Hello All. Been trying without avail to make idmap work with my AD so I can get "real" UID/GID for SSH logins on a CentOS_6 box. Have heard from several sources that idmap has seen some serious changes since 3.5 and decided to roll back from the "stock" 3.5 that comes with CentOS_6 to 3.4.8. I'd like to see if it has the same problems. Installed a clean build of CentOS_6.2. Stopped the samba service, removed the package using yum and excluded samba* from yum updates in /etc/yum.conf. Downloaded and extracted the 3.4.8 tarball. cd into samba-3.../source3 and ran: the autoconfig.sh script ./configure make make install copied the smb.init script from the packaging/RHEL/setup folder to /etc/init.d and made it executable chkconfig --add smb chkconfig smb on service smb start fails. Tries to start both smbd and nmbd and both fail. First I get errors about libraries. copied the libtalloc.so.1 file from /usr/local/samba/lib to /usr/lib64 fixed that one Then I get errors about not finding the binaries linked /usr/local/samba/sbin/smbd and nmbd to /sbin and fixed that one This feels like a hack. I also tried adding /usr/local/samba/sbin to the path. Also a hack but made no difference. Now if I try service smb start (or restart) I get failures from the init script. Or I can try smbd directly and I get no response (it appears to start) but "ps" shows that it didn't start. I've turned debug level and log level up to 3 in smb.conf (tried both arguments) but I get nothing in /var/log/syslog and nothing in any file in /var/log/samba when I try to start it. Forgive the anecdotal tone of the above, I'm working mostly from memory and have probably garbled a path or file name. Then again, I've been through these steps six or more times now. Am I missing something obvious? Hope to hear from you, Randy
On Tue, Jul 10, 2012 at 7:32 PM, Randy Rue <randyrue at gmail.com> wrote:> Hello All. > > Been trying without avail to make idmap work with my AD so I can get "real" > UID/GID for SSH logins on a CentOS_6 box. Have heard from several sources > that idmap has seen some serious changes since 3.5 and decided to roll back > from the "stock" 3.5 that comes with CentOS_6 to 3.4.8. I'd like to see if > it has the same problems.Save yourself some grief. Either go to www.samba.org for a more recent version, or look at: https://github.com/nkadel/samba-3.6.4-srpm for some useful and very buildable tools for a more recent release.> > Installed a clean build of CentOS_6.2. Stopped the samba service, removed > the package using yum and excluded samba* from yum updates in /etc/yum.conf. > > Downloaded and extracted the 3.4.8 tarball. > > cd into samba-3.../source3 and ran: > > the autoconfig.sh script > ./configure > make > make install > > copied the smb.init script from the packaging/RHEL/setup folder to > /etc/init.d and made it executable > chkconfig --add smb > chkconfig smb on > > > service smb start fails. Tries to start both smbd and nmbd and both fail. > > First I get errors about libraries. > copied the libtalloc.so.1 file from /usr/local/samba/lib to /usr/lib64 > fixed that one > > Then I get errors about not finding the binaries > linked /usr/local/samba/sbin/smbd and nmbd to /sbin and fixed that one > This feels like a hack. I also tried adding /usr/local/samba/sbin to the > path. Also a hack but made no difference. > > > Now if I try service smb start (or restart) I get failures from the init > script. > > Or I can try smbd directly and I get no response (it appears to start) but > "ps" shows that it didn't start. > > I've turned debug level and log level up to 3 in smb.conf (tried both > arguments) but I get nothing in /var/log/syslog and nothing in any file in > /var/log/samba when I try to start it. > > Forgive the anecdotal tone of the above, I'm working mostly from memory and > have probably garbled a path or file name. Then again, I've been through > these steps six or more times now. > > Am I missing something obvious? > > Hope to hear from you, > > Randy > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba
Jonathan, I appreciate the help you've given but you and I are having fundamentally different experiences with 3.5. I've tried everything you've suggested, as well as a bunch of conflicting suggestions from others, with no success. I've narrowed the problem down to the idmap --> ad settings in smb.conf and the best information I have right now suggests that something went wonky in the app sometime after 3.4.8. So right now my immediate objective is to get 3.4.8 running and see if the problem still occurs. A particular help would be at least getting some error in syslog or the samba logs to find out why the binary won't start. Randy -----Original Message----- From: Jonathan Buzzard [mailto:jonathan at buzzard.me.uk] Sent: Wednesday, July 11, 2012 1:29 AM To: Randy Rue Subject: Re: [Samba] compiling samba 3.4.8 on CentOS_6.2 On 11/07/12 00:32, Randy Rue wrote:> Hello All. > > Been trying without avail to make idmap work with my AD so I can get"real"> UID/GID for SSH logins on a CentOS_6 box. Have heard from several > sources that idmap has seen some serious changes since 3.5 and decided > to roll back from the "stock" 3.5 that comes with CentOS_6 to 3.4.8. > I'd like to see if it has the same problems.Why, it works just fine at least with the packages in CentOS 6.2. I cannot speak for CentOS 6.3 because it is just out, but I very much doubt it has broken it. JAB.
