search for: tomict

Samba - General mailing list wrote > On Mon, 20 Nov 2017 10:43:58 -0700 (MST) > tomict via samba < > samba at .samba > > wrote: > On Unix there are users, groups and computers, whilst on > Windows there are users, groups and special users that are also > computers ;-) > > You posted that you have added uidNumber and gidNumber attributes to > t...

On Mon, 20 Nov 2017 13:27:18 -0700 (MST) tomict via samba <samba at lists.samba.org> wrote: > Samba - General mailing list wrote > > On Mon, 20 Nov 2017 10:43:58 -0700 (MST) > > tomict via samba &lt; > > > samba at .samba > > > &gt; wrote: > > On Unix there are users, groups and computers,...

Hi, Thanks for the quick reply. I read the links you suggested when I setup my domain member configuration. Followed the links a s closely as I could. Just read them again. Did you mean to point me at some part I missed in order to get the machine network accounts to be able to access the shares? Which part? I removed the 'winbind' lines and 'username map' lines. They are

On Sat, 20 Oct 2018 13:58:15 +0200 (CEST) tomict via samba <samba at lists.samba.org> wrote: > > > Just one thought, where does the nameserver on DC2 point ? > > Is it to DC1 ? > > or itself, DC2 ? > > > If it is pointing to itself, try pointing it at DC1 > > > Rowland > > The Nameserver on...

> Obviously there is something wrong with the dns updates on DC2. Any > ideas? > > Tom > >The problem is (as far as I understand it), you cannot write to an >RODC, it forwards write actions to a writeable DC, which then replicates >them back. >From the above, it is timing out, is there a firewall or similar in the >way ? Can you ping a DC from the RODC ? >

On Sat, 20 Oct 2018 17:04:20 +0200 (CEST) tomict via samba <samba at lists.samba.org> wrote: > > > OK, I have checked from Windows and my dns looks like this: > > DC2-| > > |- Forward Lookup Zone > > |- samdom.example.com > > You have much more dc2 entries, I only have 4 from my manual > add...

On Mon, 20 Nov 2017 10:43:58 -0700 (MST) tomict via samba <samba at lists.samba.org> wrote: > Hi, > > Thanks for the quick reply. > > I read the links you suggested when I setup my domain member > configuration. Followed the links a s closely as I could. Just read > them again. Did you mean to point me at some part...

Hi there, I am looking for the same solution in my environment. I have a question: Do you need to manually set up a password for the machine account PC050$ ? Thanks - Allen On 11/20/2017 6:12 PM, tomict via samba wrote: > Well! That does the trick. Thank you VERY much Rowland! > > > Samba - General mailing list wrote >> The way you have set smb.conf, PC050$ doesn't need a gidNumber, but it >> does need a uidNumber, so check for one, run this on the Samba DC: >> &g...

On Fri, 19 Oct 2018 22:09:27 +0200 (CEST) tomict via samba <samba at lists.samba.org> wrote: > Hi All, > > Is it correct that my RODC domain controller (DC2.ad.example.nl) has > only one entry in the (internal) DNS on domain controller DC1? It > seems to me that because of missing dns entries it is not used by > clients...

Samba - General mailing list wrote > Do you need to manually set up a password for the machine account PC050$ ? Manually is relative :-) I scripted the bunch of PC's by first finding out at which uidNumber I could start counting and then put everything (PC and uid Numbers) in a loop. You could use ldbmodify, but since it was a small edit and not much PC's I used ldbedit like this:

On Sat, 20 Oct 2018 00:06:40 +0200 (CEST) tomict via samba <samba at lists.samba.org> wrote: > Thanks for the quick reply Rowland > > >Never ran an RODC (yet), but this all sounds like the problems that > >used to occur when joining a second DC, try reading this: > > >https://wiki.samba.org/index.php/Verifying_...

...ent, the failed updates got resolved by themselves, as if the timeout was hiding the fact that the update finally succeeded. Now on other systems, updates had to be done manually as you did... We're still trying to understand what's different between the two. Le 20/10/2018 à 21:59, tomict via samba a écrit : >>> BTW how did you make this tree view? >> I have lots of time, so I typed it ;-) > > Thanks for your time! :-) > > >>> There seem to be two problems with my RODC DC2: >>> 1) DNS records were not generated when joining the domain. T...

On Mon, 20 Nov 2017 07:59:14 -0700 (MST) tomict via samba <samba at lists.samba.org> wrote: > Below is relevant info (I think) for my case > > What I did/tried: > -With ADUC (WS 2012) I added NIS domain 'samdom' to the Unix > attributes of users, groups, and also to computers (is the latter > nesecary?) -I test...

Well! That does the trick. Thank you VERY much Rowland! Samba - General mailing list wrote > The way you have set smb.conf, PC050$ doesn't need a gidNumber, but it > does need a uidNumber, so check for one, run this on the Samba DC: > > ldbsearch -H /usr/local/samba/private/sam.ldb -b > 'DC=samdom,DC=example,DC=com' -s sub >

Hi All, Is it correct that my RODC domain controller (DC2.ad.example.nl) has only one entry in the (internal) DNS on domain controller DC1? It seems to me that because of missing dns entries it is not used by clients in the ad domain I recently installed a second Domain Controller (DC2) along the smooth running first domain controller DC1. Samba version 4.8.5, Centos 7 Linux, further config

Thanks for the quick reply Rowland >Never ran an RODC (yet), but this all sounds like the problems that >used to occur when joining a second DC, try reading this: >https://wiki.samba.org/index.php/Verifying_and_Creating_a_DC_DNS_Record I Checked this, both the A record and the objectGUID CNAME records exist for DC1 and DC2 on bth servers. >You could try restarting Samba, there is

Hi all, I have exactly the same problem as the OP and tried the solution below, but I still get the error: 'Username IUCNNL\PC050$ is invalid on this system'. Should I map useraccount, enable Guest account, chang eunix directory permissions or things like that? Problem: My Windows 10 computers' machine accounts cannot acces shares on a domain member (samba 4.6 , id map = ad, centos

> OK, I have checked from Windows and my dns looks like this: > DC2-| > |- Forward Lookup Zone > |- samdom.example.com You have much more dc2 entries, I only have 4 from my manual additions. Your dns setup is the same as the setup that I had last year when testing with a second non-RODC Domain Controller. BTW how did you make this tree view? There seem to be two problems

>> BTW how did you make this tree view? >I have lots of time, so I typed it ;-) Thanks for your time! :-) >> There seem to be two problems with my RODC DC2: >> 1) DNS records were not generated when joining the domain. This is >> perhaps caused by some kind of timeout problem. >Not sure about this, but you could be correct. I can live with that. I only

----- Original Message ----- > From: "samba" <samba at lists.samba.org> > To: "samba" <samba at lists.samba.org> > Sent: Monday, 22 October, 2018 07:57:23 > Subject: Re: [Samba] AD RODC not being used because of missing DNS entries? > Hi, > <snip> > > One thing is that even after the timeouts got resolved, I still get a > weird