search for: samges

Displaying 20 results from an estimated 28 matches for "samges".

2016 Nov 18
2
group policy update fails
Ok just to verify. DC name= ad41.dc.samges.ru dnsdomain= dc.samges.ru Kerberos domain ?? Im guessing you kerberos to dnsdomain mapping is wrong. Can you post the /etc/hosts /etc/resolv.conf /etc/krb5.conf And, can you post this line u used for provisioning? Greetz, Louis > -----Oorspronkelijk bericht----- > Van: Mike L...
2016 Nov 18
2
DC server own hostname must be part of ad dc domain?
Hi all. If I have AD domain dc.samges.ru, how to setup a hostname, hosts file and resolv.conf file? DNS is samba internal type. Now I have settigs as here: (ad41 is dc with fsmo roles, ip 172.16.214.141, ad51 is a second dc, ip 172.16.214.151) root at ad51:~# hostname -s ad51 root at ad51:~# hostname -d samges.ru root at ad51:~# ho...
2016 Nov 08
2
DNS "internal db error", samba 4.1.9
Hi all! I operate an AD domain on samba4, provisioned some years ago. At provision some dns zones created, linked to my domain. I name domain as subdomain of my internet domain: AD dc.samges.ru, internet zone samges.ru Forward zones: dc.samges.ru _msdcs.dc.samges.ru All worked normal, but then my coworker create forward zone samges.ru (using windows RSAT tools) It serves some names, I can add names to it but not delete records from it. When I try, I got this error: root at ad51:~...
2016 Nov 21
2
group policy update fails
...DC_Troubleshooting https://wiki.samba.org/index.php/Verifying_and_Creating_a_DC_DNS_Record After you checked all and corrected verything, reboot first the DC with FSMO roles and the other DC('s) Greetz, Louis > -----Oorspronkelijk bericht----- > Van: Mike Lykov [mailto:combr at samges.ru] > Verzonden: vrijdag 18 november 2016 18:40 > Aan: L.P.H. van Belle > Onderwerp: Re: [Samba] group policy update fails > > 18.11.2016 16:13, L.P.H. van Belle ??????????: > > Oeps. I did hit the send button. > > > > Get this one also and can you mail me the outp...
2016 Nov 18
0
DC server own hostname must be part of ad dc domain?
See inline comments: On Fri, 18 Nov 2016 14:49:28 +0400 Mike Lykov via samba <samba at lists.samba.org> wrote: > Hi all. > > If I have AD domain dc.samges.ru, how to setup a hostname, hosts file > and resolv.conf file? DNS is samba internal type. > > Now I have settigs as here: > (ad41 is dc with fsmo roles, ip 172.16.214.141, ad51 is a second dc, > ip 172.16.214.151) > > root at ad51:~# hostname -s > ad51 > root at ad51...
2016 Nov 18
0
group policy update fails
18.11.2016 16:45, L.P.H. van Belle via samba пишет: > Ok just to verify. > > DC name= > ad41.dc.samges.ru > > dnsdomain= dc.samges.ru yes > Kerberos domain ?? /etc/krb5.conf [libdefaults] default_realm = DC.SAMGES.RU dns_lookup_realm = false dns_lookup_kdc = true > Im guessing you kerberos to dnsdomain mapping is wrong. > Can you post the > /etc...
2016 Nov 21
0
group policy update fails
...in the base of you setup. yes, and it is a server own local hostname see "DC server own hostname must be part of ad dc domain?" thread your script relies on "hostname -d" output, but my server have hostname domain != AD DC domain hostname domain : root at ad51:~# hostname -d samges.ru AD DC domain: dc.samges.ru local fqdn hostname for server root at ad51:~# hostname -f ad51.samges.ru server in ad dc domain: root at ad51:/var/log/samba# host -t A ad51.dc.samges.ru ad51.dc.samges.ru has address 172.16.214.151 > Check all DC's for ipnumbers (A) and PTR records. >...
2016 Nov 08
0
DNS "internal db error", samba 4.1.9
...11:20:07 +0400 Mike Lykov via samba <samba at lists.samba.org> wrote: > Hi all! > > I operate an AD domain on samba4, provisioned some years ago. At > provision some dns zones created, linked to my domain. > > I name domain as subdomain of my internet domain: > AD dc.samges.ru, internet zone samges.ru > > Forward zones: > dc.samges.ru > _msdcs.dc.samges.ru > > All worked normal, but then my coworker create forward zone > samges.ru (using windows RSAT tools) > > It serves some names, I can add names to it but not delete records > from...
2016 Nov 14
0
are errors in LDAP replicate?
...database we have some errors, which samba-tool dbcheck cannot fix. for example: ----------------------- samba-tool dbcheck --fix (.... many similar errors ...) ERROR: parent object not found for DC=SAMG62\0ADEL:ccc70e60-4086-49b0-86f0-e5b4af86666d,CN=Deleted Objects,DC=Domai nDnsZones,DC=dc,DC=samges,DC=ru Move object DC=SAMG62\0ADEL:ccc70e60-4086-49b0-86f0-e5b4af86666d,CN=Deleted Objects,DC=DomainDnsZones,DC=dc,DC=samg es,DC=ru into LostAndFound? [YES] Renamed object DC=SAMG62\0ADEL:ccc70e60-4086-49b0-86f0-e5b4af86666d,CN=Deleted Objects,DC=DomainDnsZones,DC=dc,DC=s amges,DC=ru into lostAn...
