Re: [SOGo] Re: New Samba4/OpenChange/Sogo tutorial

Mon, 11 Mar 2013 01:12:05 -0700 

Hi Steven,

You probably forgot to change the Administrator bind, make that :

su - sogo -s /bin/bash
defaults write sogod SOGoUserSources '({CNFieldName = displayName;
IDFieldName = cn; UIDFieldName = sAMAccountName; IMAPHostFieldName =;
baseDN = "cn=Users,dc=domain,dc=local";
bindDN = "cn=Administrator,cn=Users,dc=domain,dc=local"; bindPassword =
pass5678;
canAuthenticate = YES; displayName = "Shared Addresses"; hostname =
"localhost"; id = public; isAddressBook = YES; port = 389;})'
exit
/etc/init.d/sogo restart

Don't forgot to change bindPassword and bindDN.

Olivier.


2013/3/11 Olivier Bitsch <olivier.bit...@gmail.com>

> Very happy to heart that, I hold the invitation in australia :P
>
> Is it possible to provide my the log file for /var/log/samba/log.samba and
> /var/log/sogo/sogo.log during the tries.
>
> Thanks
>
> Olivier.
>
>
> 2013/3/11 Steven Swarts <ste...@swartsit.com>
>
>> G’day Oliver,****
>>
>> ** **
>>
>> I have followed your tutorial, first up you are a legend – if you come to
>> Australia, Perth I will buy you a beer.****
>>
>> Easy to follow, I have got my Win 7 Test machine connected to the domain,
>> Igestis works great, only 1 issue.****
>>
>> ** **
>>
>> Issue:****
>>
>> ** **
>>
>> I can log in to the domain controlled windows 7 machine using username
>> set by igestis – sjswarts – I can find my server in outlook, is underlined
>> and my set email address is populated correctly. But when Outlook tries to
>> connect to the default folders it fails with this error:****
>>
>> ** **
>>
>> *“Cannot open your default e-mail folders. You must connect to Microsoft
>> Exchange with the current profile before you can synchronize you folders
>> with your Outlook data file (.ost)”*
>>
>> * *
>>
>> I also cannot log in to http://*server*ip/SOGo with the same username.
>> The authentication side works (if I put random name and password it says
>> authentication failure) but it can’t find the username – sjswarts****
>>
>> ** **
>>
>> Any help would be very much appreciated,****
>>
>> ** **
>>
>> Thank you****
>>
>> ** **
>>
>> *Regards,*
>>
>> *Steven Swarts*
>>
>> * *
>>
>> *From:* Olivier Bitsch [mailto:olivier.bit...@gmail.com]
>> *Sent:* Thursday, 7 March 2013 11:19 PM
>>
>> *To:* users@sogo.nu
>> *Subject:* Re: [SOGo] Re: New Samba4/OpenChange/Sogo tutorial****
>>
>> ** **
>>
>> No, it's not missing, it's only in the optional step igestis :****
>>
>> http://iabsis.com/EN/article/35-7/Installation-d-iGestis-optionnel****
>>
>> ** **
>>
>> You can add igestis repository and install pam-mkhomedir package, or
>> download this file
>> http://open.iabsis.com/subversion/pam-mkhomedir/trunk/mkhomedir at
>> /usr/share/pam-configs/ and run again pam-auth-update.****
>>
>> ** **
>>
>> Best regards.****
>>
>> ** **
>>
>> Olivier.****
>>
>> ** **
>>
>> 2013/3/7 Netwodist <netwod...@gmail.com>****
>>
>> I think there is one thing missing from pam configuration. It is this
>> line session required pam_mkhomedir.so
>>
>> Which creates a home directory if it doesn't exist for the new user in AD
>> after authentication.
>>
>> What do you think Olivier?****
>>
>>
>>
>> On 06/03/13 08:02, Dirk Werner wrote:****
>>
>> Sorry, my mails yesterday did got stuck, don't knwo why.
