My smb.conf
# Global parameters
[global]
workgroup = domain
realm = domain.cu
netbios name = SAMBA
server role = active directory domain controller
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl,
winbind, ntp_signd, kcc, dnsupdate
idmap_ldb:use rfc2307 = yes
printcap name = /dev/null
load printers = no
printing = bsd
template shell = /bin/bash
#--Debug Logging Information
log file = /usr/local/samba/var/LOGS/%U.%m.log
log level = 3
debug timestamp = yes
syslog = 3
debug uid = Yes
debug pid = Yes
[netlogon]
path = /usr/local/samba/var/locks/sysvol/eccmg.cupet.cu/scripts
read only = No
[sysvol]
path = /usr/local/samba/var/locks/sysvol
read only = No
> for sysvol ??
> im use-ing for sysvol for example.
> [sysvol]
> path = /home/samba/sysvol
> read only = No
> acl_xattr:ignore system acls = yes
> acl_xattr:ignore, because of only windows pc's are connecting to
sysvol..
>
> so im saying your smb.conf is setup wrong.
>
> Greetz,
>
> Louis
>
>> -----Oorspronkelijk bericht-----
>> Van: samba [mailto:samba-bounces at lists.samba.org] Namens
>> sandy.napoles at eccmg.cupet.cu
>> Verzonden: dinsdag 11 augustus 2015 20:04
>> Aan: samba at lists.samba.org
>> Onderwerp: Re: [Samba] Error
>>
>> Sorry
>>
>> 1 * what operating system = Debian 7
>> 2 * what was the previous version = 4.2.1
>> 3 * self compiled or packages = Download the last
>> version from www.samba.org and ./configure & make &
make-install
>>
>> --
>> To unsubscribe from this list go to the following URL and read the
>> instructions: https://lists.samba.org/mailman/options/samba
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
On 12/08/15 14:51, sandy.napoles at eccmg.cupet.cu wrote:> My smb.conf > > # Global parameters > [global] > workgroup = domain > realm = domain.cu > netbios name = SAMBA > server role = active directory domain controller > server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbind, ntp_signd, kcc, dnsupdate > idmap_ldb:use rfc2307 = yes > > printcap name = /dev/null > load printers = no > printing = bsd > template shell = /bin/bash > > #--Debug Logging Information > log file = /usr/local/samba/var/LOGS/%U.%m.log > log level = 3 > debug timestamp = yes > syslog = 3 > debug uid = Yes > debug pid = Yes > > [netlogon] > path = /usr/local/samba/var/locks/sysvol/eccmg.cupet.cu/scripts > read only = No > > [sysvol] > path = /usr/local/samba/var/locks/sysvol > read only = No > > > > > > > > >> for sysvol ?? >> im use-ing for sysvol for example. >> [sysvol] >> path = /home/samba/sysvol >> read only = No >> acl_xattr:ignore system acls = yes >> acl_xattr:ignore, because of only windows pc's are connecting to sysvol.. >> >> so im saying your smb.conf is setup wrong. >> >> Greetz, >> >> Louis >> >>> -----Oorspronkelijk bericht----- >>> Van: samba [mailto:samba-bounces at lists.samba.org] Namens >>> sandy.napoles at eccmg.cupet.cu >>> Verzonden: dinsdag 11 augustus 2015 20:04 >>> Aan: samba at lists.samba.org >>> Onderwerp: Re: [Samba] Error >>> >>> Sorry >>> >>> 1 * what operating system = Debian 7 >>> 2 * what was the previous version = 4.2.1 >>> 3 * self compiled or packages = Download the last >>> version from www.samba.org and ./configure & make & make-install >>> >>> -- >>> To unsubscribe from this list go to the following URL and read the >>> instructions: https://lists.samba.org/mailman/options/samba >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/sambaOK, there could be several things going wrong here: Do you have /usr/local/samba/bin and /usr/local/samba/sbin at the start of your PATH ? You have (in smb.conf) workgroup = domain realm = domain.cu path = /usr/local/samba/var/locks/sysvol/eccmg.cupet.cu/scripts So, is your AD realm 'eccmg.cupet.cu' ? (it shouldn't be as this would make it resolvable from the internet) If it is, then (by substitution) 'domain' is 'eccmg.cupet' which would mean your workgroup name has a dot in it, not really recommended. Is there any earlier version of samba4 installed (i.e. distro package etc) Rowland
OK, there could be several things going wrong here: Do you have /usr/local/samba/bin and /usr/local/samba/sbin at the start of your PATH ? -----> Yes I have both, in /usr/local/samba there's a folder bin and sbin You have (in smb.conf) workgroup = domain realm = domain.cu -----> sorry, the correct way is workgroup = ECCMG realm = ECCMG.CUPET.CU path = /usr/local/samba/var/locks/sysvol/eccmg.cupet.cu/scripts Can you helpme, please.