2016 Dec 19
2
[Announce] Samba 4.5.3, 4.4.8 and 4.3.13 Security Releases Available for Download
...at is right configuration in this case? > > on DC I have only an > idmap_ldb:use rfc2307 = yes > > string in my smb.conf, and > > on member server I have an > > idmap config *:backend = tdb > idmap config *:range = 30001-40000 > idmap config SAMGES:backend = ad > idmap config SAMGES:schema_mode = rfc2307 > idmap config SAMGES:range = 10000-20000 > > winbind nss info = rfc2307 > winbind trusted domains only = no > winbind use default domain = yes > winbind enum users = yes > winbind...
2016 Nov 18
1
DC server own hostname must be part of ad dc domain?
18.11.2016 15:22, Rowland Penny via samba пишет: >> root at ad51:~# hostname -f >> ad51.samges.ru >> Must I have an $SERV.$ADDOMAIN hostname, like ad51.dc.samges.ru ? > Yes > >> If I change hostname now, what will happen in AD domain ? > > Your machine will not be found. But it can be found via DNS, why changing local (for this server) hostname affects this? How to...
2017 Mar 27
8
Provision new domain keeping users and passwords
Hello, I try to add a new dc to my domain, but the sysadmin installed the main dc left misconfigured dns zones that I can not remove. ¿Is it possible to provision the domain again using new samba as main dc Keeping users and passwords Of the previous dc? The current main dc runs samba 4.4. Best regards, Santiago. -- Santiago Londoño Mejía Analista de Infraestructura t. (574) 605 25
2016 Dec 19
2
[Announce] Samba 4.5.3, 4.4.8 and 4.3.13 Security Releases Available for Download
Release Announcements --------------------- This is a security release in order to address the following CVEs: o CVE-2016-2123 (Samba NDR Parsing ndr_pull_dnsp_name Heap-based Buffer Overflow Remote Code Execution Vulnerability). o CVE-2016-2125 (Unconditional privilege delegation to Kerberos servers in trusted realms). o CVE-2016-2126 (Flaws in Kerberos PAC validation can trigger
2016 Dec 19
2
[Announce] Samba 4.5.3, 4.4.8 and 4.3.13 Security Releases Available for Download
Release Announcements --------------------- This is a security release in order to address the following CVEs: o CVE-2016-2123 (Samba NDR Parsing ndr_pull_dnsp_name Heap-based Buffer Overflow Remote Code Execution Vulnerability). o CVE-2016-2125 (Unconditional privilege delegation to Kerberos servers in trusted realms). o CVE-2016-2126 (Flaws in Kerberos PAC validation can trigger
2016 Dec 19
0
[Announce] Samba 4.5.3, 4.4.8 and 4.3.13 Security Releases Available for Download
...> on DC I have only an > >       idmap_ldb:use rfc2307 = yes > > > > string in my smb.conf, and > > > > on member server I have an > > > >      idmap config *:backend = tdb > >      idmap config *:range = 30001-40000 > >      idmap config SAMGES:backend = ad > >      idmap config SAMGES:schema_mode = rfc2307 > >      idmap config SAMGES:range = 10000-20000 > > > >      winbind nss info = rfc2307 > >      winbind trusted domains only = no > >      winbind use default domain = yes > >      winbind e...
2016 Nov 17
3
group policy update fails
We can login just fine but Group Policy Update is throwing an error gpupdate Updating Policy... User policy could not be updated successfully. The following errors were encount ered: The processing of Group Policy failed. Windows could not determine if the user a nd computer accounts are in the same forest. Ensure the user domain name matches the name of a trusted domain that resides in
2016 Nov 01
2
Right way to restore deleted objects (in samba 4.1 or newer with or without "ad recycle bin")
...ike "Not moving object DC=MYCOMP137\0ADEL:55eb09d2-26a4-4226-9d55-d36cfb37dd34,CN=Deleted Objects,DC=DomainDnsZones,DC=dc,DC=mydom,DC=ru into LostAndFound ERROR: parent object not found for DC=MYCOMP18\0ADEL:8f40e027-6757-44e8-b5ee-3651ab0421b0,CN=Deleted Objects,DC=DomainDnsZones,DC=dc,DC=samges,DC=ru" If i run samba-tool dbcheck --fix, is it safe to fix it? Second question is about lost attributes after restore by this methods. Many attributes are lost, and after restore deleted machine account that computer cannot login to domain, saying "there are no trust with that domain&...
2017 Dec 15
4
DNS issue with clean install of samba 4.5.12-Debian
...u want to access it, and you can setup you server much more secure with some basic steps. But thats how i see it, there might be better ways, but this works very good for me. I hope this helps a bit. Greetz, Louis > -----Oorspronkelijk bericht----- > Van: Mike Lykov [mailto:combr at samges.ru] > Verzonden: vrijdag 15 december 2017 8:47 > Aan: L.P.H. van Belle > Onderwerp: Re: [Samba] DNS issue with clean install of samba > 4.5.12-Debian > > 11.12.2017 20:03, L.P.H. van Belle via samba ??????????: > > Hai James, > > > > Can you try this one for...
2017 Dec 11
4
DNS issue with clean install of samba 4.5.12-Debian
On 12/8/2017 2:54 PM, Taylor Hammerling via samba wrote: > Glad you guys replied, here is my output :D > > root at dc1:~# ./samba-setup-checkup.sh > Check hostnames : Ok > ./samba-setup-checkup.sh: line 89: [: too many arguments > Checking detected host ipnumbers from resolv.conf and default gateway > Ping gateway ip : 172.28.0.1 : Ok > ping nameserver1: 172.28.255.49 : Ok
2016 Nov 25
2
Change AD DC IP address
Hi All! I have an AD domain with two DC. I will need to join third DC to existing domain and then change it ip address. I found thos page on wiki: https://wiki.samba.org/index.php/Change_IP_address_of_an_Samba_AD_DC Have somebody a real exprerience with this? Other clients and servers rely only on dns records, what records? (which list of records I may check to test that it all points to new