>> The WIn client has the sogo server as only DNS Server, I have stopped and
>> restarted Samba, the file log.samba is very big, here's an excerpt from it
>> when I try to join the domain and when the message 'Wrong username or
>> Password' on the Win7 client is shown:
>>
>> cldap netlogon query domain=SOGO.AIRWERK.NET host=AIRWERK-NB3
>> user=AIRWERK-NB3$ version=22 guid=(null)
>> [2013/03/05 23:24:55,  4]
>> ../source4/lib/socket/interface.c:121(add_interface)
>>   added interface eth0 ip=fe80::5054:ff:fece:108c%eth0
>> bcast=fe80::ffff:ffff:ffff:ffff%eth0 netmask=ffff:ffff:ffff:ffff::
>> [2013/03/05 23:24:55,  4]
>> ../source4/lib/socket/interface.c:121(add_interface)
>>   added interface eth0 ip=192.168.40.1 bcast=192.168.40.255
>> netmask=255.255.255.0
>> [2013/03/05 23:24:55,  5]
>> ../source4/cldap_server/netlogon.c:458(cldapd_netlogon_request)
>>   cldap netlogon query domain=SOGO.AIRWERK.NET host=AIRWERK-NB3
>> user=AIRWERK-NB3$ version=22 guid=(null)
>> [2013/03/05 23:24:55,  4]
>> ../source4/lib/socket/interface.c:121(add_interface)
>>   added interface eth0 ip=fe80::5054:ff:fece:108c%eth0
>> bcast=fe80::ffff:ffff:ffff:ffff%eth0 netmask=ffff:ffff:ffff:ffff::
>> [2013/03/05 23:24:55,  4]
>> ../source4/lib/socket/interface.c:121(add_interface)
>>   added interface eth0 ip=192.168.40.1 bcast=192.168.40.255
>> netmask=255.255.255.0
>> [2013/03/05 23:24:55,  5]
>> ../source4/cldap_server/netlogon.c:458(cldapd_netlogon_request)
>>   cldap netlogon query domain=SOGO.AIRWERK.NET host=AIRWERK-NB3
>> user=(null) version=22 guid=(null)
>> [2013/03/05 23:24:55,  4]
>> ../source4/lib/socket/interface.c:121(add_interface)
>>   added interface eth0 ip=fe80::5054:ff:fece:108c%eth0
>> bcast=fe80::ffff:ffff:ffff:ffff%eth0 netmask=ffff:ffff:ffff:ffff::
>> [2013/03/05 23:24:55,  4]
>> ../source4/lib/socket/interface.c:121(add_interface)
>>   added interface eth0 ip=192.168.40.1 bcast=192.168.40.255
>> netmask=255.255.255.0
>> [2013/03/05 23:24:55,  4]
>> ../source4/dsdb/repl/drepl_notify.c:463(dreplsrv_notify_schedule)
>>   dreplsrv_notify_schedule(5) scheduled for: Tue Mar  5 23:25:01 2013 CET
>> [2013/03/05 23:24:55,  3]
>> ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
>>   Kerberos: TGS-REQ administra...@sogo.airwerk.net from ipv4:
>> 192.168.40.167:49516 for 
>> cifs/remote.sogo.airwerk....@sogo.airwerk.net[canonicalize, renewable, 
>> forwardable]
>> [2013/03/05 23:24:55,  3]
>> ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
>>   Kerberos: TGS-REQ authtime: 2013-03-05T23:24:54 starttime:
>> 2013-03-05T23:24:55 endtime: 2013-03-06T09:24:54 renew till:
>> 2013-03-12T23:24:54
>> [2013/03/05 23:24:55,  3]
>> ../source4/smbd/service_stream.c:63(stream_terminate_connection)
>>   Terminating connection - 'kdc_tcp_call_loop:
>> tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED'
>> [2013/03/05 23:24:55,  5]
>> ../source4/lib/messaging/messaging.c:554(imessaging_cleanup)
>>   imessaging: cleaning up /var/lib/samba/private/smbd.tmp/msg/msg.0.34
>> [2013/03/05 23:24:55,  3]
>> ../source4/smbd/process_single.c:104(single_terminate)
>>   single_terminate: reason[kdc_tcp_call_loop:
>> tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED]
>> [2013/03/05 23:24:55,  3]
>> ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