On 12/08/15 15:44, sandy.napoles at eccmg.cupet.cu wrote:> OK, there could be several things going wrong here: > Do you have /usr/local/samba/bin and /usr/local/samba/sbin at the start of your PATH ? > -----> Yes I have both, in /usr/local/samba there's a folder bin and sbinEr, no, if you open a terminal, type 'env', then amongst the output there will be a line that starts with 'PATH'. This is the order in which to check for an executable, it need to start like this: PATH=/usr/local/samba/sbin:/usr/local/samba/bin:~~~~~ and so on. To change it, type 'export PATH=/usr/local/samba/sbin:/usr/local/samba/bin:$PATH' This will set it for the current session, your homework is to find out how to set it permanently :-D Rowland> > You have (in smb.conf) > workgroup = domain > realm = domain.cu > > -----> sorry, the correct way is > workgroup = ECCMG > realm = ECCMG.CUPET.CU > path = /usr/local/samba/var/locks/sysvol/eccmg.cupet.cu/scripts > > Can you helpme, please. >
On 08/12/2015 10:16 AM, Rowland Penny wrote:> On 12/08/15 14:51, sandy.napoles at eccmg.cupet.cu wrote: >> My smb.conf >> >> # Global parameters >> [global] >> workgroup = domain >> realm = domain.cu >> netbios name = SAMBA >> server role = active directory domain controller >> server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, >> drepl, winbind, ntp_signd, kcc, dnsupdate >> idmap_ldb:use rfc2307 = yes >> >> printcap name = /dev/null >> load printers = no >> printing = bsd >> template shell = /bin/bash >> >> #--Debug Logging Information >> log file = /usr/local/samba/var/LOGS/%U.%m.log >> log level = 3 >> debug timestamp = yes >> syslog = 3 >> debug uid = Yes >> debug pid = Yes >> >> [netlogon] >> path = /usr/local/samba/var/locks/sysvol/eccmg.cupet.cu/scripts >> read only = No >> >> [sysvol] >> path = /usr/local/samba/var/locks/sysvol >> read only = No >> >> >> >> >> >> >> >> >>> for sysvol ?? >>> im use-ing for sysvol for example. >>> [sysvol] >>> path = /home/samba/sysvol >>> read only = No >>> acl_xattr:ignore system acls = yes >>> acl_xattr:ignore, because of only windows pc's are connecting to >>> sysvol.. >>> >>> so im saying your smb.conf is setup wrong. >>> >>> Greetz, >>> >>> Louis >>> >>>> -----Oorspronkelijk bericht----- >>>> Van: samba [mailto:samba-bounces at lists.samba.org] Namens >>>> sandy.napoles at eccmg.cupet.cu >>>> Verzonden: dinsdag 11 augustus 2015 20:04 >>>> Aan: samba at lists.samba.org >>>> Onderwerp: Re: [Samba] Error >>>> >>>> Sorry >>>> >>>> 1 * what operating system = Debian 7 >>>> 2 * what was the previous version = 4.2.1 >>>> 3 * self compiled or packages = Download the last >>>> version from www.samba.org and ./configure & make & make-install >>>> >>>> -- >>>> To unsubscribe from this list go to the following URL and read the >>>> instructions: https://lists.samba.org/mailman/options/samba >>> -- >>> To unsubscribe from this list go to the following URL and read the >>> instructions: https://lists.samba.org/mailman/options/samba > > OK, there could be several things going wrong here: > > Do you have /usr/local/samba/bin and /usr/local/samba/sbin at the > start of your PATH ? > > You have (in smb.conf) > > workgroup = domain > realm = domain.cu > > path = /usr/local/samba/var/locks/sysvol/eccmg.cupet.cu/scripts > > So, is your AD realm 'eccmg.cupet.cu' ? (it shouldn't be as this would > make it resolvable from the internet) > If it is, then (by substitution) 'domain' is 'eccmg.cupet' which would > mean your workgroup name has a dot in it, not really recommended. > > Is there any earlier version of samba4 installed (i.e. distro package > etc) > > Rowland > >And, what about the services he's invoking in 'smb.conf'? Wouldn't 'samba-tool testparm -v | grep services' eliminate some of those calls? (maybe I'm wrong -- I'm not paying attention right now)
On 12/08/15 16:23, sandy.napoles at eccmg.cupet.cu wrote:> when I type 'env' I have > > TERM=xterm > SHELL=/bin/bash > XDG_SESSION_COOKIE=a1d519cf22cd431fb15180d000000351-1439393059.403089-1335452928 > SSH_CLIENT=172.18.68.6 60620 22 > SSH_TTY=/dev/pts/0 > USER=root > MAIL=/var/mail/root > PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin > PWD=/root > LANG=en_US.UTF-8 > SHLVL=1 > HOME=/root > LOGNAME=root > SSH_CONNECTION=172.18.68.6 60620 172.18.68.8 22 > _=/usr/bin/env > > > 12 de agosto del 2015 11:02, "Rowland Penny" <rowlandpenny241155 at gmail.com> escribió: >> On 12/08/15 15:44, sandy.napoles at eccmg.cupet.cu wrote: >> >>> OK, there could be several things going wrong here: >>> Do you have /usr/local/samba/bin and /usr/local/samba/sbin at the start of your PATH ? >>> -----> Yes I have both, in /usr/local/samba there's a folder bin and sbin >> Er, no, if you open a terminal, type 'env', then amongst the output there will be a line that >> starts with 'PATH'. This is the order in which to check for an executable, it need to start like >> this: >> >> PATH=/usr/local/samba/sbin:/usr/local/samba/bin:~~~~~ and so on. >> To change it, type 'export PATH=/usr/local/samba/sbin:/usr/local/samba/bin:$PATH' >> >> This will set it for the current session, your homework is to find out how to set it permanently >> :-D >> >> Rowland >> >>> You have (in smb.conf) >>> workgroup = domain >>> realm = domain.cu >>> >>> -----> sorry, the correct way is >>> workgroup = XXXXX >>> realm = XXXXX.XXXXX.XX >>> path = /usr/local/samba/var/locks/sysvol/xxxxx.xxxxx.xx/scripts >>>> Can you helpme, please. >> -- To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/sambaPlease keep this on list. You need to update your PATH variable, if you are using Jessie then I haven't a clue how to do this, I will *not* use systemd. Rowland
hummm all is correct, if I install samba from sernet...can I have problem with my actual domain?????. My domain is working fine, only I have 3 problem. 1- The wallpaper is no aplicate in GPO with samba 4.2.3 2- When I run ./samba-tool ntacl sysvolcheck, err ldb_wrap open of idmap.ldb ERROR(<type 'exceptions.TypeError'>): uncaught exception - (2, 'No such file or directory') File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/__init__.py", line 175, in _run return self.run(*args, **kwargs) File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ntacl.py", line 249, in run lp) File "/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py", line 1730, in checksysvolacl direct_db_access) File "/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py", line 1681, in check_gpos_acl domainsid, direct_db_access) File "/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py", line 1625, in check_dir_acl fsacl = getntacl(lp, path, direct_db_access=direct_db_access, service=SYSVOL_SERVICE) File "/usr/local/samba/lib/python2.7/site-packages/samba/ntacls.py", line 73, in getntacl xattr.XATTR_NTACL_NAME) 3- When I run ./samba-tool ntacl sysvolreset, err connect_acl_xattr: setting 'inherit acls = true' 'dos filemode = true' and 'force unknown acl user = true' for service sysvol open: error=2 (No such file or directory) ERROR(runtime): uncaught exception - (-1073741823, 'Undetermined error') File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/__init__.py", line 175, in _run return self.run(*args, **kwargs) File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ntacl.py", line 218, in run lp, use_ntvfs=use_ntvfs) File "/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py", line 1616, in setsysvolacl set_gpos_acl(sysvol, dnsdomain, domainsid, domaindn, samdb, lp, use_ntvfs, passdb=s4_passdb) File "/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py", line 1521, in set_gpos_acl passdb=passdb) File "/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py", line 1484, in set_dir_acl setntacl(lp, path, acl, domsid, use_ntvfs=use_ntvfs, skip_invalid_chown=True, passdb=passdb, service=service) File "/usr/local/samba/lib/python2.7/site-packages/samba/ntacls.py", line 154, in setntacl smbd.set_nt_acl(file, security.SECINFO_OWNER | security.SECINFO_GROUP | security.SECINFO_DACL | security.SECINFO_SACL, sd, service=service)