Good afternoon,
I have many AIX clients running samba from pware. I want to move to either the
version on the AIX expansion pack or the rpm's IBM suggests we download,
https://www-01.ibm.com/marketing/iwm/iwm/web/reg/pick.do?source=aixbp&lang=en_US
The problem is that the samba version from pware that is working is old and I
don't see the pware downloads anymore to upgrade to a newer version. The two
version recommended by IBM do not allow me to connect to my corporate Active
Directory domain.
My smb.conf file is very simple. This is what works with the pware version:
[global]
workgroup = <AD Domain Name>
security = DOMAIN
ldap ssl = no
oplocks = No
name resolve order = hosts
password server = <AD Domain Controller>
guest account = guest
map to guest = Bad User
encrypt passwords = yes
domain master = no
local master = no
preferred master = no
load printers = no
[X]
comment = /data directory on the UNIX server
path = /data
read only = No
create mask = 0664
I have tried variations of "security", "password server"
with no luck.
Trying to connect to the domain I receive the following error:
/opt/freeware/bin/net rpc join -U<username>%'<password>'
Failed to join domain: failed to find DC for domain <AD Domain Name>
If you have any suggestions for connecting to AD please let me know.
On Tue, May 31, 2016 at 06:32:51PM +0000, Rob Lee wrote:> I have many AIX clients running samba from pware. I want to move to > either the version on the AIX expansion pack or the rpm's IBM > suggests we download, > https://www-01.ibm.com/marketing/iwm/iwm/web/reg/pick.do?source=aixbp&lang=en_USYou need an IBM ID for that site, so this is for IBM customers only I guess. What version does IBM provide there? Volker -- SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen phone: +49-551-370000-0, fax: +49-551-370000-9 AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen http://www.sernet.de, mailto:kontakt at sernet.de SerNet & BSI laden ein: 29. Juni 2016, 2. IT-Grundschutztag 2016, BPA Berlin. Anmeldung: https://www.sernet.de/gstag
3.4.3 ________________________________________ From: Volker Lendecke <Volker.Lendecke at SerNet.DE> Sent: Tuesday, May 31, 2016 2:51 PM To: Rob Lee Cc: samba at lists.samba.org Subject: Re: [Samba] Samba on AIX - Active directory On Tue, May 31, 2016 at 06:32:51PM +0000, Rob Lee wrote:> I have many AIX clients running samba from pware. I want to move to > either the version on the AIX expansion pack or the rpm's IBM > suggests we download, > https://www-01.ibm.com/marketing/iwm/iwm/web/reg/pick.do?source=aixbp&lang=en_USYou need an IBM ID for that site, so this is for IBM customers only I guess. What version does IBM provide there? Volker -- SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen phone: +49-551-370000-0, fax: +49-551-370000-9 AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen http://www.sernet.de, mailto:kontakt at sernet.de SerNet & BSI laden ein: 29. Juni 2016, 2. IT-Grundschutztag 2016, BPA Berlin. Anmeldung: https://www.sernet.de/gstag
Resolved:
I was able to get samba to join to AD.
I had to change my smb.conf:
security = DOMAIN
to
security = ads
realm = <our AD FQDN>
Also had to change the join command
$ net rcp join -U<username>
to
$ net ads join -I <Domain Controler> -U<username>
________________________________
From: samba <samba-bounces at lists.samba.org> on behalf of Rob Lee
<releehm at hotmail.com>
Sent: Tuesday, May 31, 2016 1:32 PM
To: samba at lists.samba.org
Subject: [Samba] Samba on AIX - Active directory
Good afternoon,
I have many AIX clients running samba from pware. I want to move to either the
version on the AIX expansion pack or the rpm's IBM suggests we download,
https://www-01.ibm.com/marketing/iwm/iwm/web/reg/pick.do?source=aixbp&lang=en_US
IBM AIX Web Download Pack Programs 2016/06/13
11:15:40<https://www-01.ibm.com/marketing/iwm/iwm/web/reg/pick.do?source=aixbp&lang=en_US>
www-01.ibm.com
AIX Web Download Pack Programs pick
The problem is that the samba version from pware that is working is old and I
don't see the pware downloads anymore to upgrade to a newer version. The two
version recommended by IBM do not allow me to connect to my corporate Active
Directory domain.
My smb.conf file is very simple. This is what works with the pware version:
[global]
workgroup = <AD Domain Name>
security = DOMAIN
ldap ssl = no
oplocks = No
name resolve order = hosts
password server = <AD Domain Controller>
guest account = guest
map to guest = Bad User
encrypt passwords = yes
domain master = no
local master = no
preferred master = no
load printers = no
[X]
comment = /data directory on the UNIX server
path = /data
read only = No
create mask = 0664
I have tried variations of "security", "password server"
with no luck.
Trying to connect to the domain I receive the following error:
/opt/freeware/bin/net rpc join -U<username>%'<password>'
Failed to join domain: failed to find DC for domain <AD Domain Name>
If you have any suggestions for connecting to AD please let me know.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba