Hi All,
I have been scouring the net after coming to a halt whilst following
this tutorial http://samba.org/samba/docs/man/Samba-Guide/DomApps.html
and eventually thought I'd subscribe to the list for some help and
advice.
I am basically setting up a test box to get Squid to authenticate users
via Active Directory, I have had a few issues which I have sorted out
but this still has me stumped. The server has authed with the main AD
and I can get info when running wbinfo -u and wbinfo -g but moving onto
the next stage where I use ntlm_auth I receive this error:
[root@proxy-new ~]# /usr/bin/ntlm_auth --username=andy
--domain=WILTS.LOCAL
password:
could not obtain winbind separator!
Reading winbind reply failed! (0x01)
: (0x0)
I've tried changing winbind separator with a / and * and also left it
out as it defaults to / ? but still receive this error, I expect I am
overlooking something completely but been a few hours now and head
bashing is not far around the corner. Running testparm as below
hopefully will give you any details you need and if you require any
other info please just ask!
Running RHEL5 with samba-3.0.23c-2 - Running this under VMWare if that
makes any difference.
Linux proxy-new 2.6.18-8.el5 #1 SMP Fri Jan 26 14:15:21 EST 2007 i686
i686 i386 GNU/Linux
Connecting to a Windows 2003 R2 PDC, can ping either way via DNS names.
Many thanks in advance,
Andy Partington
[root@proxy-new ~]# testparm
Load smb config files from /etc/samba/smb.conf
Processing section "[homes]"
Processing section "[printers]"
Loaded services file OK.
Server role: ROLE_DOMAIN_MEMBER
Press enter to see a dump of your service definitions
[global]
workgroup = HEADOFFICE
realm = WILTS.LOCAL
security = ADS
password server = SVR-THEMIS.WILTS.LOCAL
log file = /var/log/samba/%m.log
max log size = 50
dns proxy = No
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind enum users = Yes
winbind enum groups = Yes
cups options = raw
[homes]
comment = Home Directories
read only = No
browseable = No
[printers]
comment = All Printers
path = /usr/spool/samba
printable = Yes
browseable = No
On Mon, 2007-12-03 at 16:40 +0000, Andy Partington wrote:> Hi All, > > > > I have been scouring the net after coming to a halt whilst following > this tutorial http://samba.org/samba/docs/man/Samba-Guide/DomApps.html > and eventually thought I'd subscribe to the list for some help and > advice. > > > > I am basically setting up a test box to get Squid to authenticate users > via Active Directory, I have had a few issues which I have sorted out > but this still has me stumped. The server has authed with the main AD > and I can get info when running wbinfo -u and wbinfo -g but moving onto > the next stage where I use ntlm_auth I receive this error: > > > > [root@proxy-new ~]# /usr/bin/ntlm_auth --username=andy > --domain=WILTS.LOCAL > > password: > > could not obtain winbind separator! > > Reading winbind reply failed! (0x01) > > : (0x0) > > > > I've tried changing winbind separator with a / and * and also left it > out as it defaults to / ? but still receive this error, I expect I am > overlooking something completely but been a few hours now and head > bashing is not far around the corner.Try 'wbinfo -p' (simple test message to winbind). The error you are seeing indicates to me that winbindd is not running, so we couldn't ask it that question. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Red Hat Inc. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.samba.org/archive/samba/attachments/20071204/a1b04309/attachment.bin