On 28/07/15 01:37, Steve Ankeny wrote:
This was initially sent to the wrong mailing list. Updated at bottom.
------------------------------------------------------------------------------------------------------------------------------------------
Over the weekend, I configured OpenChange, OCS Manager & RPC Proxy in
the manner described in the Outlook Configuration Guide to work with
Samba in anticipation of setting up my first Outlook 2010 profile.
Specifically, I followed the instructions on pg. 10-17 with reference
to 'smb.conf' & 'ocsmanager.ini'
When I initially configured Samba AD DC, I inserted the language on
pg. 10 & 13 in 'smb.conf' but commented it out so Samba-AD-DC would
work correctly. That was prior to the upgrade to SOGo & OpenChange 2.3
I also initially provisioned OpenChange & created the 'openchange' DB
in MySQL
When I completed my configuration of OpenChange & OCS Manager, my
Samba services stopped running.
The only working solution is to comment out the OpenChange lines in
'smb.conf'
Here's my 'smb.conf' --
[global]
workgroup = SMBDOMAIN
realm = smbdomain.com
netbios name = SOGO
server role = active directory domain controller
dns forwarder = 192.168.121.1
idmap_ldb:use rfc2307 = yes
passdb backend = samba
allow dns updates = nonsecure
### Configuration required by OpenChange server ###
#dsb:shema update allowed = true
#dcerpc endpoint servers = +epmapper, +mapiproxy
#dcerpc_mapiproxy:server = true
#dcerpc_mapiproxy:interfaces = exchange_emsmdb, exchange_nsp,
exchange_ds_rfr
### Configuration required by OpenChange server ###
#mapistore:namedproperties = mysql
#namedproperties:mysql_user = openchange-user
#namedproperties:mysql_pass = $passwd
#namedproperties:mysql_host = localhost
#namedproperties:mysql_db = openchange
#mapistore:indexing_backend =
mysql://openchange-user:$passwd@localhost/openchange
#mapiproxy:openchangedb =
mysql://openchange-user:$passwd@localhost/openchange
[netlogon]
path = /var/lib/samba/sysvol/smbdomain.com/scripts
read only = No
[sysvol]
path = /var/lib/samba/sysvol
read only = No
And, my 'ocsmanager.ini' --
[DEFAULT]
debug = true
email_to = [email protected]
smtp_server = localhost
error_email_from = paste@localhost
[main]
auth = ldap
mapistore_root = /var/lib/samba/private
mapistore_data = /var/lib/samba/private/mapistore
debug = yes
[auth:file]
[auth:ldap]
host = ldap://127.0.0.1
port = 389
bind_dn = cn=Administrator,cn=Users,dc=smbdomain,dc=com
bind_pw = $passwd
basedn = cn=Users,dc=smbdomain,dc=com
[auth:single]
username = openchange
# password is test
*#password = {SSHA}I6Hy5Wv0wuxyXvMBFWFQDVVN12_CLaX9* *(Is this a
problem?)*
password = $passwd
[server:main]
use = egg:Paste#http
host = 127.0.0.1
port = 5000
protocol_version = HTTP/1.1
[app:main]
use = egg:ocsmanager
full_stack = true
static_files = true
cache_dir = %(here)s/data
beaker.session.key = ocsmanager
beaker.session.secret = SDyKK3dKyDgW0mlpqttTMGU1f
app_instance_uuid = {ee533ebc-f266-49d1-ae10-d017ee6aa98c}
NTLMAUTHHANDLER_WORKDIR = /var/cache/ntlmauthhandler
SAMBA_HOST = 127.0.0.1
[rpcproxy:ldap]
host = localhost
port = 389
*basedn = CN=Users,DC=example,DC=com (Is this a problem?)*
set debug = true
[autodiscover]
[autodiscover:rpcproxy]
enabled = true
[outofoffice]
[outofoffice:file]
sieve_script_path = /var/vmail/$domain/$user/sieve-script
sieve_script_path_mkdir = false
[outofoffice:managesieve]
secret = secret
[loggers]
keys = root
[handlers]
keys = console
[formatters]
keys = generic
[logger_root]
level = INFO
handlers = console
[handler_console]
class = StreamHandler
secret = secret
# Logging configuration
[loggers]
keys = root
[handlers]
keys = console
[formatters]
keys = generic
[logger_root]
level = INFO
handlers = console
[handler_console]
class = StreamHandler
args = (sys.stderr,)
level = NOTSET
formatter = generic
[formatter_generic]
format = %(asctime)s %(levelname)-5.5s [%(name)s] [%(threadName)s]
%(message)s
Notice the *em**boldened* lines in 'ocsmanager.ini'
*Could those errors turn off my Samba services?*
With the OpenChange lines uncommented in 'smb.conf,' I see the
following --
adam@sogo:~$ sudo initctl list | egrep 'samba|smb|nmb|winbind'
nmbd start/running
winbind stop/waiting
smbd stop/waiting
reload-smbd stop/waiting
samba-ad-dc stop/running
adam@sogo:~$
With those same lines commented out, I see the following --
adam@sogo:~$ sudo initctl list | egrep 'samba|smb|nmb|winbind'
nmbd start/running
winbind stop/waiting
smbd stop/waiting
reload-smbd stop/waiting
samba-ad-dc start/running, process 875
adam@sogo:~$
Here's my package selections --
adam@sogo:~$ sudo dpkg --get-selections | egrep 'samba|smb|nmb|winbind'
libnss-winbind:amd64 install
libpam-winbind:amd64 install
libsmbclient:amd64 install
python-samba install
samba install
samba-common install
samba-common-bin install
samba-dev install
samba-dsdb-modules install
samba-libs:amd64 install
samba-vfs-modules install
smbclient install
winbind install
adam@sogo:~$ sudo dpkg --get-selections | egrep 'openchange|ocs'
openchange-ocsmanager install
openchange-rpcproxy install
openchangeproxy install
openchangeserver install
python-ocsmanager install
sogo-openchange:amd64 install
adam@sogo:~$
*update* --
I made the corrections to 'ocsmanager.ini' noted above to no avail.
IMO the 'dcerpc' calls in 'smb.conf' are shutting down Samba services.
### Configuration required by OpenChange server ###
#dsb:shema update allowed = true
You have a typo, it should be 'dsb:schema update allowed = true'
#dcerpc endpoint servers = +epmapper, +mapiproxy
Not sure you need '+epmapper' , I think if you run:
samba-tool testparm -v | grep 'dcerpc endpoint servers'
You will need to press enter twice, the result should show just what
servers are running now (of course you need to run the test with the
openchange lines commented out)
Rowland
#dcerpc_mapiproxy:server = true
#dcerpc_mapiproxy:interfaces = exchange_emsmdb, exchange_nsp,
exchange_ds_rfr
### Configuration required by OpenChange server ###
#mapistore:namedproperties = mysql
#namedproperties:mysql_user = openchange-user
#namedproperties:mysql_pass = $passwd
#namedproperties:mysql_host = localhost
#namedproperties:mysql_db = openchange
#mapistore:indexing_backend =
mysql://openchange-user:$passwd@localhost/openchange
#mapiproxy:openchangedb =
mysql://openchange-user:$passwd@localhost/openchange
With the lines above commented out, Samba services work perfectly.
When I provisioned Samba-AD-DC, I had the same problem and commented
them out of 'smb.conf'
Any suggestions would be appreciated. Or, any corrections on my
setup. Thx
I will continue to experiment with each line.
--
[email protected]
https://inverse.ca/sogo/lists
