search for: harp00n

Displaying 10 results from an estimated 10 matches for "harp00n".

2019 Jan 18
4
SSH SSO without keytab file
Hai, > -----Oorspronkelijk bericht----- > Van: Harpoon [mailto:harp00n at protonmail.com] > Verzonden: vrijdag 18 januari 2019 9:24 > Aan: L.P.H. van Belle > CC: samba at lists.samba.org > Onderwerp: Re: [Samba] SSH SSO without keytab file > > Thanks for the prompt reply! Your welkom. > > > I did see that you are using Administrator, an...
2019 Jan 18
3
SSH SSO without keytab file
I actually spent the entire last day getting 'ad' backend to work. Adding 'idmap config SAMDOM : backend = ad' and related lines in the client's smb.conf results in `getent passwd` ... Use : getent passwd username Check if wbinfo -u works also. As tip, if you try these. id username getent passwd username wbinfo -u | grep username If all work and show your usename,
2019 Jan 15
4
SSH SSO without keytab file
Hai, Lets start here. Handy for us to know. OS? Samba version? AD or member setup? And I suggest, set this in the ssh server. # GSSAPI options GSSAPIAuthentication yes Restart the ssh server and try to SSO login. If its a AD server this should work. Yes, you dont get home dir etc, end up in / after login, but lets check if this works. Greetz, Louis > -----Oorspronkelijk
2019 Jan 18
1
SSH SSO without keytab file
> > > ............ > > > > > > > You can, provided you have a user.map in smb.conf > > > > > > Oeps, Ah yes, forgot that, because he was testing on the DC. > > > And DC's dont use the user.mapping. > > > Thanks for the correction. > > > > With regard to tdb ipmap, I set this parameter on domain member. > >
2019 Jan 18
0
SSH SSO without keytab file
...gn that one a UID/GID. So try again with a normal user, that does have a UID/GID. If that does not work, please share these, because this should work fine. /etc/samba/smb.conf /etc/krb5.conf /etc/ssh/sshd_config Greetz, Louis > -----Oorspronkelijk bericht----- > Van: Harpoon [mailto:harp00n at protonmail.com] > Verzonden: vrijdag 18 januari 2019 7:15 > Aan: L.P.H. van Belle > CC: samba at lists.samba.org > Onderwerp: Re: [Samba] SSH SSO without keytab file > > > I was caught up in another issue so could't reply earlier. No problem at all, so are we ;-) &g...
2019 Jan 18
1
SSH SSO without keytab file
...- /etc/krb5.conf (Same of DC and clients) -------------------------------------- [libdefaults] default_realm = SAMDOM.EXAMPLE.COM dns_lookup_realm = false dns_lookup_kdc = true Thanks for your help! > > -----Oorspronkelijk bericht----- > > Van: Harpoon [mailto:harp00n at protonmail.com] > > Verzonden: vrijdag 18 januari 2019 7:15 > > Aan: L.P.H. van Belle > > CC: samba at lists.samba.org > > Onderwerp: Re: [Samba] SSH SSO without keytab file > > I was caught up in another issue so could't reply earlier. > > No problem at a...
2019 Jan 24
0
`getent passwd` not working with ad backend
> Did you assing uid/gid's to the user/groups? > https://wiki.samba.org/index.php/Maintaining_Unix_Attributes_in_AD_using_ADU > C I added uid/gid to the new users and groups. I dont have access to ADUC so can't check atm. Here's how I added new group: `samba-tool group add lag --gid-number 16000 --nis-domain SAMDOM` Here's how I added new user: `samba-tool user
2019 Jan 18
3
SSH SSO without keytab file
> ............ > > > You can, provided you have a user.map in smb.conf > > Oeps, Ah yes, forgot that, because he was testing on the DC. > And DC's dont use the user.mapping. > > Thanks for the correction. With regard to tdb ipmap, I set this parameter on domain member. Domain controller has no such parameter set. I'll look into the other useful suggestions you
2019 Jan 24
1
`getent passwd` not working with ad backend
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ On Thursday, January 24, 2019 9:33 AM, Rowland Penny via samba <samba at lists.samba.org> wrote: > On Thu, 24 Jan 2019 08:57:21 +0000 > Harpoon via samba samba at lists.samba.org wrote: > > > Hi all, > > I've been reading and it seems like ad backend has many features that > > I'd like to use. However, despite browsing many
2019 Jan 24
5
`getent passwd` not working with ad backend
Hi all, I've been reading and it seems like ad backend has many features that I'd like to use. However, despite browsing many forums and docs, I am still unable to get domain users list using `getent passwd` while using `ad backend`. If I change backend to tdb, then I can get usernames on the clients. Authentication works fine too when using `tdb backend`. I think the only issue is with