thr3ads.net - samba - [Samba] Samba4 Centos 7

If this information is useful, please help other people find it:
Share via:

Rowland Penny

2016-Aug-30 14:37 UTC

[Samba] Samba4 Centos 7 - CPU 100%

On Tue, 30 Aug 2016 11:15:30 -0300
Maiquel Consalter <maiquelconsalter at gmail.com> wrote:
> >From reading his old smb.conf it appears it was, but I noticed
> >something:
> >Maiquel, can you run this command on a DC and report back with the
> >result.
> >ldbsearch -H /usr/local/samba/private/sam.ldb -b
>
>'CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=samdom,DC=example,DC=com'
> >-s sub '(objectClass=msSFU30DomainInfo)' cn | grep
'cn:' | awk
> >'{print $NF}'
> >Replace 'DC=samdom,DC=example,DC=com' with your domain DN
> >I also it take that ldap was running on the machine when you upgraded
> >it to an AD DC
> Follow the output.
> #> ldbsearch -H /usr/local/samba/private/sam.ldb -b \
>
'CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=campus,DC=domain,DC=br'
> -s sub '(objectClass=msSFU30DomainInfo)' cn | grep 'cn:' |
awk
> '{print \ $NF}'
> domain.br
> 
OK, that confirms it, in the last smb.conf you posted for the DC, there
are these lines:

        realm = DOMAIN.BR
        workgroup = DOMAIN.BR

You have just posted that your workgroup name is 'domain.br' now
leaving aside that having '.' in a workgroup name doesn't seem to be
a
good idea, your workgroup and realm in smb.conf are the same, yet the
alterations you made to the command I posted are
'DC=campus,DC=domain,DC=br'.
This means your dns name is 'campus.domain.br' and as your realm is
supposed to be the uppercase dns name, the line in smb.conf should be:

       realm = CAMPUS.DOMAIN.BR

Yet you also posted that you used '--realm=domain.br' during the
classicupgrade, so I am getting really confused now ;-)

Rowland

Maiquel Consalter

2016-Aug-30 14:51 UTC

head link

[Samba] Samba4 Centos 7 - CPU 100%

Let me show-you myconfig. Can be the error in CTRL V + CTRL C sorry about
that


/etc/samba/smb.conf
workgroup = DOMAIN.BR
realm = CAMPUS.DOMAIN.BR

/etc/krb5.conf
[libdefaults]
 dns_lookup_realm = false
 ticket_lifetime = 24h
 renew_lifetime = 7d
 forwardable = true
 rdns = false
 default_ccache_name = KEYRING:persistent:%{uid}
 dns_lookup_kdc = true
 default_realm = CAMPUS.DOMAIN.BR


2016-08-30 11:37 GMT-03:00 Rowland Penny via samba <samba at
lists.samba.org>:
> On Tue, 30 Aug 2016 11:15:30 -0300
> Maiquel Consalter <maiquelconsalter at gmail.com> wrote:
>
> > >From reading his old smb.conf it appears it was, but I noticed
> > >something:
> > >Maiquel, can you run this command on a DC and report back with the
> > >result.
> > >ldbsearch -H /usr/local/samba/private/sam.ldb -b
> > >'CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC>
samdom,DC=example,DC=com'
> > >-s sub '(objectClass=msSFU30DomainInfo)' cn | grep
'cn:' | awk
> > >'{print $NF}'
> > >Replace 'DC=samdom,DC=example,DC=com' with your domain DN
> > >I also it take that ldap was running on the machine when you
upgraded
> > >it to an AD DC
> > Follow the output.
> > #> ldbsearch -H /usr/local/samba/private/sam.ldb -b \
> > 'CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC>
campus,DC=domain,DC=br'
> > -s sub '(objectClass=msSFU30DomainInfo)' cn | grep
'cn:' | awk
> > '{print \ $NF}'
> > domain.br
> >
>
> OK, that confirms it, in the last smb.conf you posted for the DC, there
> are these lines:
>
>         realm = DOMAIN.BR
>         workgroup = DOMAIN.BR
>
> You have just posted that your workgroup name is 'domain.br' now
> leaving aside that having '.' in a workgroup name doesn't seem
to be a
> good idea, your workgroup and realm in smb.conf are the same, yet the
> alterations you made to the command I posted are
> 'DC=campus,DC=domain,DC=br'.
> This means your dns name is 'campus.domain.br' and as your realm is
> supposed to be the uppercase dns name, the line in smb.conf should be:
>
>        realm = CAMPUS.DOMAIN.BR
>
> Yet you also posted that you used '--realm=domain.br' during the
> classicupgrade, so I am getting really confused now ;-)
>
> Rowland
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>


