Hello all,
I am looking to setup a Samba AD on my NAS. I am currently using the latest
version of NAS4Free which has Samba bundled into it already.
However, I am getting a very nasty error when I go in to setup the samba
service:
Initializing...
Looking up IPv4 addresses
Looking up IPv6 addresses
No IPv6 address will be assigned
Setting up share.ldb
Setting up secrets.ldb
Setting up the registry
Setting up the privileges database
Setting up idmap db
Setting up SAM db
Setting up sam.ldb partitions and settings
Setting up sam.ldb rootDSE
Pre-loading the Samba 4 and AD schema
Adding DomainDN: DC=testdomain,DC=local
Adding configuration container
Setting up sam.ldb schema
Setting up sam.ldb configuration data
Setting up display specifiers
Modifying display specifiers
Adding users container
Modifying users container
Adding computers container
Modifying computers container
Setting up sam.ldb data
Setting up well known security principals
Setting up sam.ldb users and groups
Setting up self join
set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_PARAMETER.
ERROR(runtime): uncaught exception - (-1073741811, 'Unexpected
information received')
File
"/usr/local/lib/python2.7/site-packages/samba/netcmd/__init__.py",
line 176, in _run
return self.run(*args, **kwargs)
File
"/usr/local/lib/python2.7/site-packages/samba/netcmd/domain.py",
line 471, in run
nosync=ldap_backend_nosync, ldap_dryrun_mode=ldap_dryrun_mode)
File
"/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py",
line 2175, in provision
skip_sysvolacl=skip_sysvolacl)
File
"/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py",
line 1806, in provision_fill
names.domaindn, lp, use_ntvfs)
File
"/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py",
line 1593, in setsysvolacl
service=SYSVOL_SERVICE)
File "/usr/local/lib/python2.7/site-packages/samba/ntacls.py", line
162, in setntacl
smbd.set_nt_acl(file, security.SECINFO_OWNER |
security.SECINFO_GROUP | security.SECINFO_DACL |
security.SECINFO_SACL, sd, service=service)
I looked online and I did see a bug report on the same issue here:
https://bugzilla.samba.org/show_bug.cgi?id=12363
However, I ma unable to run the setfacl command due to an invalid parameter
d:o:rx.
I also tried following these instructions which did not work:
http://samba.2283325.n4.nabble.com/samba-tool-ntacl-sysvolreset-NT-STATUS-BUFFER-TOO-SMALL-td4707940.html
As a side note, my version of setfacl does not include the -R command. So,
I have to run a command such as: find /mnt/ZFS1/test/ -type d -exec setfacl
-m u:John:modify_set:fd:allow {} \;
I was wondering if anyone found a fix for the issue I posted above.
On Mon, 3 Jul 2017 12:23:24 -0400 phillip mobley via samba <samba at lists.samba.org> wrote:> Hello all, > > I am looking to setup a Samba AD on my NAS. I am currently using the > latest version of NAS4Free which has Samba bundled into it already. > > However, I am getting a very nasty error when I go in to setup the > samba service: > > Initializing... > Looking up IPv4 addresses > Looking up IPv6 addresses > No IPv6 address will be assigned > Setting up share.ldb > Setting up secrets.ldb > Setting up the registry > Setting up the privileges database > Setting up idmap db > Setting up SAM db > Setting up sam.ldb partitions and settings > Setting up sam.ldb rootDSE > Pre-loading the Samba 4 and AD schema > Adding DomainDN: DC=testdomain,DC=local > Adding configuration container > Setting up sam.ldb schema > Setting up sam.ldb configuration data > Setting up display specifiers > Modifying display specifiers > Adding users container > Modifying users container > Adding computers container > Modifying computers container > Setting up sam.ldb data > Setting up well known security principals > Setting up sam.ldb users and groups > Setting up self join > set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_PARAMETER. > ERROR(runtime): uncaught exception - (-1073741811, 'Unexpected > information received') > File > "/usr/local/lib/python2.7/site-packages/samba/netcmd/__init__.py", > line 176, in _run return self.run(*args, **kwargs) > File > "/usr/local/lib/python2.7/site-packages/samba/netcmd/domain.py", line > 471, in run nosync=ldap_backend_nosync, > ldap_dryrun_mode=ldap_dryrun_mode) File > "/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py", > line 2175, in provision skip_sysvolacl=skip_sysvolacl) > File > "/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py", > line 1806, in provision_fill names.domaindn, lp, use_ntvfs) > File > "/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py", > line 1593, in setsysvolacl service=SYSVOL_SERVICE) > File "/usr/local/lib/python2.7/site-packages/samba/ntacls.py", line > 162, in setntacl > smbd.set_nt_acl(file, security.SECINFO_OWNER | > security.SECINFO_GROUP | security.SECINFO_DACL | > security.SECINFO_SACL, sd, service=service) > >I don't think you have identified the problem correctly. NAS4Free == Freebsd == ZFS ZFS == NFSv4 ACLs NFSv4 ACLs != Samba AD DC Sorry, but a Samba AD DC expects acl_xattr Rowland
Ok so how can I setup the SAMBA AD on the ZFS? I ma using this tutorial guide to do what I need it to do. Now, I do have the samba service being installed o a UFS formatted ZFS Volume. I know that without that, it won't work right. On Mon, Jul 3, 2017 at 12:52 PM, Rowland Penny via samba < samba at lists.samba.org> wrote:> On Mon, 3 Jul 2017 12:23:24 -0400 > phillip mobley via samba <samba at lists.samba.org> wrote: > > > Hello all, > > > > I am looking to setup a Samba AD on my NAS. I am currently using the > > latest version of NAS4Free which has Samba bundled into it already. > > > > However, I am getting a very nasty error when I go in to setup the > > samba service: > > > > Initializing... > > Looking up IPv4 addresses > > Looking up IPv6 addresses > > No IPv6 address will be assigned > > Setting up share.ldb > > Setting up secrets.ldb > > Setting up the registry > > Setting up the privileges database > > Setting up idmap db > > Setting up SAM db > > Setting up sam.ldb partitions and settings > > Setting up sam.ldb rootDSE > > Pre-loading the Samba 4 and AD schema > > Adding DomainDN: DC=testdomain,DC=local > > Adding configuration container > > Setting up sam.ldb schema > > Setting up sam.ldb configuration data > > Setting up display specifiers > > Modifying display specifiers > > Adding users container > > Modifying users container > > Adding computers container > > Modifying computers container > > Setting up sam.ldb data > > Setting up well known security principals > > Setting up sam.ldb users and groups > > Setting up self join > > set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_PARAMETER. > > ERROR(runtime): uncaught exception - (-1073741811, 'Unexpected > > information received') > > File > > "/usr/local/lib/python2.7/site-packages/samba/netcmd/__init__.py", > > line 176, in _run return self.run(*args, **kwargs) > > File > > "/usr/local/lib/python2.7/site-packages/samba/netcmd/domain.py", line > > 471, in run nosync=ldap_backend_nosync, > > ldap_dryrun_mode=ldap_dryrun_mode) File > > "/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py", > > line 2175, in provision skip_sysvolacl=skip_sysvolacl) > > File > > "/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py", > > line 1806, in provision_fill names.domaindn, lp, use_ntvfs) > > File > > "/usr/local/lib/python2.7/site-packages/samba/provision/__init__.py", > > line 1593, in setsysvolacl service=SYSVOL_SERVICE) > > File "/usr/local/lib/python2.7/site-packages/samba/ntacls.py", line > > 162, in setntacl > > smbd.set_nt_acl(file, security.SECINFO_OWNER | > > security.SECINFO_GROUP | security.SECINFO_DACL | > > security.SECINFO_SACL, sd, service=service) > > > > > > I don't think you have identified the problem correctly. > > NAS4Free == Freebsd == ZFS > > ZFS == NFSv4 ACLs > > NFSv4 ACLs != Samba AD DC > > Sorry, but a Samba AD DC expects acl_xattr > > Rowland > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba