/31 10:27:02, 3] libsmb/ntlmssp_sign.c:ntlmssp_sign_init(338) NTLMSSP Sign/Seal - Initialising with flags: [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(63) Got NTLMSSP neg_flags=0x60080215 [2006/08/31 10:27:03, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine nuada pipe \lsarpc fnum 0x7624 bind request returned ok. [2006/08/31 10:27:03, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine nuada pipe \samr fnum 0x7625 bind request returned ok. [2006/08/31 10:27:03, 2] utils/net.c:main(878) return code = 0 --- and for net rpc info -d3 -S nuada - [2006/08/31 10:28:27, 3] param/loadparm.c:lp_load(4207) lp_load: refreshing parameters [2006/08/31 10:28:27, 3] param/loadparm.c:init_globals(1393) Initialising global parameters [2006/08/31 10:28:27, 3] param/params.c:pm_process(574) params.c:pm_process() - Processing configuration file /etc/samba/smb.conf [2006/08/31 10:28:27, 3] param/loadparm.c:do_section(3662) Processing section [global] [2006/08/31 10:28:27, 2] lib/interface.c:add_interface(81) added interface ip=160.6.1.26 bcast=160.6.1.255 nmask=255.255.255.0 [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_lmhosts(855) resolve_lmhosts: Attempting lmhosts lookup for name nuada0x20 [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_wins(752) resolve_wins: Attempting wins lookup for name nuada0x20 [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_wins(755) resolve_wins: WINS server resolution selected and no WINS servers listed. [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_hosts(917) resolve_hosts: Attempting host lookup for name nuada0x20 [2006/08/31 10:28:27, 3] libsmb/cliconnect.c:cli_start_connection(1389) Connecting to host=nuada [2006/08/31 10:28:27, 3] lib/util_sock.c:open_socket_out(870) Connecting to 160.6.1.102 at port 445 [2006/08/31 10:28:28, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine nuada pipe \lsarpc fnum 0x76f4 bind request returned ok.
Re: [Samba] Samba Groups Vanished
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Diarmuid Bourke wrote: Please find the attachment log from when we did a group list with debug mode. Note (sambaSID=S-1-5-32*) is of interest. If we remove that and do You read the changes in the 3.0.23 release notes right? LDAP Changes There has also been a minor update the Samba LDAP schema file. A substring matching rule has been added to the sambaSID attribute definition. For OpenLDAP servers, this will require the addition of 'index sambaSID sub' to the slapd.conf configuration file. It will be necessary to run slapindex after making this change. There has been no change to actual data storage schema. cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.4 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFAA9KIR7qMdg1EfYRAvOIAKDFFTzQnqg2qsz4lgDxsPXwsdHDaQCfd8Cg wvIT9FIcLRLI/8bKuQbiNU4= =4nqV -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba Groups Vanished
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 08/28/2006 09:49 AM, Diarmuid Bourke escreveu: Hi, Our Samba Groups appear to have vanished. I've verified this by trying, net group /domain in windows and it returns no results. Trying net rpc group -S nuada on our master server returns nothing either. net rpc info on both our master and backup return Domain Name: DIAS Domain SID: S-1-5-21-463069746-3761697030-3888642000 Sequence number: 1156762378 Num users: 63 Num domain groups: 0 Num local groups: 0 Try improve the debuglevel (-d) when using net, it could reveal some nice information to help you out (and also help the rest of us to help you). :-) Heres the output of net rpc group list -d3 -S nuada using debug - -- [2006/08/31 10:26:57, 3] param/loadparm.c:lp_load(4207) lp_load: refreshing parameters [2006/08/31 10:26:57, 3] param/loadparm.c:init_globals(1393) Initialising global parameters [2006/08/31 10:26:57, 3] param/params.c:pm_process(574) params.c:pm_process() - Processing configuration file /etc/samba/smb.conf [2006/08/31 10:26:57, 3] param/loadparm.c:do_section(3662) Processing section [global] [2006/08/31 10:26:57, 2] lib/interface.c:add_interface(81) added interface ip=160.6.1.26 bcast=160.6.1.255 nmask=255.255.255.0 [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_lmhosts(855) resolve_lmhosts: Attempting lmhosts lookup for name nuada0x20 [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_wins(752) resolve_wins: Attempting wins lookup for name nuada0x20 [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_wins(755) resolve_wins: WINS server resolution selected and no WINS servers listed. [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_hosts(917) resolve_hosts: Attempting host lookup for name nuada0x20 Password: [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_start_connection(1389) Connecting to host=nuada [2006/08/31 10:27:02, 3] lib/util_sock.c:open_socket_out(870) Connecting to 160.6.1.102 at port 445 [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_session_setup_spnego(710) Doing spnego session setup (blob length=58) [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_session_setup_spnego(735) got OID=1 3 6 1 4 1 311 2 2 10 [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_session_setup_spnego(744) got principal=NONE [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:ntlmssp_client_challenge(929) Got challenge flags: [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(63) Got NTLMSSP neg_flags=0x60890215 [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:ntlmssp_client_challenge(951) NTLMSSP: Set final flags: [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(63) Got NTLMSSP neg_flags=0x60080215 [2006/08/31 10:27:02, 3] libsmb/ntlmssp_sign.c:ntlmssp_sign_init(338) NTLMSSP Sign/Seal - Initialising with flags: [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(63) Got NTLMSSP neg_flags=0x60080215 [2006/08/31 10:27:03, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine nuada pipe \lsarpc fnum 0x7624 bind request returned ok. [2006/08/31 10:27:03, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine nuada pipe \samr fnum 0x7625 bind request returned ok. [2006/08/31 10:27:03, 2] utils/net.c:main(878) return code = 0 - --- and for net rpc info -d3 -S nuada - - [2006/08/31 10:28:27, 3] param/loadparm.c:lp_load(4207) lp_load: refreshing parameters [2006/08/31 10:28:27, 3] param/loadparm.c:init_globals(1393) Initialising global parameters [2006/08/31 10:28:27, 3] param/params.c:pm_process(574) params.c:pm_process() - Processing configuration file /etc/samba/smb.conf [2006/08/31 10:28:27, 3] param/loadparm.c:do_section(3662) Processing section [global] [2006/08/31 10:28:27, 2] lib/interface.c:add_interface(81) added interface ip=160.6.1.26 bcast=160.6.1.255 nmask=255.255.255.0 [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_lmhosts(855) resolve_lmhosts: Attempting lmhosts lookup for name nuada0x20 [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_wins(752) resolve_wins: Attempting wins lookup for name nuada0x20 [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_wins(755) resolve_wins: WINS server resolution selected and no WINS servers listed. [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_hosts(917) resolve_hosts: Attempting host lookup for name nuada0x20 [2006/08/31 10:28:27, 3] libsmb/cliconnect.c:cli_start_connection(1389) Connecting to host=nuada [2006/08/31 10:28:27, 3] lib/util_sock.c:open_socket_out(870) Connecting to 160.6.1.102 at port 445 [2006/08/31 10:28:28, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine nuada pipe \lsarpc fnum 0x76f4 bind request returned ok. [2006/08/31 10:28:28, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine nuada pipe \samr fnum 0x76f5 bind request
Re: [Samba] Samba Groups Vanished
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 08/31/2006 07:05 AM, Diarmuid Bourke escreveu: On 08/28/2006 09:49 AM, Diarmuid Bourke escreveu: [...] Our Samba Groups appear to have vanished. I've verified this by trying, net group /domain in windows and it returns no results. Trying net rpc group -S nuada on our master server returns nothing either. net rpc info on both our master and backup return Domain Name: DIAS Domain SID: S-1-5-21-463069746-3761697030-3888642000 Sequence number: 1156762378 Num users: 63 Num domain groups: 0 Num local groups: 0 Try improve the debuglevel (-d) when using net, it could reveal some nice information to help you out (and also help the rest of us to help you). :-) Heres the output of net rpc group list -d3 -S nuada using debug -- [2006/08/31 10:26:57, 3] param/loadparm.c:lp_load(4207) lp_load: refreshing parameters [2006/08/31 10:26:57, 3] param/loadparm.c:init_globals(1393) Initialising global parameters [2006/08/31 10:26:57, 3] param/params.c:pm_process(574) params.c:pm_process() - Processing configuration file /etc/samba/smb.conf [2006/08/31 10:26:57, 3] param/loadparm.c:do_section(3662) Processing section [global] [2006/08/31 10:26:57, 2] lib/interface.c:add_interface(81) added interface ip=160.6.1.26 bcast=160.6.1.255 nmask=255.255.255.0 [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_lmhosts(855) resolve_lmhosts: Attempting lmhosts lookup for name nuada0x20 [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_wins(752) resolve_wins: Attempting wins lookup for name nuada0x20 [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_wins(755) resolve_wins: WINS server resolution selected and no WINS servers listed. [2006/08/31 10:26:57, 3] libsmb/namequery.c:resolve_hosts(917) resolve_hosts: Attempting host lookup for name nuada0x20 Password: [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_start_connection(1389) Connecting to host=nuada [2006/08/31 10:27:02, 3] lib/util_sock.c:open_socket_out(870) Connecting to 160.6.1.102 at port 445 [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_session_setup_spnego(710) Doing spnego session setup (blob length=58) [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_session_setup_spnego(735) got OID=1 3 6 1 4 1 311 2 2 10 [2006/08/31 10:27:02, 3] libsmb/cliconnect.c:cli_session_setup_spnego(744) got principal=NONE [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:ntlmssp_client_challenge(929) Got challenge flags: [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(63) Got NTLMSSP neg_flags=0x60890215 [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:ntlmssp_client_challenge(951) NTLMSSP: Set final flags: [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(63) Got NTLMSSP neg_flags=0x60080215 [2006/08/31 10:27:02, 3] libsmb/ntlmssp_sign.c:ntlmssp_sign_init(338) NTLMSSP Sign/Seal - Initialising with flags: [2006/08/31 10:27:02, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(63) Got NTLMSSP neg_flags=0x60080215 [2006/08/31 10:27:03, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine nuada pipe \lsarpc fnum 0x7624 bind request returned ok. [2006/08/31 10:27:03, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine nuada pipe \samr fnum 0x7625 bind request returned ok. [2006/08/31 10:27:03, 2] utils/net.c:main(878) return code = 0 --- and for net rpc info -d3 -S nuada - [2006/08/31 10:28:27, 3] param/loadparm.c:lp_load(4207) lp_load: refreshing parameters [2006/08/31 10:28:27, 3] param/loadparm.c:init_globals(1393) Initialising global parameters [2006/08/31 10:28:27, 3] param/params.c:pm_process(574) params.c:pm_process() - Processing configuration file /etc/samba/smb.conf [2006/08/31 10:28:27, 3] param/loadparm.c:do_section(3662) Processing section [global] [2006/08/31 10:28:27, 2] lib/interface.c:add_interface(81) added interface ip=160.6.1.26 bcast=160.6.1.255 nmask=255.255.255.0 [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_lmhosts(855) resolve_lmhosts: Attempting lmhosts lookup for name nuada0x20 [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_wins(752) resolve_wins: Attempting wins lookup for name nuada0x20 [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_wins(755) resolve_wins: WINS server resolution selected and no WINS servers listed. [2006/08/31 10:28:27, 3] libsmb/namequery.c:resolve_hosts(917) resolve_hosts: Attempting host lookup for name nuada0x20 [2006/08/31 10:28:27, 3] libsmb/cliconnect.c:cli_start_connection(1389) Connecting to host=nuada [2006/08/31 10:28:27, 3] lib/util_sock.c:open_socket_out(870) Connecting to 160.6.1.102 at port 445 [2006/08/31 10:28:28, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081) rpc_pipe_bind: Remote machine nuada pipe \lsarpc fnum 0x76f4 bind request returned ok. [2006/08/31 10:28:28, 3]
[Samba] Samba Groups Vanished