-- 
Att,
Maiquel

Rowland Penny

2016-Aug-30 15:10 UTC

head link

[Samba] Samba4 Centos 7 - CPU 100%

On Tue, 30 Aug 2016 11:51:35 -0300
Maiquel Consalter <maiquelconsalter at gmail.com> wrote:
> Let me show-you myconfig. Can be the error in CTRL V + CTRL C sorry
> about that
> 
> 
> /etc/samba/smb.conf
> workgroup = DOMAIN.BR
> realm = CAMPUS.DOMAIN.BR
> 
> /etc/krb5.conf
> [libdefaults]
>  dns_lookup_realm = false
>  ticket_lifetime = 24h
>  renew_lifetime = 7d
>  forwardable = true
>  rdns = false
>  default_ccache_name = KEYRING:persistent:%{uid}
>  dns_lookup_kdc = true
>  default_realm = CAMPUS.DOMAIN.BR
> 
> 
> 2016-08-30 11:37 GMT-03:00 Rowland Penny via samba
> <samba at lists.samba.org>:
> 
> > On Tue, 30 Aug 2016 11:15:30 -0300
> > Maiquel Consalter <maiquelconsalter at gmail.com> wrote:
> >
> > > >From reading his old smb.conf it appears it was, but I
noticed
> > > >something:
> > > >Maiquel, can you run this command on a DC and report back
with
> > > >the result.
> > > >ldbsearch -H /usr/local/samba/private/sam.ldb -b
> > > >'CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC>
> samdom,DC=example,DC=com'
> > > >-s sub '(objectClass=msSFU30DomainInfo)' cn | grep
'cn:' | awk
> > > >'{print $NF}'
> > > >Replace 'DC=samdom,DC=example,DC=com' with your
domain DN
> > > >I also it take that ldap was running on the machine when you
> > > >upgraded it to an AD DC
> > > Follow the output.
> > > #> ldbsearch -H /usr/local/samba/private/sam.ldb -b \
> > > 'CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC>
> campus,DC=domain,DC=br'
> > > -s sub '(objectClass=msSFU30DomainInfo)' cn | grep
'cn:' | awk
> > > '{print \ $NF}'
> > > domain.br
> > >
> >
> > OK, that confirms it, in the last smb.conf you posted for the DC,
> > there are these lines:
> >
> >         realm = DOMAIN.BR
> >         workgroup = DOMAIN.BR
> >
> > You have just posted that your workgroup name is 'domain.br'
now
> > leaving aside that having '.' in a workgroup name doesn't
seem to
> > be a good idea, your workgroup and realm in smb.conf are the same,
> > yet the alterations you made to the command I posted are
> > 'DC=campus,DC=domain,DC=br'.
> > This means your dns name is 'campus.domain.br' and as your
realm is
> > supposed to be the uppercase dns name, the line in smb.conf should
> > be:
> >
> >        realm = CAMPUS.DOMAIN.BR
> >
> > Yet you also posted that you used '--realm=domain.br' during
the
> > classicupgrade, so I am getting really confused now ;-)
> >
> > Rowland
> >
> > --
> > To unsubscribe from this list go to the following URL and read the
> > instructions:  https://lists.samba.org/mailman/options/samba
> >
> 
> 
> 
OK, that it, I give up, every time you ask something, you get a
different answer, first they provisioned the domain and then it was
classicupgraded, first the realm is this, then it is this, I am
beginning to think we are dealing with another 'steve' entity ;-)

Rowland

Apparently Analagous Threads

Search for more apparently analagous threads

samba - Aug 2016 - Samba4 Centos 7 - CPU 100%

[Samba] Samba4 Centos 7 - CPU 100%

[Samba] Samba4 Centos 7 - CPU 100%

[Samba] Samba4 Centos 7 - CPU 100%

Apparently Analagous Threads