>>   Kerberos: TGS-REQ administra...@sogo.airwerk.net from ipv4:
>> 192.168.40.167:49517 for 
>> krbtgt/sogo.airwerk....@sogo.airwerk.net[renewable-ok, canonicalize, 
>> renewable, forwarded,
>> forwardable]
>> [2013/03/05 23:24:55,  3]
>> ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
>>   Kerberos: TGS-REQ authtime: 2013-03-05T23:24:54 starttime:
>> 2013-03-05T23:24:55 endtime: 2013-03-06T09:24:54 renew till:
>> 2013-03-12T23:24:54
>> [2013/03/05 23:24:55,  3]
>> ../source4/smbd/service_stream.c:63(stream_terminate_connection)
>>   Terminating connection - 'kdc_tcp_call_loop:
>> tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED'
>> [2013/03/05 23:24:55,  5]
>> ../source4/lib/messaging/messaging.c:554(imessaging_cleanup)
>>   imessaging: cleaning up /var/lib/samba/private/smbd.tmp/msg/msg.0.34
>> [2013/03/05 23:24:55,  3]
>> ../source4/smbd/process_single.c:104(single_terminate)
>>   single_terminate: reason[kdc_tcp_call_loop:
>> tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED]
>> [2013/03/05 23:25:00,  4]
>> ../source4/dsdb/repl/drepl_notify.c:463(dreplsrv_notify_schedule)
>>   dreplsrv_notify_schedule(5) scheduled for: Tue Mar  5 23:25:06 2013 CET
>> [2013/03/05 23:25:05,  4]
>> ../source4/dsdb/repl/drepl_notify.c:463(dreplsrv_notify_schedule)
>>   dreplsrv_notify_schedule(5) scheduled for: Tue Mar  5 23:25:11 2013 CET
>>
>> On 03/05/2013 11:08 PM, Olivier Bitsch wrote: ****
>>
>> Are you sure that your Windows box is using the IP address of your server
>> as main DNS server? ****
>>
>> ** **
>>
>> If still not, please try :****
>>
>>    - Stop Samba4 services, check there is no smbd or samba process
>>    working (killall smbd && killall samba).****
>>    - Start Samba4 again.****
>>    - Check /var/log/samba/log.samba (smbd is used by samba3 process).****
>>
>> Also, can you give me your /var/log/samba/log.samba file?****
>>
>> ** **
>>
>> Thanks****
>>
>> ** **
>>
>> Olivier.****
>>
>> ** **
>>
>> 2013/3/5 Dirk Werner <werdi4...@googlemail.com>****
>>
>> Thanks for replying! I have the same thing happening with the user
>> Administrator. kinit Administrator works fine! ****
>>
>>
>>
>> On 03/05/2013 11:01 PM, Olivier Bitsch wrote: ****
>>
>> It seems that you tried to join with rweissmann username? You have to
>> use the "Administrator" account in the windows credential when joining the
>> domain. ****
>>
>> ** **
>>
>> Additionally, the entry /var/lib/samba/passdb.tdb is probably not used
>> by Samba4 as this file is used when Samba4 uses the old tdb has backend
>> (now it uses an OpenLDAP fork).****
>>
>> ** **
>>
>> Best regards.****
>>
>> ** **
>>
>> Olivier****
>>
>> ** **
>>
>> 2013/3/5 Dirk Werner <werdi4...@googlemail.com>****
>>
>> Hi Olivier,
>>
>> I have had a new installation today following your tutorial and that went
>> fine through including igestis! However, when I try to join the domain on a
>> windows 7 client, the join fails with 'username or password wrong' and I
>> have the following line in /var/log/samba/log.smbd
>>
>> check_sam_security: Couldn't find user 'rweissmann' in passdb.
>> [2013/03/05 21:41:34.306661,  2] auth/auth.c:319(check_ntlm_password)
>>   check_ntlm_password:  Authentication for user [rweissmann] ->
>> [rweissmann] FAILED with error NT_STATUS_NO_SUCH_USER