Too late to save grief, I've been grieving on this for weeks now. I'm rolling back to 3.4.8 because I heard from several sources that idmap against AD has broken at some point since then. I'd obviously prefer to install 3.4.8 from an RPM or (even better) a yum repository somewhere but can't seem to find any for this distro and/or version. I haven't heard from anywhere that the idmap --> ad problem is fixed in 3.6. Is it? If so, I'd be happy to try that instead. I confess I'm unfamiliar with how to use RPM's to install the source and then compile from there. Install the RPM and then from some newly created source folder I ./configure / make / make install / etc?>From the github link below, how do I get an actual rpm file to install?Can anyone point me toward a howto? Or I could get the "plain" source tarball from samba.org for some later version (that's where I'm getting 3.4.8). But it seems likely I'll have the same trouble with the daemon not starting. Or can anyone answer my actual question? For example, how to get logging working so I can get some clues on why the binary fails to start? Hope to hear from you. Randy -----Original Message----- From: Nico Kadel-Garcia [mailto:nkadel at gmail.com] Sent: Tuesday, July 10, 2012 6:07 PM To: Randy Rue Cc: samba at lists.samba.org Subject: Re: [Samba] compiling samba 3.4.8 on CentOS_6.2 On Tue, Jul 10, 2012 at 7:32 PM, Randy Rue <randyrue at gmail.com> wrote:> Hello All. > > Been trying without avail to make idmap work with my AD so I can get"real"> UID/GID for SSH logins on a CentOS_6 box. Have heard from several > sources that idmap has seen some serious changes since 3.5 and decided > to roll back from the "stock" 3.5 that comes with CentOS_6 to 3.4.8. > I'd like to see if it has the same problems.Save yourself some grief. Either go to www.samba.org for a more recent version, or look at: https://github.com/nkadel/samba-3.6.4-srpm for some useful and very buildable tools for a more recent release.> > Installed a clean build of CentOS_6.2. Stopped the samba service, > removed the package using yum and excluded samba* from yum updates in/etc/yum.conf.> > Downloaded and extracted the 3.4.8 tarball. > > cd into samba-3.../source3 and ran: > > the autoconfig.sh script > ./configure > make > make install > > copied the smb.init script from the packaging/RHEL/setup folder to > /etc/init.d and made it executable chkconfig --add smb chkconfig smb > on > > > service smb start fails. Tries to start both smbd and nmbd and both fail. > > First I get errors about libraries. > copied the libtalloc.so.1 file from /usr/local/samba/lib to /usr/lib64 > fixed that one > > Then I get errors about not finding the binaries linked > /usr/local/samba/sbin/smbd and nmbd to /sbin and fixed that one This > feels like a hack. I also tried adding /usr/local/samba/sbin to the > path. Also a hack but made no difference. > > > Now if I try service smb start (or restart) I get failures from the > init script. > > Or I can try smbd directly and I get no response (it appears to start) > but "ps" shows that it didn't start. > > I've turned debug level and log level up to 3 in smb.conf (tried both > arguments) but I get nothing in /var/log/syslog and nothing in any > file in /var/log/samba when I try to start it. > > Forgive the anecdotal tone of the above, I'm working mostly from > memory and have probably garbled a path or file name. Then again, I've > been through these steps six or more times now. > > Am I missing something obvious? > > Hope to hear from you, > > Randy > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba
