Lorenzo Ortega - Soporte Técnico SC Cuadrado S.L. -
2004-Aug-25 10:34 UTC
[Samba] Can´t login domain admins
Hi,
I?ve installed fedora core 2 with samba 3.0.X. The pc is a PDC and I?ve
configured samba like I could see in this easy manual:
http://www.osnews.com/story.php?news_id=6684
(before this, I write for each pc : adduser -g "group" -d
/dev/null -s
/dev/null netbiosname$ > smbpasswd -a -m netbiosname )
My domain admin group is called smbadmins. I only have two kind of
groups which login in the domain, scc (user domain) and smbadmins ( Domain
admins).
From a W2k, a user logs correctly in the domain. The doiman users can
see the share directories in the pdc server, their home directory, but all
smbadmins can?t log in the domain, but the log in to pc w2k like local
admins and they can?t access to the share directories included its home
directory.
Any idea?, please.
This is my smb.conf:
max log size = 50
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
printcap name = /etc/printcap
domain logons = Yes
os level = 64
preferred master = Yes
domain master = Yes
dns proxy = No
wins support = Yes
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
admin users = @smbadmins
domain admin group = @smbadmins
printer admin = @smbadmins
hosts allow = 90.0.0.
printing = lprng
print command = lpr -r -P'%p' %s
lpq command = lpq -P'%p'
lprm command = lprm -P'%p' %j
lppause command = lpc hold '%p' %j
lpresume command = lpc release '%p' %j
queuepause command = lpc stop '%p'
queueresume command = lpc start '%p'
[homes]
comment = Home Directories
valid users = %S
writeable = yes
create mask = 0664
directory mask = 0775
browseable = no
Thanks in advance.
Lorenzo
Maybe you need to try "net groupmap list" and see if your group
smbadmins is mapped to a Windows group ("Domain Admins").
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/groupmapping.html#id2537782
Ganesh
Lorenzo Ortega - Soporte T?cnico SC Cuadrado S.L. - wrote:
>Hi,
>
> I?ve installed fedora core 2 with samba 3.0.X. The pc is a PDC and I?ve
>configured samba like I could see in this easy manual:
>http://www.osnews.com/story.php?news_id=6684
> (before this, I write for each pc : adduser -g "group" -d
/dev/null -s
>/dev/null netbiosname$ > smbpasswd -a -m netbiosname )
>
> My domain admin group is called smbadmins. I only have two kind of
>groups which login in the domain, scc (user domain) and smbadmins ( Domain
>admins).
> From a W2k, a user logs correctly in the domain. The doiman users can
>see the share directories in the pdc server, their home directory, but all
>smbadmins can?t log in the domain, but the log in to pc w2k like local
>admins and they can?t access to the share directories included its home
>directory.
>
>
> Any idea?, please.
>
> This is my smb.conf:
>
> max log size = 50
> socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
> printcap name = /etc/printcap
> domain logons = Yes
> os level = 64
> preferred master = Yes
> domain master = Yes
> dns proxy = No
> wins support = Yes
> idmap uid = 16777216-33554431
> idmap gid = 16777216-33554431
> admin users = @smbadmins
> domain admin group = @smbadmins
> printer admin = @smbadmins
> hosts allow = 90.0.0.
> printing = lprng
> print command = lpr -r -P'%p' %s
> lpq command = lpq -P'%p'
> lprm command = lprm -P'%p' %j
> lppause command = lpc hold '%p' %j
> lpresume command = lpc release '%p' %j
> queuepause command = lpc stop '%p'
> queueresume command = lpc start '%p'
>
>[homes]
> comment = Home Directories
> valid users = %S
> writeable = yes
> create mask = 0664
> directory mask = 0775
> browseable = no
>
>
> Thanks in advance.
>
> Lorenzo
>
>