all result :) # ls -l /home/ --> on DC svad01 drwr-xr-x 4 root root 4096 oct. 30 15:57 home drwr-xr-x 4 root root 4096 oct. 30 15:57 profiles drwrwxr-x 4 root root 4096 oct. 30 15:57 public drwr-xr-x 4 root root 4096 oct. 30 15:57 services /etc/samba/smb.conf [global] netbios name = svad01 realm = SITE.SOCIETE.LOCAL workgroup = SITE dns forwarder = 127.0.0.1 server role = active directory domain controller idmap_ldb:use rfc2037 = yes log level = 3 [netlogon] path = /var/lig/samba/sysvol/site.societe.local/scripts read only = No [sysvol] path = /var/lib/samba/sysvol read only = No [public] path = /home/public read only = No *Philippe MALADJIAN Responsable informatique | administrateur système* Le 31/10/2018 à 14:04, Rowland Penny via samba a écrit :> On Wed, 31 Oct 2018 13:35:46 +0100 > Philippe Maladjian via samba <samba at lists.samba.org> wrote: > >> I've this : >> >> ls /home/ >> [...] >> drwxrwxr-x 2 root root 4096 oct. 12 11:43 public >> [...] >> > Please don't sanitise the output like that, what you have removed could > be relevant ;-) > > Is this on a DC or a Unix domain member ? > > Please post the smb.conf > > Rowland >
On Wed, 31 Oct 2018 14:29:50 +0100 Philippe Maladjian via samba <samba at lists.samba.org> wrote:> all result :) > > # ls -l /home/ --> on DC svad01 > > drwr-xr-x 4 root root 4096 oct. 30 15:57 home > drwr-xr-x 4 root root 4096 oct. 30 15:57 profiles > drwrwxr-x 4 root root 4096 oct. 30 15:57 public > drwr-xr-x 4 root root 4096 oct. 30 15:57 services >One thing is obvious, it is a DC, but you seem to be relying on Unix acl's, but this will not work, you need to use Windows . This is where we came in though, click on the 'security' tab and crash! Does 'Administrator' have a uidNumber attribute ?> /etc/samba/smb.conf > > [global] > netbios name = svad01 > realm = SITE.SOCIETE.LOCAL > workgroup = SITE > dns forwarder = 127.0.0.1Sorry, but you cannot forward dns to 127.0.0.1, you need to forward to a dns server outside your Samba domain.> server role = active directory domain controller > idmap_ldb:use rfc2037 = yes > log level = 3 > > [netlogon] > path = /var/lig/samba/sysvol/site.societe.local/scriptsI hope 'lig' is a typo.> read only = No > > [sysvol] > path = /var/lib/samba/sysvol > read only = No > > [public] > path = /home/public > read only = No >Rowland
It's ok now. I restarted the setup with this documentation https://www.tecmint.com/install-samba4-active-directory-ubuntu/ . The problem was that pam was badly set and could not recognize samba users. For example: id Administrator, did not recognize by the user. Thank's *Philippe MALADJIAN Responsable informatique | administrateur système* Le 31/10/2018 à 14:47, Rowland Penny via samba a écrit :> On Wed, 31 Oct 2018 14:29:50 +0100 > Philippe Maladjian via samba <samba at lists.samba.org> wrote: > >> all result :) >> >> # ls -l /home/ --> on DC svad01 >> >> drwr-xr-x 4 root root 4096 oct. 30 15:57 home >> drwr-xr-x 4 root root 4096 oct. 30 15:57 profiles >> drwrwxr-x 4 root root 4096 oct. 30 15:57 public >> drwr-xr-x 4 root root 4096 oct. 30 15:57 services >> > One thing is obvious, it is a DC, but you seem to be relying on Unix > acl's, but this will not work, you need to use Windows . This is where > we came in though, click on the 'security' tab and crash! > > Does 'Administrator' have a uidNumber attribute ? > >> /etc/samba/smb.conf >> >> [global] >> netbios name = svad01 >> realm = SITE.SOCIETE.LOCAL >> workgroup = SITE >> dns forwarder = 127.0.0.1 > Sorry, but you cannot forward dns to 127.0.0.1, you need to forward to > a dns server outside your Samba domain. > >> server role = active directory domain controller >> idmap_ldb:use rfc2037 = yes >> log level = 3 >> >> [netlogon] >> path = /var/lig/samba/sysvol/site.societe.local/scripts > I hope 'lig' is a typo. > >> read only = No >> >> [sysvol] >> path = /var/lib/samba/sysvol >> read only = No >> >> [public] >> path = /home/public >> read only = No >> > Rowland >