search for: arthur_ramsey

...renew until 11/27/13 15:59:55 Samba client: 3.6.9 Samba4 PDC: 4.1.1 This was my starting place: https://wiki.samba.org/index.php/Authenticating_other_services_against_AD. I also have searched google extensively. Any help would be appreciated. -- Arthur Ramsey Systems Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not the intended recipient, any use or disclosure of this information is STRICTLY PROHIBITED; you are requested to delete this e-mail and any attach...

...Enabled : TRUE Server DNS name : dc01.mediture.dom Server DN name : CN=NTDS Settings,CN=DC01,CN=Servers,CN=vsc,CN=Sites,CN=Configuration,DC=mediture,DC=dom TransportType: RPC options: 0x00000001 Warning: No NC replicated for Connection! -- Arthur Ramsey System Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not the intended recipient, any use or disclosure of this information is STRICTLY PROHIBITED; you are requested to delete this e-mail and any atta...

...1.mediture.dom > Server DN name : CN=NTDS Settings,CN=DC01,CN=Servers,CN=vsc,CN=Sites,CN=Configuration,DC=mediture,DC=dom > TransportType: RPC > options: 0x00000001 > Warning: No NC replicated for Connection! > -- > Arthur Ramsey > System Administrator > Mediture > arthur_ramsey at mediture.com > 952.400.0323 -- Arthur Ramsey System Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not the intended recipient, any use or disclosure...

...N=vsc,CN=Sites,CN=Configuration,DC=mediture,DC=dom >>> TransportType: RPC >>> options: 0x00000001 >>> Warning: No NC replicated for Connection! >>> -- >>> Arthur Ramsey >>> System Administrator >>> Mediture >>> arthur_ramsey at mediture.com >>> 952.400.0323 >> > > Not sure exactly what your issue is but the NTTIME(0) is a bug. > -- Arthur Ramsey System Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, inclu...

...t; Settings,CN=DC01,CN=Servers,CN=vsc,CN=Sites,CN=Configuration,DC=mediture,DC=dom >> TransportType: RPC >> options: 0x00000001 >> Warning: No NC replicated for Connection! >> -- >> Arthur Ramsey >> System Administrator >> Mediture >> arthur_ramsey at mediture.com >> 952.400.0323 > Not sure exactly what your issue is but the NTTIME(0) is a bug. -- - James

Replication has been running smoothly until I upgraded to 4.5.0. I had various errors with all BDCs and a force sync didn't resolve it. I shutdown all BDCs, demoted them with --remove-other-dead-server then joined new BDCs with new names. At first replication was intermittently failing (consecutive failures counter kept resetting), but it seemed OK, just slow if anything. Now they all

...t it would need > tests this time, and to actually work. We may have to implement the > server-side in Samba, if we can't push the pre-digested hash values into > Cyrus SASL (or don't want to use it). > > Andrew Bartlett > -- Arthur Ramsey Systems Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not the intended recipient, any use or disclosure of this information is STRICTLY PROHIBITED; you are requested to delete this e-mail and any attach...

...e,DC=dom distinguishedName: CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=meditu re,DC=dom # returned 1 records # 1 entries # 0 referrals I now get a message "Unwilling to perform" when I access the UNIX Attributes tab in ADUC. -- Arthur Ramsey Systems Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not the intended recipient, any use or disclosure of this information is STRICTLY PROHIBITED; you are requested to delete this e-mail and any attac...

...ite during join, but how could I move them? Do I really need to demote, leave then join with site= parameter set? Well I already tried that, but had lots of issues with depromote. Before I get into that perhaps someone can share a better way? -- Arthur Ramsey Systems Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not the intended recipient, any use or disclosure of this information is STRICTLY PROHIBITED; you are requested to delete this e-mail and any attach...

...e "The RPC server is unavailable" when trying to connect to > any DC via Active Directory Users and Computers. > > I've had a ton of issues after upgrading to 4.5.0. Could I safely > upgrade? > > Thanks, > Arthur -- Arthur Ramsey System Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not the intended recipient, any use or disclosure of this information is STRICTLY PROHIBITED; you are requested to delete this e-mail and any attac...