>> [2013/03/05 21:41:34.306735,  3] smbd/error.c:81(error_packet_set)
>>   error packet at smbd/sesssetup.c(124) cmd=115 (SMBsesssetupX)
>> NT_STATUS_LOGON_FAILURE
>>
>>
>> samba-tool user list - lists user 'rweissmann' and getent passwd also:
>>
>> SOGO\rweissmann:*:3000022:100:Roland
>> Weissmann:/home/rweissmann:/usr/sbin/nologin
>>
>> When I do tdbdump /var/lib/samba/passdb.tdb :
>>
>> tdbdump /var/lib/samba/passdb.tdb
>>
>> {
>> key(13) = "RID_000001f5\00"
>> data(7) = "nobody\00"
>> }
>> {
>> key(13) = "RID_00000bb8\00"
>> data(6) = "dirkw\00"
>> }
>> {
>> key(19) = "INFO/minor_version\00"
>> data(4) = "\00\00\00\00"
>> }
>> {
>> key(9) = "NEXT_RID\00"
>> data(4) = "\E8\03\00\00"
>> }
>> {
>> key(11) = "USER_dirkw\00"
>> data(174) =
>> "\00\00\00\00\7F\A9T|\7F\A9T|\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\06\00\00\00dirkw\00\07\00\00\00REMOTE\00\01\00\00\00\00\06\00\00\00dirkw\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\01\00\00\00\00\01\00\00\00\00\01\00\00\00\00\01\00\00\00\00\B8\0B\00\00\01\02\00\00\00\00\00\00\00\00\00\00\00\00\00\00\10\00\00\00\A8\00\15\00\00\00\00\00\00\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\EC\04\00\00"
>> }
>> {
>> key(13) = "INFO/version\00"
>> data(4) = "\04\00\00\00"
>> }
>> {
>> key(12) = "USER_nobody\00"
>> data(176) =
>> "\00\00\00\00\7F\A9T|\7F\A9T|\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\07\00\00\00nobody\00\07\00\00\00REMOTE\00\01\00\00\00\00\07\00\00\00nobody\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\01\00\00\00\00\01\00\00\00\00\01\00\00\00\00\01\00\00\00\00\F5\01\00\00\01\02\00\00\00\00\00\00\00\00\00\00\00\00\00\00\10\00\00\00\A8\00\15\00\00\00\00\00\00\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\EC\04\00\00"
>> }
>>
>> The user rweissmann is indeed not in there, all users, I have created
>> with samba-tool are not contained. Any idea?
>>
>> Best regards
>> Dirk ****
>>
>>
>>
>> On 03/05/2013 07:39 PM, Olivier Bitsch wrote: ****
>>
>> To all,****
>>
>> ** **
>>
>> I've updated my SOGo tutorial and bring the following fixed (still
>> available at
>> http://iabsis.com/EN/article/35/Samba4-and-OpenChange-on-a-Debian-or-Ubuntu-server/
>> )****
>>
>>    - Add a temporarily and cleaner way to install Samba4 (Thanks
>>    to Davor Vusir).****
>>    - Some small other fixes.****
>>
>> Don't hesitate to let me a comment on the website if something work or
>> not.****
>>
>> ** **
>>
>> Best regards.****
>>
>> ** **
>>
>> 2013/3/5 Ludovic Marcotte <lmarco...@inverse.ca>****
>>
>> On 28/02/13 03:27, Olivier Bitsch wrote:****
>>
>> ·  Use PostGreSQL by default to avoid the bug
>> http://tracker.openchange.org/issues/413 ****
>>
>> We identified the bug. MySQL's TEXT data type is limited to 2^16 - 1 =
>> 65535 bytes, so truncation occurs and thus, a crash (because the cache is
>> corrupted).
>>
>> We'll commit a fix shortly and provide an upgrade script (2.0.4 to 2.0.5)
>> to adjust the data type for all tables accordingly.
>>
>> Thanks,
>>
>> ****
>>
>> -- ****
>>
>> Ludovic Marcotte****
>>
>> +1.514.755.3630  ::  www.inverse.ca****
>>
>> Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence 
>> (www.packetfence.org) ****
>>
>> ** **
>>
>> ** **
>>
>> ** **
>>
>> ** **
>>
>> ** **
>>
>
>
-- 
users@sogo.nu
https://inverse.ca/sogo/lists

Reply via email to