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, Our Samba Groups appear to have vanished. I've verified this by trying, net group /domain in windows and it returns no results. Trying net rpc group -S nuada on our master server returns nothing either. net rpc info on both our master and backup return Domain Name: DIAS Domain SID: S-1-5-21-463069746-3761697030-3888642000 Sequence number: 1156762378 Num users: 63 Num domain groups: 0 Num local groups: 0 Groups used work until recently and they exist in our ldap database. We have a primary domain controller with the master ldap database on it and a backup domain controller with a slave ldap database on it. Our version of samba is Version 3.0.23 and openldap is 2.3.24 and below are the relevant sections of smb.conf from our PDC [global] workgroup = DIAS netbios name = NUADA preferred master = Yes domain master = Yes local master = Yes passdb backend = ldapsam:ldap://127.0.0.1 # User pass configuration security = user encrypt passwords = true # LDAP Configuration domain logons = Yes wins support = Yes ldap suffix = dc=cp,dc=dias,dc=ie ldap machine suffix = ou=people ldap user suffix = ou=people ldap group suffix = ou=group ldap idmap suffix = ou=Idmap ldap admin dn = cn=samba,ou=specialusers,dc=cp,dc=dias,dc=ie idmap backend = ldap:ldap://127.0.0.1 idmap uid = 1-2 idmap gid = 1-2 map acl inherit = Yes - Trying an ldapsearch to show groups exist in ldap returns.. ldapsearch -x -b cn=geotech,ou=group,dc=cp,dc=dias,dc=ie dn: cn=geotech,ou=group,dc=cp,dc=dias,dc=ie objectClass: posixGroup objectClass: sambaGroupMapping cn: geotech gidNumber: 1932 sambaSID: S-1-5-21-463069746-3761697030-3888642000-4865 sambaGroupType: 2 displayName: geotech memberUid: lcollins memberUid: choran memberUid: seismo - - I've cut out configuration statements for briefness but if you need them I can post them. Thanks in advance. Diarmuid -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2.2 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFE8uZb3VcUOgGPPMMRAokOAJ9DKKAH2+VLKG5kYuuH8KAqKuegdQCeLnPd vozAd5x7JDuw/tcD9hF1ec8= =Uvi/ -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba Groups Vanished
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 08/28/2006 09:49 AM, Diarmuid Bourke escreveu: Hi, Our Samba Groups appear to have vanished. I've verified this by trying, net group /domain in windows and it returns no results. Trying net rpc group -S nuada on our master server returns nothing either. net rpc info on both our master and backup return Domain Name: DIAS Domain SID: S-1-5-21-463069746-3761697030-3888642000 Sequence number: 1156762378 Num users: 63 Num domain groups: 0 Num local groups: 0 Try improve the debuglevel (-d) when using net, it could reveal some nice information to help you out (and also help the rest of us to help you). :-) Groups used work until recently and they exist in our ldap database. We have a primary domain controller with the master ldap database on it and a backup domain controller with a slave ldap database on it. Our version of samba is Version 3.0.23 and openldap is 2.3.24 Any special event between it working and non-working status? Maybe a power failure, disk failure, system upgrade, LDAP changes, anything... and below are the relevant sections of smb.conf from our PDC [...] Trying an ldapsearch to show groups exist in ldap returns.. ldapsearch -x -b cn=geotech,ou=group,dc=cp,dc=dias,dc=ie dn: cn=geotech,ou=group,dc=cp,dc=dias,dc=ie objectClass: posixGroup objectClass: sambaGroupMapping cn: geotech gidNumber: 1932 sambaSID: S-1-5-21-463069746-3761697030-3888642000-4865 sambaGroupType: 2 displayName: geotech memberUid: lcollins memberUid: choran memberUid: seismo So, as I understood, the group *is* there. :-) Could you try to check 'net groupmap' man page section, it perhaps could give you more info (do not forget about the debuglevel). I've cut out configuration statements for briefness but if you need them I can post them. Thanks in advance. Diarmuid Hope this helps. Kind regards, - -- Felipe Augusto van de Wiel [EMAIL PROTECTED] Coordenadoria de Tecnologia da Informação (CTI) - SEDU/PARANACIDADE http://www.paranacidade.org.br/ Phone: (+55 41 3350 3300) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Debian - http://enigmail.mozdev.org iD8DBQFE8wFtCj65ZxU4gPQRAi2yAJ9QVpYGWH4WLJ1ZH7uk2+XrzgybeQCcDf8Q /NAkcAyoZ+8mB+soe+y9CPM= =FcTi -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba