Hello, I am running a Samba 4 AD server on Ubuntu 14.04. Is it possible to log whenevever a user successfully logs into a computer or whenever a successful LDAP authentication occurs? Ideally this would include both the username and the IP address from where the request originated. Is this possible? Thanks, Andrew
Am 07.12.2015 um 23:49 schrieb Andrew Martin:> I am running a Samba 4 AD server on Ubuntu 14.04. Is it possible to log > whenevever a user successfully logs into a computer or whenever a successful > LDAP authentication occurs? Ideally this would include both the username and the > IP address from where the request originated. Is this possible?consult the manpage for "log level" - while i honestly could puke about every samba log entry source file and line number cluttering the logs and hence reduced it to a minimum nobody but developers care about "../source3/auth/auth.c:305" and hence that should be logged only in a debug level log level = 1 auth:2 passdb:2 tdb:1 vfs:1 smb:1 locking:1 sam:1 winbind:1 idmap:1 quota:1 acls:0 msdfs:1 dmapi:1 registry:1 printdrivers:0 lanman:0 rpc_parse:0 rpc_srv:0 rpc_cli:0 [2015/12/08 00:56:03.049763, 2] ../source3/auth/auth.c:305(auth_check_ntlm_password) check_ntlm_password: authentication for user [reindl] -> [reindl] -> [reindl] succeeded -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 181 bytes Desc: OpenPGP digital signature URL: <http://lists.samba.org/pipermail/samba/attachments/20151208/6bde8987/signature.sig>
On 12/7/2015 5:49 PM, Andrew Martin wrote:> Hello, > > I am running a Samba 4 AD server on Ubuntu 14.04. Is it possible to log > whenevever a user successfully logs into a computer or whenever a successful > LDAP authentication occurs? Ideally this would include both the username and the > IP address from where the request originated. Is this possible? > > Thanks, > > Andrew >Not at the moment. I believe I recall it being something the developers are working to improve upon. -- -James
----- Original Message -----> From: "Reindl Harald" <h.reindl at thelounge.net> > To: samba at lists.samba.org > Sent: Monday, December 7, 2015 5:58:28 PM > Subject: Re: [Samba] Log all successful authentications > > > > Am 07.12.2015 um 23:49 schrieb Andrew Martin: > > I am running a Samba 4 AD server on Ubuntu 14.04. Is it possible to log > > whenevever a user successfully logs into a computer or whenever a > > successful > > LDAP authentication occurs? Ideally this would include both the username > > and the > > IP address from where the request originated. Is this possible? > > consult the manpage for "log level" - while i honestly could puke about > every samba log entry source file and line number cluttering the logs > and hence reduced it to a minimum > > nobody but developers care about "../source3/auth/auth.c:305" and hence > that should be logged only in a debug level > > log level = 1 auth:2 passdb:2 tdb:1 vfs:1 smb:1 locking:1 sam:1 > winbind:1 idmap:1 quota:1 acls:0 msdfs:1 dmapi:1 registry:1 > printdrivers:0 lanman:0 rpc_parse:0 rpc_srv:0 rpc_cli:0 > > > [2015/12/08 00:56:03.049763, 2] > ../source3/auth/auth.c:305(auth_check_ntlm_password) > check_ntlm_password: authentication for user [reindl] -> [reindl] -> > [reindl] succeeded > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/sambaReindl, Thanks for the clarification. Do you know if this also logs basic LDAP queries as well (e.g if a user logs into a webapp that supports LDAP authentication)? Or is this logging restricted to only Windows clients? Thanks, Andrew