Hi Miklos,> Hello Geza, > > I stand chastised and apologize. I didn't mean to hijack someone's thread. I also didn't plan to ask for help in Hungarian, and this is just a coincidence. > > However, if you can help me I'll take whatever I can get, so thank you. > > My question/problem is that I have no windows background at all and am trying to configure Samba with Active Directory. I also have no access to any windows machines to test my configuration so I don't know if it works. I believe I'm almost there but how do I know if it's really working? > > SWAT works fine, but Winbindd won't start. > > infadmnq:/>lssrc -g samba > Subsystem Group PID Status > smbd samba 14221530 active > nmbd samba 13893726 active > winbindd samba inoperative > > I ran testparm and it comes back clean. > > infadmnq:/>testparm > Load smb config files from /usr/lib/smb.conf > Processing section "[samba_infaQ]" > Loaded services file OK. > Server role: ROLE_DOMAIN_MEMBER > Press enter to see a dump of your service definitions > > [global] > workgroup = HUMC > security = DOMAIN > auth methods = winbind > password server = dchumc01, dchumc02 > client NTLMv2 auth = Yes > syslog = 3 > log file = /var/log/samba > ldap ssl = no > idmap uid = 10000-20000 > idmap gid = 10000-20000 > winbind enum users = Yes > winbind enum groups = Yes > > [samba_infaQ] > comment = Share for DBA SAs > path = /samba_infaQ > > I run: > > smbclient -L '\\fileserver1\DECN_Shared\' -U INFAservice > > and I get two pages of output starting like this: > > Sharename Type Comment > --------- ---- ------- > CHRT_Shared Disk CHRT Departmental Shared Files > HEDU_Shared Disk HEDU Departmental Shared Files > MREC_Shared Disk MREC Departmental Shared Files > PHBL_Shared Disk PHBL Departmental Shared Files > PHRM_Shared Disk PHRM Departmental Shared Files > SLAB_Shared Disk SLAB Departmental Shared Files > SPAS_Shared Disk SPAS Departmental Shared Files > SPTY_Shared Disk SPTY Departmental Shared Files > WomenChild Disk > > > Kosonok minden sekitsegett!! > > Miklos >First question: What does wbinfo -p, wbinfo -u and wbinfo -g returns? You wrote, that you have to authenticate your users against an AD. Have you joined it (e.g. net ads join -U username_of_an_AD_user_with_the_priviledge_of_joining (for example an administrator))? Regards Geza
I have been using them on servers, so there are no KDE/Gnome specific stuff there. They work fine, although I haven't tested them in GUI environment. Probably, samba packages could be uninstalled with `--nodeps` flag and then replaced with the SerNet ones. Anyway, rebuilding yourself from SRPMS and installing, or compiling from source you impact on your system the same way. --- wbr, Denis. On Thu, Jul 12, 2012 at 10:06 PM, Randy Rue <rrue at fhcrc.org> wrote:> It looks like to install these rpm's I first need to use yum to remove > all samba-related packages and a bunch of KDE and gnome stuff, is there a > way to make this work without gutting too much of the rest of the OS?**** > > ** ** > > Randy**** > > ** ** > > *From:* Denis Fateyev [mailto:denis at fateyev.com] > *Sent:* Wednesday, July 11, 2012 8:47 PM > > *To:* Randy Rue > *Cc:* samba at lists.samba.org > *Subject:* Re: [Samba] compiling samba 3.4.8 on CentOS_6.2**** > > ** ** > > Hello there, > > > In general, you may save efforts using precompiled binaries from the > SerNet team. > For example: http://ftp.sernet.de/pub/samba/3.6/rhel/6/x86_64/ > > --- > wbr, Denis.**** > >