Re: [SOGo] Re: New Samba4/OpenChange/Sogo tutorial

Mon, 04 Mar 2013 10:37:45 -0800 

Olivier,

thank you for your hard work putting this tutorial together! And iGestis looks 
really promising. Keep up the good work! I will for certain keep an eye open 
for your product.

Regarding Tims error; I ran in to the same errors. And I think it is a product 
of installing both Samba3 and Samba4. As Ubuntu has chosen to start Samba3 with 
"Upstart" and so has Inverse, both packages seem to collide and Samba3 gets 
precedence. I think the errors originates from Samba3 not recognising certain 
Samba4 parameters. During my installation I skipped installing Samba3-packages 
and went for Samba4. No errors.

The "vfs acl_attr.so" error during domain provision is not present after 
following your instructions regarding "Impossible to access in Samba4 shares". 
Thank you!

And the correction of /etc/init.d/sogo works like a charm. Thank you.

In your tutorial, I think you can skip the part about Samba3 and replace it 
with: apt-get install samba4 winbind4 krb5-user. And stress the fact to 
reprovision the Samba4 AD.

My steps:
1. Install acl and attr: apt-get install acl attr
2. Edit /etc/fstab: add acl,user_xattr to root mountpoint. Reboot.
3. Install samba4 according to your "known issues".
4. Stop Samba4.
5. Delete /etc/samba/smb.conf, rm -R /var/lib/samba/private/*, rm -R 
/var/lib/samba/sysvol/*
6. Provision a new AD: samba-tool domain provision --domain=EXAMPLE 
--adminpass=Pa$$w0rd --dns-backend=SAMBA_INTERNAL --server-role=dc 
--function-level=2008_R2 --use-xattr=yes --use-rfc2307 --realm=EXAMPLE.COM
7. Stop Samba4 and install Samba4 from Inverse: apt-get install samba4 winbind4 
krb5-user
8. Start Samba4.

Regards
Davor Vusir


From: Olivier Bitsch 
Sent: Sunday, March 03, 2013 8:54 PM
To: [email protected] 
Subject: Re: [SOGo] Re: New Samba4/OpenChange/Sogo tutorial


Ok I see, it's not very clean, but try the process "Impossible to access in 
Samba4 shares." at address 
http://iabsis.com/EN/article/35-9/Problemes-connus-et-rencontres



This will overwrite some not installed files and give you the smbclient of 
samba4 version.


Olivier.



2013/3/3 Tim Sutinen <[email protected]>

  smbclient -UAdministrator '//localhost/netlogon'
  Unknown parameter encountered: "server role"
  Ignoring unknown parameter "server role"
  Unknown parameter encountered: "dns forwarder"
  Ignoring unknown parameter "dns forwarder"
  Enter Administrator's password: 
  Connection to localhost failed (Error NT_STATUS_CONNECTION_REFUSED)






  Tim Sutinen

  [email protected]

  www.sutinen.com

  Sutinen Consulting, Inc.

  360-578-9144 x305

  360-442-4879 direct

  360-270-5670 cell




  On Sun, Mar 3, 2013 at 11:03 AM, Olivier Bitsch <[email protected]> 
wrote:

    All seems right, 


    try now opening an other terminal, then try the smbclient -UAdministrator 
'//localhost/netlogon' and give me the new output log files.


    Olivier.



