Displaying 20 results from an estimated 20000 matches similar to: "debian wheezy, sernet samba 4.1.3 join Windows 2008R2 AD as DC. Success ( basic Howto included )"
2016 May 18
2
ISC's dhcp server, radvd and bind9 now adding samba as an AD DC
So I had dhcp, radvd and bind working together nicely and now I threw in a
wrench of setting up an AD DC
I want to change my dhcp server setting to put client's into the new AD
Domain but am a little hesitant as it is all working so nicely with DDNS
I'm starting to think all I need to do is edit just my dhcpd.conf and
change occurrences of DOMAIN1.SUBDOMAIN.TLD to
2016 May 27
2
ISC's dhcp server, radvd and bind9 now adding samba as an AD DC
I had left my config alone for now and dhcp still writes to
DOMAIN1.SUBDOMAIN.TLD. But samba has been complaining about not being able
to write to bind in its zone.
[2016/05/27 07:30:06.738434, 0]
../source4/dsdb/dns/dns_update.c:295(dnsupdate_nameupdate_done)
../source4/dsdb/dns/dns_update.c:295: Failed DNS update -
NT_STATUS_UNSUCCESSFUL
If you are right about it using kerberos I think I am
2016 May 27
2
ISC's dhcp server, radvd and bind9 now adding samba as an AD DC
https://wiki.samba.org/index.php/Configure_BIND_as_backend_for_Samba_AD
helped me find that I needed to add
options {
[...]
tkey-gssapi-keytab "/usr/local/samba/private/dns.keytab";
[...]
};
That seems to have fixed my errors with DNS
On Fri, May 27, 2016 at 9:26 AM, Rowland penny <rpenny at samba.org> wrote:
> On 27/05/16 14:37, Jeff Sadowski wrote:
>
2016 May 27
1
ISC's dhcp server, radvd and bind9 now adding samba as an AD DC
On Fri, May 27, 2016 at 10:23 AM, Rowland penny <rpenny at samba.org> wrote:
> On 27/05/16 17:11, Jeff Sadowski wrote:
>
>> https://wiki.samba.org/index.php/Configure_BIND_as_backend_for_Samba_AD
>> helped me find that I needed to add
>>
>> options {
>> [...]
>> tkey-gssapi-keytab "/usr/local/samba/private/dns.keytab";
>>
2015 Aug 23
2
Some questions
After years of delays and side trips, I really am going to dive in and
build my own Samba server. And I have a few questions.
All of my servers will be ARM. The main hardware will be Cubieboards (2
and truck). They will be running Centos-7 once the development is
finished. For now I am using Fedora 22 arm. My backup file server will
be a pogoplug (armv5) with Redsleeve 7.1.
My current
2018 Mar 04
1
Samba AD + Kerbero + NFS "Client no longer in database"
I am soo lost trying to get Samba AD 4.7.5 as a Kerberos source for
NFSv4. The NFS server is the Samba AD server running Ubuntu Server
16.0.4.3 and the client is Linux Mint 18.3
This export WORKS and mounts on client
########## /etc/exports ##########
/mnt/fileshare *(rw,no_subtree_check,async)
############################
This export DOES NOT
########## /etc/exports ##########
2016 Apr 26
3
unexpected groups 2000(BUILTIN\administrators) 2001(BUILTIN\users)?
So happy for BadLock bug it finally pushed Ubuntu to upgrade samba :-)
So many things work better
* I can now sudo without having to newgrp first
* I can now run id and get a list of all groups I am in
* I can now run getent group and get a list of the domain groups
but I now have two unexpected groups
running the following I get
id | sed 's/,/\n/g' | sort > id_without.txt
id $USER
2015 Aug 28
2
More on bind_dlz - documentation I have not found
On 08/28/2015 08:55 AM, Rowland Penny wrote:
> On 28/08/15 13:15, Robert Moskowitz wrote:
>> In the shower this morning, I realized that samba's dlz is through
>> its ldap interface, probably through dhcp. :)
>>
>> All of that work researching how to set up a dlz database for
>> naught. This is NOT documented in either:
>>
>>
2016 Feb 05
4
Samba 3.2 and Windows 10
Il 05/02/16 14:41, Helmut Hullen ha scritto:
>> is: if a client is upgraded to Windows 10, will it still work with
>> that old Samba version?
>
> May be - Samba 3.6 does the job.
Hi, you mean that 3.2 will not talk to Windows 10, no way?
Unfortunately the latest Samba version for Debian Lenny is 3.2.15 AFAIK.
--
01
2015 Aug 23
1
Some questions
thanks for the reply.
On 08/23/2015 01:26 PM, Rowland Penny wrote:
> On 23/08/15 17:10, Robert Moskowitz wrote:
>> After years of delays and side trips, I really am going to dive in
>> and build my own Samba server. And I have a few questions.
