I am following the examples section 9.3 in the "Samba 3 By Example" book. I can SSH onto the samba server as an AD user but I cant mount a samba share. If I run wbinfo -u or -g it shows the users and groups BUT it doesn't show the short domain name, also if I run the getent commands they shouw details but no domain name. Can anyone offer any suggestions as to what may be wrong. Thanks Ian
Ian Harper wrote:> I am following the examples section 9.3 in the "Samba 3 By Example" book. > > I can SSH onto the samba server as an AD user but I cant mount a samba share.verify existing and valid kerberos ticket, append a "-o krb" to your smbmount.> If I run wbinfo -u or -g it shows the users and groups BUT it doesn't > show the short domain name, also if I run the getent commands they > shouw details but no domain name.this should be no problem using samba as an ad member; annoying log ouput can be suppressed by changing the log level.> > Can anyone offer any suggestions as to what may be wrong. > > Thanks > > Ian
Unfortunately its a windoze client trying to mount the samba share. On 28/11/05, Markus Klimke <klimke@tu-harburg.de> wrote:> Ian Harper wrote: > > I am following the examples section 9.3 in the "Samba 3 By Example" book. > > > > I can SSH onto the samba server as an AD user but I cant mount a samba share. > > verify existing and valid kerberos ticket, append a "-o krb" to your > smbmount. >
Hi Ian, please post your smb.conf for that. Ian Harper wrote:> Unfortunately its a windoze client trying to mount the samba share. > > On 28/11/05, Markus Klimke <klimke@tu-harburg.de> wrote: > >>Ian Harper wrote: >> >>>I am following the examples section 9.3 in the "Samba 3 By Example" book. >>> >>>I can SSH onto the samba server as an AD user but I cant mount a samba share. >> >>verify existing and valid kerberos ticket, append a "-o krb" to your >>smbmount. >>
On 28/11/05, markus <klimke@tu-harburg.de> wrote:> Hi Ian, please post your smb.conf for that. > > Ian Harper wrote: > > Unfortunately its a windoze client trying to mount the samba share. > > > > On 28/11/05, Markus Klimke <klimke@tu-harburg.de> wrote: > > > >>Ian Harper wrote: > >> > >>>I am following the examples section 9.3 in the "Samba 3 By Example" book. > >>> > >>>I can SSH onto the samba server as an AD user but I cant mount a samba share. > >> > >>verify existing and valid kerberos ticket, append a "-o krb" to your > >>smbmount. > >>#======================= Global Settings ====================================[global] log level = 1 workgroup = TEST server string = Samba Server printcap name = /etc/printcap load printers = yes printing = cups log file = /var/log/samba/%m.log max log size = 0 security = ads encrypt passwords = yes smb passwd file = /etc/samba/smbpasswd unix password sync = Yes passwd program = /usr/bin/passwd %u passwd chat = *New*password* %n\n *Retype*new*password* %n\n *passwd:*all*authentication*tokens*updated*successfully* pam password change = yes obey pam restrictions = yes local master = no os level = 33 domain master = no dns proxy = no # added for ADS stuff idmap uid = 10000-20000 idmap gid = 10000-20000 winbind use default domain = yes winbind enum users = yes winbind enum groups = yes winbind separator = % realm = TEST.SAMPLE.COM template shell = /bin/bash template homedir = /home/%U #============================ Share Definitions =============================[homes] comment = Home Directories browseable = no writable = yes valid users = %S create mode = 0664 directory mode = 0775 [printers] comment = All Printers path = /var/spool/samba browseable = no guest ok = no writable = no printable = yes [testit] path = /tmp/xyz valid users = xyz public = no writeable = yes printable = no create mask = 0765
Try adding the following options to [global]: netbios name = [Hostname in capital letters, not the FQDN] password server = [IP-Address(es) of your W2k3-Machines] winbind trusted domains only = Yes winbind nested groups = Yes Hope that helps. Ian Harper wrote:> On 28/11/05, markus <klimke@tu-harburg.de> wrote: > >>Hi Ian, please post your smb.conf for that. >> >>Ian Harper wrote: >> >>>Unfortunately its a windoze client trying to mount the samba share. >>> >>>On 28/11/05, Markus Klimke <klimke@tu-harburg.de> wrote: >>> >>> >>>>Ian Harper wrote: >>>> >>>> >>>>>I am following the examples section 9.3 in the "Samba 3 By Example" book. >>>>> >>>>>I can SSH onto the samba server as an AD user but I cant mount a samba share. >>>> >>>>verify existing and valid kerberos ticket, append a "-o krb" to your >>>>smbmount. >>>> > > #======================= Global Settings ====================================> [global] > > log level = 1 > workgroup = TEST > server string = Samba Server > printcap name = /etc/printcap > load printers = yes > printing = cups > log file = /var/log/samba/%m.log > max log size = 0 > security = ads > encrypt passwords = yes > smb passwd file = /etc/samba/smbpasswd > unix password sync = Yes > passwd program = /usr/bin/passwd %u > passwd chat = *New*password* %n\n *Retype*new*password* %n\n > *passwd:*all*authentication*tokens*updated*successfully* > pam password change = yes > obey pam restrictions = yes > local master = no > os level = 33 > domain master = no > dns proxy = no > # added for ADS stuff > > idmap uid = 10000-20000 > idmap gid = 10000-20000 > winbind use default domain = yes > winbind enum users = yes > winbind enum groups = yes > winbind separator = % > realm = TEST.SAMPLE.COM > template shell = /bin/bash > template homedir = /home/%U > > #============================ Share Definitions =============================> [homes] > comment = Home Directories > browseable = no > writable = yes > valid users = %S > create mode = 0664 > directory mode = 0775 > [printers] > comment = All Printers > path = /var/spool/samba > browseable = no > guest ok = no > writable = no > printable = yes > [testit] > path = /tmp/xyz > valid users = xyz > public = no > writeable = yes > printable = no > create mask = 0765