    2013/3/3 Tim Sutinen <[email protected]>

      Thanks Olivier. Here is the output: 
      root@sogo:~# samba -i -d 3
      samba: /usr/lib/x86_64-linux-gnu/libwbclient.so.0: no version information 
available (required by /usr/lib/x86_64-linux-gnu/samba/libauth4.so)
      lpcfg_load: refreshing parameters from /etc/samba/smb.conf
      params.c:pm_process() - Processing configuration file 
"/etc/samba/smb.conf"
      samba version 4.0.1 started.
      Copyright Andrew Tridgell and the Samba Team 1992-2012
      GENSEC backend 'gssapi_spnego' registered
      GENSEC backend 'gssapi_krb5' registered
      GENSEC backend 'gssapi_krb5_sasl' registered
      GENSEC backend 'schannel' registered
      GENSEC backend 'spnego' registered
      GENSEC backend 'ntlmssp' registered
      GENSEC backend 'krb5' registered
      GENSEC backend 'fake_gssapi_krb5' registered
      NTPTR backend 'simple_ldb'
      NTVFS backend 'default' for type 1 registered
      NTVFS backend 'posix' for type 1 registered
      NTVFS backend 'unixuid' for type 1 registered
      NTVFS backend 'unixuid' for type 3 registered
      NTVFS backend 'unixuid' for type 2 registered
      NTVFS backend 'cifs' for type 1 registered
      NTVFS backend 'smb2' for type 1 registered
      NTVFS backend 'simple' for type 1 registered
      NTVFS backend 'cifsposix' for type 1 registered
      NTVFS backend 'default' for type 3 registered
      NTVFS backend 'default' for type 2 registered
      NTVFS backend 'nbench' for type 1 registered
      PROCESS_MODEL 'single' registered
      PROCESS_MODEL 'prefork' registered
      PROCESS_MODEL 'onefork' registered
      PROCESS_MODEL 'standard' registered
      AUTH backend 'sam' registered
      AUTH backend 'sam_ignoredomain' registered
      AUTH backend 'anonymous' registered
      AUTH backend 'winbind' registered
      AUTH backend 'winbind_wbclient' registered
      AUTH backend 'name_to_ntstatus' registered
      AUTH backend 'unix' registered
      SHARE backend [classic] registered.
      ldb_wrap open of privilege.ldb
      samba: using 'standard' process model
      DCERPC endpoint server 'rpcecho' registered
      DCERPC endpoint server 'epmapper' registered
      DCERPC endpoint server 'remote' registered
      DCERPC endpoint server 'srvsvc' registered
      DCERPC endpoint server 'wkssvc' registered
      DCERPC endpoint server 'unixinfo' registered
      DCERPC endpoint server 'samr' registered
      DCERPC endpoint server 'winreg' registered
      DCERPC endpoint server 'netlogon' registered
      DCERPC endpoint server 'dssetup' registered
      DCERPC endpoint server 'lsarpc' registered
      DCERPC endpoint server 'backupkey' registered
      DCERPC endpoint server 'spoolss' registered
      DCERPC endpoint server 'drsuapi' registered
      DCERPC endpoint server 'browser' registered
      DCERPC endpoint server 'eventlog6' registered
      DCERPC endpoint server 'dnsserver' registered
      /usr/sbin/smbd: smbd version 3.6.3 started.
      /usr/sbin/smbd: Copyright Andrew Tridgell and the Samba Team 1992-2011
      /usr/sbin/smbd: Ignoring unknown parameter "server role"
      /usr/sbin/smbd: Ignoring unknown parameter "dns forwarder"
      /usr/sbin/smbd: Ignoring unknown parameter "server role"
      /usr/sbin/smbd: Ignoring unknown parameter "dns forwarder"
      /usr/sbin/smbd: standard input is not a socket, assuming -D option
      /usr/sbin/smbd: Unable to connect to CUPS server localhost:631 - 
Connection refused
      /usr/sbin/smbd: failed to retrieve printer list: NT_STATUS_UNSUCCESSFUL
      dreplsrv_partition[CN=Configuration,DC=kalamoja,DC=com] loaded
      ldb_wrap open of secrets.ldb
      dreplsrv_partition[CN=Schema,CN=Configuration,DC=kalamoja,DC=com] loaded
      dreplsrv_partition[DC=kalamoja,DC=com] loaded
      dreplsrv_partition[DC=DomainDnsZones,DC=kalamoja,DC=com] loaded
      dreplsrv_partition[DC=ForestDnsZones,DC=kalamoja,DC=com] loaded
      ldb_wrap open of idmap.ldb
      kccsrv_partition[DC=kalamoja,DC=com] loaded
      Calling DNS name update script
      kccsrv_partition[CN=Configuration,DC=kalamoja,DC=com] loaded
      kccsrv_partition[CN=Schema,CN=Configuration,DC=kalamoja,DC=com] loaded
      kccsrv_partition[DC=DomainDnsZones,DC=kalamoja,DC=com] loaded
      kccsrv_partition[DC=ForestDnsZones,DC=kalamoja,DC=com] loaded
      ldb_wrap open of secrets.ldb
      Calling SPN name update script
      Completed SPN update check OK
      Completed DNS update check OK
      Registered SOGO<00> with 192.168.200.2 on interface 192.168.200.255
      Registered SOGO<03> with 192.168.200.2 on interface 192.168.200.255
      Registered SOGO<20> with 192.168.200.2 on interface 192.168.200.255
      Registered KALAMOJA<1b> with 192.168.200.2 on interface 192.168.200.255
      Registered KALAMOJA<1c> with 192.168.200.2 on interface 192.168.200.255
      Registered KALAMOJA<00> with 192.168.200.2 on interface 192.168.200.255
      /usr/sbin/smbd: Unable to connect to CUPS server localhost:631 - 
Connection refused
      /usr/sbin/smbd: failed to retrieve printer list: NT_STATUS_UNSUCCESSFUL
      Calling DNS name update script
      Calling SPN name update script
      Completed SPN update check OK
      Completed DNS update check OK
      /usr/sbin/smbd: Unable to connect to CUPS server localhost:631 - 
Connection refused
      /usr/sbin/smbd: failed to retrieve printer list: NT_STATUS_UNSUCCESSFUL
      Calling DNS name update script
      Calling SPN name update script
      Completed SPN update check OK
      Completed DNS update check OK
      /usr/sbin/smbd: Unable to connect to CUPS server localhost:631 - 
Connection refused
      /usr/sbin/smbd: failed to retrieve printer list: NT_STATUS_UNSUCCESSFUL
      Calling DNS name update script
      Calling SPN name update script
      Completed SPN update check OK
      Completed DNS update check OK




      Tim Sutinen

      [email protected]

      www.sutinen.com

      Sutinen Consulting, Inc.

      360-578-9144 x305

      360-442-4879 direct

      360-270-5670 cell




      On Sun, Mar 3, 2013 at 5:00 AM, Olivier Bitsch <[email protected]> 
wrote:

        Can reinstall samba3 (backup your smb.conf before), restore you 
smb.conf (probably overrided by samba3), kill all samba processes (smbd and 
samba) and then give me the output of samba -i -d 3. 


        Best regards.


        Olivier.



        2013/3/3 Tim Sutinen <[email protected]>

          I've been following these instructions (thanks, by the way!).  But 
I'm not getting past the Samba installation successfully.  When I try to join 
the domain from a Windows 2008 R2 box, it just says "unknown username or 
password".  I'm pretty sure the culprit is that Samba 3.6.3 is running instead 
of 4.0.X.  That's what being indicated when I run smbclient -L localhost -U% 


          I have tried removing Samba3 from starting per the instructions, but 
it doesn't seem to work.
          Any idea what I might be doing wrong?   I'm using Ubuntu 12.04


          Thanks again!
          Tim









-- 
[email protected]
https://inverse.ca/sogo/lists

Reply via email to