*************************************** Hello Rowland; thanks for write me back. Is that first I had to join the PC to the domain :-O Now it does work: $ sudo net ads join -U Administrator [sudo] password for administrator: ? Enter Administrator's password: Using short domain name -- ATGTM00 Joined 'P107' to dns domain 'gtm.onat.gob.cu' $ sudo systemctl start winbind.service $ sudo systemctl status winbind.service -l ??winbind.service - Samba Winbind Daemon ??Loaded: loaded (/lib/systemd/system/winbind.service; enabled; vendor preset: enabled) ??Active:?active (running)?since Wed 2020-09-16 15:22:01 CDT; 28s ago ????Docs: man:winbindd(8) ??????????man:samba(7) ??????????man:smb.conf(5) Main PID: 11863 (winbindd) ??Status: "winbindd: ready to serve connections..." ???Tasks: 5 (limit: 2310) ??Memory: 6.4M ??CGroup: /system.slice/winbind.service ????????????11863 /usr/sbin/winbindd --foreground --no-process-group ????????????11865 winbindd: domain child [ATGTM00] ????????????11878 winbindd: domain child [P107] ????????????11879 winbindd: idmap child ????????????11880 winbindd: domain child [BUILTIN] sep 16 15:22:01 p107 systemd[1]: Starting Samba Winbind Daemon... sep 16 15:22:01 p107 winbindd[11863]:?[2020/09/16 15:22:01.215889, ?0] ../source3/winbindd/winbindd_cache.c:3160(initialize_winbindd_cache)? sep 16 15:22:01 p107 winbindd[11863]:???initialize_winbindd_cache: clearing cache and re-creating with version number 2? sep 16 15:22:01 p107 winbindd[11863]:?[2020/09/16 15:22:01.237277, ?0] ../lib/util/become_daemon.c:138(daemon_ready)? sep 16 15:22:01 p107 systemd[1]: Started Samba Winbind Daemon. sep 16 15:22:01 p107 winbindd[11863]:???daemon_ready: STATUS=daemon 'winbindd' finished starting up and ready to serve connections? $ sudo systemctl start smbd.service $ sudo systemctl status smbd.service -l ??????? ??smbd.service - Samba SMB Daemon ??Loaded: loaded (/lib/systemd/system/smbd.service; enabled; vendor preset: enabled) ??Active:?active (running)?since Wed 2020-09-16 15:22:14 CDT; 24s ago ????Docs: man:smbd(8) ??????????man:samba(7) ??????????man:smb.conf(5) ?Process: 11870 ExecStartPre=/usr/share/samba/update-apparmor-samba-profile (code=exited, status=0/SUCCESS) Main PID: 11874 (smbd) ??Status: "smbd: ready to serve connections..." ???Tasks: 4 (limit: 2310) ??Memory: 5.7M ??CGroup: /system.slice/smbd.service ????????????11874 /usr/sbin/smbd --foreground --no-process-group ????????????11876 /usr/sbin/smbd --foreground --no-process-group ????????????11877 /usr/sbin/smbd --foreground --no-process-group ????????????11881 /usr/sbin/smbd --foreground --no-process-group sep 16 15:22:13 p107 systemd[1]: Starting Samba SMB Daemon... sep 16 15:22:14 p107 systemd[1]: Started Samba SMB Daemon. sep 16 15:22:14 p107 smbd[11874]:?[2020/09/16 15:22:14.481831, ?0] ../lib/util/become_daemon.c:138(daemon_ready)? sep 16 15:22:14 p107 smbd[11874]:???daemon_ready: STATUS=daemon 'smbd' finished starting up and ready to serve connections? $ sudo systemctl start nmbd.service $ sudo systemctl status nmbd.service -l ??nmbd.service - Samba NMB Daemon ??Loaded: loaded (/lib/systemd/system/nmbd.service; enabled; vendor preset: enabled) ??Active:?active (running)?since Wed 2020-09-16 15:22:51 CDT; 1s ago ????Docs: man:nmbd(8) ??????????man:samba(7) ??????????man:smb.conf(5) Main PID: 11896 (nmbd) ??Status: "nmbd: ready to serve connections..." ???Tasks: 1 (limit: 2310) ??Memory: 1.7M ??CGroup: /system.slice/nmbd.service ????????????11896 /usr/sbin/nmbd --foreground --no-process-group sep 16 15:22:51 p107 systemd[1]: Starting Samba NMB Daemon... sep 16 15:22:51 p107 systemd[1]: Started Samba NMB Daemon. sep 16 15:22:51 p107 nmbd[11896]:?[2020/09/16 15:22:51.299422, ?0] ../lib/util/become_daemon.c:138(daemon_ready)? sep 16 15:22:51 p107 nmbd[11896]:???daemon_ready: STATUS=daemon 'nmbd' finished starting up and to ready to serve connections ************************************ ?Now verifying that everything was fine: $ getent passwd ATGTM00\\rommel.rodriguez rommel.rodriguez:*:11144:10513::/home/rommel.rodriguez:/bin/bash $ getent group ATGTM00\\informatica informatica:x:11142: ?It look tha be Ok;?but when I try to login as a user of my network and is impossible. If I try to add a user locally it is denied, because the user exists in Active Directory, and it is denied: $ sudo useradd -c "Rommel Rodriguez Toirac" rommel.rodriguez [sudo] password for administrator: ? useradd: el usuario ?rommel.rodriguez? ya existe How can i log in? What do I have to do? -- Rommel Rodriguez Toirac rommelrt at nauta.cu
On 17/09/2020 14:11, Rommel Rodriguez Toirac via samba wrote:> *************************************** > Hello Rowland; > thanks for write me back. > > > ?Now verifying that everything was fine: > > $ getent passwd ATGTM00\\rommel.rodriguez > rommel.rodriguez:*:11144:10513::/home/rommel.rodriguez:/bin/bash > > $ getent group ATGTM00\\informatica > informatica:x:11142: > > ?It look tha be Ok;?but when I try to login as a user of my network and is impossible.Can you log in as 'rommel.rodriguez' ?> > If I try to add a user locally it is denied, because the user exists in Active Directory, and it is denied: > > $ sudo useradd -c "Rommel Rodriguez Toirac" rommel.rodriguez > [sudo] password for administrator: > useradd: el usuario ?rommel.rodriguez? ya existeYou do not add users locally, you add them to AD, so that command should fail ;-) You need to add your users to AD with 'samba-tool user create', or ADUC or an ldap tool like LAM. Rowland
El 17 de septiembre de 2020 9:21:55 GMT-04:00, Rowland penny via samba <samba at lists.samba.org> escribi?:>On 17/09/2020 14:11, Rommel Rodriguez Toirac via samba wrote: >> *************************************** >> Hello Rowland; >> thanks for write me back. >> >> >> ?Now verifying that everything was fine: >> >> $ getent passwd ATGTM00\\rommel.rodriguez >> rommel.rodriguez:*:11144:10513::/home/rommel.rodriguez:/bin/bash >> >> $ getent group ATGTM00\\informatica >> informatica:x:11142: >> >> ?It look tha be Ok;?but when I try to login as a user of my network >and is impossible. >Can you log in as 'rommel.rodriguez' ? >> >> If I try to add a user locally it is denied, because the user exists >in Active Directory, and it is denied: >> >> $ sudo useradd -c "Rommel Rodriguez Toirac" rommel.rodriguez >> [sudo] password for administrator: >> useradd: el usuario ?rommel.rodriguez? ya existe > >You do not add users locally, you add them to AD, so that command >should >fail ;-) > >You need to add your users to AD with 'samba-tool user create', or ADUC > >or an ldap tool like LAM. > >Rowland > > > > >-- >To unsubscribe from this list go to the following URL and read the >instructions: https://lists.samba.org/mailman/options/sambaNo, I can not log in as rommel.rodriguez and this user exist in the samba4 ADDC. -- Rommel Rodriguez Toirac rommelrt at nauta.cu