>>
>> All of my servers will be ARM. The main hardware will be Cubieboards
>> (2 and truck). They will be running
2013 Dec 19
4
question about zone and tsig verify failure
Hai?
?
Im running:?debian wheezy, sernet samba 4.1.3 , DC, in windows 2008 AD domain.
?
Im reading the wiki and i stumbled on this.
https://wiki.samba.org/index.php/Dns-backend_bind?
semanage fcontext -a -t named_var_run_t /usr/local/samba/private/dns/${MYREALM}.zone
semanage fcontext -a -t named_var_run_t /usr/local/samba/private/dns/${MYREALM}.zone.jnl
the strange thing is, and this is
2018 Oct 15
1
bind9 and samba 4.9.1
Hello,
I have the following problem with my bind9 together with samba 4.9
SerNet. If I start the bind9 I got the following error-message:
---------------
Oct 15 20:35:50 addc2 named[2269]: Loading 'AD DNS Zone' using driver dlopen
Oct 15 20:35:50 addc2 named[2269]: samba_dlz: started for DN
DC=zfd,DC=forumzfd,DC=de
Oct 15 20:35:50 addc2 named[2269]: samba_dlz: starting configure
Oct 15
2015 Jan 19
8
RSAT - cloud on the horizon
I think I see some heavy weather ahead of me:
http://technet.microsoft.com/en-ca/library/dn303411.aspx
specifically w.r.t. Server 2012 r2 (with which I will have to soon(ish)
wrestle):
> Features Removed or Deprecated in Windows Server 2012 R2
>...
> RSAT: Identity management for Unix/NIS
>
> The Server for Network Information Service (NIS) Tools option of
> Remote Server
2016 Apr 26
1
unexpected groups 2000(BUILTIN\administrators) 2001(BUILTIN\users)?
I think I know then. Are those groups from a local samba database?
I might have deleted it in the past and when the upgrade took place it may
have replaced it.
On Tue, Apr 26, 2016 at 12:32 PM, Rowland penny <rpenny at samba.org> wrote:
> On 26/04/16 18:44, Jeff Sadowski wrote:
>
>> So happy for BadLock bug it finally pushed Ubuntu to upgrade samba :-)
>>
>> So many
2019 Jul 10
2
Samba4 Internal DNS and pfSense DNS Resolver
Am 10.07.19 um 20:38 schrieb miguel medalha via samba:
>
>> How could I achieve that when my client from the LAN makes a request
>> to xmpp.domain.tld, SAMBA4 direct that request to pfSense and respond
>> with the IP assigned to it?
>
> In the smb.conf file of your DCs you insert the line:
>
> dns forwarder = [IP address of your pfSense machine]
there is no
2019 Jul 10
2
Samba4 Internal DNS and pfSense DNS Resolver
On 10/07/2019 21:02, miguel medalha via samba wrote:
>
>> there is no reason why an authoritative nameserver would forward a
>> request to his own domain no matter if it's samba, named or somethign
>> else
>>
>> any authoritative nameserver is supposed to know *every* record within
>> his own zones and you can't have half of them somewhere lese
2018 Feb 05
6
Using Samba AD for NFSV4 Kerberos servers and clients
Thanks Luc,
First, can I just use the small /etc/krb5.conf suggested in Samba AD
docs or do I need something more substantial on the server & client for
Kerberos NFS to work?
[libdefaults]
default_realm = SUBDOMAIN.DOMAIN.COM
dns_lookup_realm = false
dns_lookup_kdc = true
I understand a /etc/krb5.keytab file has to be created on both server &
client. Most
2016 Apr 06
5
samba dns
Would prefer to continue to use my NSD/Unbound installs for most DNS
(if not all) services. NSD is the authoritative server for the domain,
and Unbound is the cache/resolver that the clients connect to. I'd
like to not disturb this setup but I'll need the SRV records so that
AD works. If the SRV records are fixed I suppose I could host them
using NSD, then Samba wouldn't have to be
2018 Jun 01
3
Trust relationship between different domains
Hai Elias,
聽
Sorry for the late reply.
I do preffer the list, and i understand why you mailt my directly, but best is to keep this on the list.
The more eye that see this, the more chance you have on a reply.
I must say, i personaly dont use any trust relations ships. that was long ago when i used that, so im bit rusty here.
聽
Now, i see you are using my 4.8.2 packages. so you on debian. *( or
2019 Jan 14
4
dehydrated hook for LetsEncrypt certs and samba dns (was: samba-tool auth in scripts)
(@Rowland)
> Whilst it is quite correct to say that the REALM isn't the same as a
> DNS domain, there is a correlation between them. The REALM must be the
> DNS domain in uppercase, so this:
>
> SAMBA_PRINCIPAL=dehydrated-service at YOUR.DOMAIN
No, you can have your.primayDNSdomain.tld and have REALM = SOMEREALM.TLD
Its not obligated to have REALM the same as the DnsDomain.