Hello, I'm looking for a way to log the following attributes for all authentication activity (LDAP bind, Kerberos, SMB / CIFS, etc.). I would like to see: * Principle name (user name) * Source IP * Timestamp (including at least seconds if not milliseconds) * Authentication result (success / failure) * Reason for failure: bad password, account lockout, account expired,

That's too bad, I was trying to get the Vasco Identikey server working with samba4 as a backend for FIPS 140-2 compliant OTP, which will only bind with DIGEST-MD5. I guess I will have to join a Windows 2008 R2 to the domain as a domain controller. Thanks for clarifying, Arthur On 07/10/2015 04:38 AM, Andrew Bartlett wrote: > On Tue, 2015-07-07 at 15:10 -0500, Arthur Ramsey wrote:

I've googled and I believe that SASL method DIGEST-MD5 is supported and I see it in the samba startup, but it doesn't work. ldapsearch -Y DIGEST-MD5 -h dc03.mediture.dom SASL/DIGEST-MD5 authentication started ldap_sasl_interactive_bind_s: Operations error (1) additional info: SASL:[DIGEST-MD5]: Failed to start authentication backend: NT_STATUS_INVALID_PARAMETER [root at dc03 ~]# samba

...able" when trying to connect to >> any DC via Active Directory Users and Computers. >> >> I've had a ton of issues after upgrading to 4.5.0. Could I safely >> upgrade? >> >> Thanks, >> Arthur > -- Arthur Ramsey System Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not the intended recipient, any use or disclosure of this information is STRICTLY PROHIBITED; you are requested to delete this e-mail and any attac...

...have to look into that. > > This would make an excellent Google Summer of Code > project IMHO. It's going to take a little while > to get there, but I think this is the right way > to do things. > > Cheers, > > Jeremy. -- Arthur Ramsey System Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not the intended recipient, any use or disclosure of this information is STRICTLY PROHIBITED; you are requested to delete this e-mail and any attac...

...ator]: delete of 'OU=test,OU=Mediture_Workstations,OU=Mediture,DC=mediture,DC=dom' failed - (insufficient access rights) LDAP error 50 LDAP_INSUFFICIENT_ACCESS_RIGHTS - <> I am totally stumped. Any help would be greatly apperciated! -- Arthur Ramsey Systems Administrator Mediture arthur_ramsey at mediture.com 952.400.0323 This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not the intended recipient, any use or disclosure of this information is STRICTLY PROHIBITED; you are requested to delete this e-mail and any attach...

Error joining Linux member to Samba 4.5.0 DC. /usr/bin/net join -w MEDITURE -S dc01.mediture.dom -U Administrator Enter Administrator's password: Failed to join domain: failed to lookup DC info for domain 'MEDITURE.DOM' over rpc: Indicates the SID structure is not valid. ADS join did not work, falling back to RPC... Thanks, Arthur This e-mail and any attachments may contain

I was able to join as a different user, but I'm still concerned about that error. Thanks, Arthur On 10/20/2016 12:53 PM, Rowland Penny via samba wrote: > Can you post your smb.conf from the Linux domain member > > Rowland Here: http://pastebin.com/M9m8x1DZ This e-mail and any attachments may contain CONFIDENTIAL information, including PROTECTED HEALTH INFORMATION. If you are not

>> I would suggest you remove the 'password server' line, this will allow >> Samba to find the best DC to use. I use that because I've not see adequate load balancing otherwise (I provide a differently ordered list to half of the members). >> I also don't understand why you have a 10 million range for the >> BUILTIN users and only a 39,999 range for the

On 10/26/2016 01:29 PM, Andrew Bartlett wrote: > I'm very sceptical that this is the underlying issue, it just doesn't > line up with the error. I agree, I was surprised. I applied the patch for that issue trying to solve a different issue I was having on 4.4.5 and discovered that it was the source of this issue. > Have you filed a bug for the SID structure > issue, and