On 8/6/16 12:58 , Russell Hansen wrote: > I am having trouble sharing files via SMB from a non-global zone with > authentication against > a Windows Server 2008R2 Domain Controller running as a KVM instance on the > same physical > box. > > I've based my configuration on two SmartOS wiki articles. > > https://wiki.smartos.org/display/DOC/Joining+SmartOS+to+an+Active+Directory+domain > https://wiki.smartos.org/display/DOC/Configuring+SMB+in+SmartOS > > a.b.c.11 is the ADDC running DNS > a.b.c.12 is another zone running BIND as a secondary > a.b.c.15 is is my SMB server zone > > ----- > > smb.json > { > "brand": "joyent", > "image_uuid": "088b97b0-e1a1-11e5-b895-9baa2086eb33", > "delegate_dataset": true, > "hostname": "smb", > "alias": "smb", > "dns_domain": "domain.tld", > "resolvers": [ "a.b.c.11", "a.b.c.12" ], > "nics": [ > { > "nic_tag": "admin", > "ip": "a.b.c.15", > "netmask": "255.255.255.0", > "gateway": "a.b.c.254" > } > ] > } > > /etc/resolv.conf > domain domain.tld > search domain.tld > nameserver a.b.c.11 > nameserver a.b.c.12 > > /etc/krb5/krb5.conf > [libdefaults] > default_realm = DOMAIN.TLD > [realms] > DOMAIN.TLD = { > kdc = dc.domain.tld > admin_server = dc.domain.tld > kpasswd_server = dc.domain.tld > kpasswd_protocol = SET_CHANGE > } > [domain_realm] > .domain.tld = DOMAIN.TLD > > mv /etc/nsswitch.conf{,.orig} > cp /etc/nsswitch.{ad,conf} > > svcadm enable -r smb/server > > smbadm join -u administrator domain.tld > > zfs create -o mountpoint=/share1 zones/UUID/data/share1 > > sharemgr add-share -r share1 -s /share1 smb > > ----- > > When I first set this up on Thursday (8/4) I was able to see shares from my > wife's Windows 7 > box and I put off copying files into the share in order to figure out ACLs. > > After rebooting the box for some additional hardware, I was unable to see > shares anymore. > > Start -> Run -> \\smb.domain.tld > Windows cannot access \\smb.domain.tld > Check the spelling of the name. Otherwise, there might be a problem with > your network. to > try to identify and resolve network problems, click Diagnose. > Error code: 0x80070035 > The network path was not found. > > Start -> Run -> \\smb.domain.tld\share1 > The specified network name is no longer available. > > I can ping smb.domain.tld and I can connect to tcp port 445 via telnet. > > I can view AD information from the SMB server: > getent passwd [email protected] > [email protected]:x:2147508251:2147483650:Wife Name::/bin/bash > > I don't see any errors in /var/adm/messages nor in `svcs -L smb/server` > > I've tried re-creating the zone. I've tried two different platforms, > 20160721T174418Z and > 20160804T173241Z. Nothing is bringing back being able to browse for shares > from my > wife's computer.
Hi Russell, Sorry that you're having trouble here. Unfortunately I don't have a lot of experience with SMB. The next thing I'd probably suggest taking a look at is to snoop on the physical interfaces and VNICs of the SmartOS box and the zone respectively and see what, if anything, Window is sending at the SMB layer. From what you described it sounds like we have some basic connectivity, but I'm wondering if some of the snoop traffic here might help us figure out where to start tackling and understanding why Windows thinks it's not available. Robert ------------------------------------------- smartos-discuss Archives: https://www.listbox.com/member/archive/184463/=now RSS Feed: https://www.listbox.com/member/archive/rss/184463/25769125-55cfbc00 Modify Your Subscription: https://www.listbox.com/member/?member_id=25769125&id_secret=25769125-7688e9fb Powered by Listbox: http://www.listbox.com
