samba - Dec 2006 - newbie question

Hello,

i know i'm a newbie, but here i go (help me lord), i just
installed/configured samba 3.0.23d on my suse 10.1, but i have a
couple of questions about what's on the manual....

1-  when trying to secure swat with ssl, i installed openssl, and then
generate the certificates, but when i try to start the tunnel with:

stunnel -p /etc/stunnel/stunnel.pem -d 901 \
	 -l /usr/local/samba/bin/swat swat
i get:
2006.12.12 16:56:58 LOG3[4418:1]: -p: No such file or directory (2)

Syntax:
stunnel [<filename>] | -fd <n> | -help | -version | -sockets
    <filename>  - use specified config file instead of
/etc/stunnel/stunnel.conf
    -fd <n>     - read the config file from a file descriptor
    -help       - get config file help
    -version    - display version and defaults
    -sockets    - display default socket options

wich seems to be a bad option...it;s on the manual
http://us5.samba.org/samba/docs/man/Samba-HOWTO-Collection/SWAT.html

2- even tough i cannot browse to swat, it's installed just as is says
on the same page, i enable it on xinetd, but i cant browse it,
everything is configured as it says, even on /etc/services, i mean i
really don't know what to check next....

3- when starting samba i get this on the logs..:

[2006/12/12 15:06:07, 1] nsswitch/winbindd.c:main(979)
  winbindd version 3.0.22-13.18-SUSE-CODE10 started.
  Copyright The Samba Team 2000-2004
[2006/12/12 15:06:07, 0] nsswitch/winbindd_util.c:winbindd_param_init(790)
  winbindd: idmap uid range missing or invalid
[2006/12/12 15:06:07, 0] nsswitch/winbindd_util.c:winbindd_param_init(791)
  winbindd: cannot continue, exiting.
[2006/12/12 15:06:07, 1] nsswitch/winbindd.c:main(1012)
  Could not init idmap -- netlogon proxy only

i read that it could be a space on the uid line, but i got none!!,
here's the smb.config:
[global]
        workgroup = BAV.com.ve
        printing = cups
        printcap name = cups
        printcap cache time = 750
        cups options = raw
        map to guest = Bad User
        include = /etc/samba/dhcp.conf
        logon path = \\%L\profiles\.msprofile
        logon home = \\%L\%U\.9xprofile
        logon drive = P:
[homes]
        comment = Home Directories
        valid users = %S, %D%w%S
        browseable = No
        read only = No
        inherit acls = Yes
[profiles]
        comment = Network Profiles Service
        path = %H
        read only = No
        store dos attributes = Yes
        create mask = 0600
        directory mask = 0700
[users]
        comment = All users
        path = /home
        read only = No
        inherit acls = Yes
        veto files = /aquota.user/groups/shares/
[groups]
        comment = All groups
        path = /home/groups
        read only = No
        inherit acls = Yes
[printers]
        comment = All Printers
        path = /var/tmp
        printable = Yes
        create mask = 0600
        browseable = No
[print$]
        comment = Printer Drivers
        path = /var/lib/samba/drivers
        write list = @ntadmin root
        force group = ntadmin
        create mask = 0664
        directory mask = 0775

can anybody give me a hand, please?, i really don't know ehere to look
for.....

-- 
Ciao, Javier
linux counter #393724
GPG Key Fingerprint = 46B76CFEDB0161089D9ECB22FEFDE7EBA8C2007E
I'm doing a (free) operating system (just a hobby, won't be big and
professional like gnu)
                                           --Linus Torvalds

On part 2, did you restart xinetd?


javier rojas wrote:
> Hello,
>
> i know i'm a newbie, but here i go (help me lord), i just
> installed/configured samba 3.0.23d on my suse 10.1, but i have a
> couple of questions about what's on the manual....
>
> 1-  when trying to secure swat with ssl, i installed openssl, and then
> generate the certificates, but when i try to start the tunnel with:
>
> stunnel -p /etc/stunnel/stunnel.pem -d 901 \
>      -l /usr/local/samba/bin/swat swat
> i get:
> 2006.12.12 16:56:58 LOG3[4418:1]: -p: No such file or directory (2)
>
> Syntax:
> stunnel [<filename>] | -fd <n> | -help | -version | -sockets
>    <filename>  - use specified config file instead of 
> /etc/stunnel/stunnel.conf
>    -fd <n>     - read the config file from a file descriptor
>    -help       - get config file help
>    -version    - display version and defaults
>    -sockets    - display default socket options
>
> wich seems to be a bad option...it;s on the manual
> http://us5.samba.org/samba/docs/man/Samba-HOWTO-Collection/SWAT.html
>
> 2- even tough i cannot browse to swat, it's installed just as is says
> on the same page, i enable it on xinetd, but i cant browse it,
> everything is configured as it says, even on /etc/services, i mean i
> really don't know what to check next....
>
> 3- when starting samba i get this on the logs..:
>
> [2006/12/12 15:06:07, 1] nsswitch/winbindd.c:main(979)
>  winbindd version 3.0.22-13.18-SUSE-CODE10 started.
>  Copyright The Samba Team 2000-2004
> [2006/12/12 15:06:07, 0] 
> nsswitch/winbindd_util.c:winbindd_param_init(790)
>  winbindd: idmap uid range missing or invalid
> [2006/12/12 15:06:07, 0] 
> nsswitch/winbindd_util.c:winbindd_param_init(791)
>  winbindd: cannot continue, exiting.
> [2006/12/12 15:06:07, 1] nsswitch/winbindd.c:main(1012)
>  Could not init idmap -- netlogon proxy only
>
> i read that it could be a space on the uid line, but i got none!!,
> here's the smb.config:
> [global]
>        workgroup = BAV.com.ve
>        printing = cups
>        printcap name = cups
>        printcap cache time = 750
>        cups options = raw
>        map to guest = Bad User
>        include = /etc/samba/dhcp.conf
>        logon path = \\%L\profiles\.msprofile
>        logon home = \\%L\%U\.9xprofile
>        logon drive = P:
> [homes]
>        comment = Home Directories
>        valid users = %S, %D%w%S
>        browseable = No
>        read only = No
>        inherit acls = Yes
> [profiles]
>        comment = Network Profiles Service
>        path = %H
>        read only = No
>        store dos attributes = Yes
>        create mask = 0600
>        directory mask = 0700
> [users]
>        comment = All users
>        path = /home
>        read only = No
>        inherit acls = Yes
>        veto files = /aquota.user/groups/shares/
> [groups]
>        comment = All groups
>        path = /home/groups
>        read only = No
>        inherit acls = Yes
> [printers]
>        comment = All Printers
>        path = /var/tmp
>        printable = Yes
>        create mask = 0600
>        browseable = No
> [print$]
>        comment = Printer Drivers
>        path = /var/lib/samba/drivers
>        write list = @ntadmin root
>        force group = ntadmin
>        create mask = 0664
>        directory mask = 0775
>
> can anybody give me a hand, please?, i really don't know ehere to look 
> for.....
>

Hello,

i'm trying to implement a samba server in one of the branches of the
organization that i'm working for.

at the present i have a w2k3 pdc and dns with active directory wich
handles all the domain secrity policies as the user profiles, the
problem is that the branch is very far and the networking channel is
very poor.

we decided to install a server in samba wich would handle the dns,
dhcp and the authentication of the users in the branch, is very small,
only 10 clients.

now, (don't fall sleep please) i've really read the samba docs, but i
cant seem to find how can it be integrated with active directory?,
because i really need to use the user privileges that are set on the
ad, all i seem to find is reference to unix user in windows domains,
but in my case all the users are on the ad using windows xp, i have 20
linux/unix servers but this would be the first incoporated to the
windows domain and active directory...

Ingo