search for: xaavz

...adm:rwx test.txt [root at dc1ucp ~]# getfacl test.txt # file: test.txt # owner: root # group: root user::rw- group::r-- group:adm:rwx mask::rwx other::r-- 2) rsync command I used #!/bin/bash PWDFILE=/usr/local/samba/etc/rsync-sysvol.secret SVOLPATH=/usr/local/samba/var/locks/sysvol/ ROPT="-XAavz --delete-after" rsync $ROPT --password-file=$PWDFILE rsync://sysvol-replication at 10.1.1.2/SysVol/ $SVOLPATH thank you Il 03/11/2017 09:50, mj via samba ha scritto: > Hi, > > Does your fs support xattr? > > Check here: https://wiki.samba.org/index.php/File_System_Suppor...

Hi I use /usr/bin/rsync -XAavz --log-file /var/log/sysvol-sync.log --delete-after -f"+ */" -f"- *" /var/lib/samba/sysvol root at DC2:/var/lib/samba && /usr/bin/unison &> /dev/null and works ok but not working with crontab */5 * * * * root /usr/bin/rsync -XAavz --log-file /var/log/sysvol...

Hello , ( samba 4.6.9 - centos 6 DC1 centos DC2 ) I tried to sync sysvol as described in https://wiki.samba.org/index.php/Rsync_based_SysVol_replication_workaround between two DC but rsync shows some errors like this rsync: set_acl: sys_acl_set_file(apam-ad.apam.it/Policies/{D725AAC4-27E8-46AC-918D-55B560988386}/Machine/Applications/{031B2C75-D832-429B-B4C4-226BAA665E3A}.aas,

Hello Andrew, i use the rsync script from the wiki.... crontabl -l */5 * * * * rsync -XAavz --delete-after --password-file=/etc/samba/rsync-sysvol.secret rsync://sysvol-replication at dc01.samba.laurenz.ws/SysVol /var/lib/samba/sysvol/ -----Urspr?ngliche Nachricht----- Von: samba <samba-bounces at lists.samba.org> Im Auftrag von Andrew Bartlett via samba Gesendet: Montag, 4. Mai...

On Tue, 26 Mar 2019 07:37:54 -0400 Jonathon Reinhart via samba <samba at lists.samba.org> wrote: > I recently went through these steps from the wiki and took the > following notes which I had not yet shared / suggested for the wiki. > (This is from mobile, sorry for the terse message.) > > - You need to clear the idmap cache after copying idmap.ldb ("net > cache

Best guess.. Can you check this : ( from the wiki ) Good: rsync --dry-run -XAavz --delete-after --password-file=/usr/local/samba/etc/rsync-sysvol.secret rsync://sysvol-replication@{IP-of-you-PDC}/SysVol/ /path/to/your/sysvol/folder/ Wrong. rsync --dry-run -XAavz --delete-after --password-file=/usr/local/samba/etc/rsync-sysvol.secret rsync://sysvol-replication@{IP-of-you-PDC}...

Hello, I currently have users folders such as My Documents and Desktop redirected using a GPO. Could I use rsync with the same command used for sysvol replication to create a backup? For example "rsync -XAavz --delete-after" to another share? I would hope in the event of catastrophic loss I would have a backup copy for users. Is their a better way to do this? Thank you. -- -James

On Fri, 3 Nov 2017 10:18:14 +0100 "L.P.H. van Belle via samba" <samba at lists.samba.org> wrote: > Best guess.. > > Can you check this : > > ( from the wiki ) > Good: > rsync --dry-run -XAavz --delete-after > --password-file=/usr/local/samba/etc/rsync-sysvol.secret > rsync://sysvol-replication@{IP-of-you-PDC}/SysVol/ /path/to/your/sysvol/folder/ > > Wrong. > rsync --dry-run -XAavz --delete-after > --password-file=/usr/local/samba/etc/rsync-sysvol.secret > rsync:/...

...Wheezy. I joined the ReadyNAS to the DC and set permissions using file explorer. When I ssh to the ReadyNAS, I see the following on the folder destination. *drwxrwx---+ 1 administrator domain admins 20 Apr 1 10:55 pfms1* The rsync syntax and result from the member server is. *pfms1:~# rsync -XAavz /srv/samba/redirect/users/username/ admin at NAS1:/data/pfms1** **admin at nas1's password:** **sending incremental file list** **rsync: failed to set times on "/data/pfms1/.": Operation not permitted (1) *snip files transferred rsync error: some files/attrs were not transferred (s...

...ks/sysvol/test.com/Policies/" inotifywait -m -r -e moved_to -e modify -e delete -e create "$DIR" | while read f do     echo $f     if [[ $f = *.* ]]; then { export PATH=/usr/local/samba/bin:/usr/local/samba/sbin:$PATH samba-tool ntacl sysvolreset &> /dev/null sleep 5 rsync -XAavz --delete-after /usr/local/samba/var/locks/sysvol/ dc1:/usr/local/samba/var/locks/sysvol  }  fi done > >>>> Basically we are implementing "Software While Listing" policies and >>>> these are defined as computer policies. The error started to show >>>...

Hi, I would like to know which the best way to replicate Sysvol between my DC Samba 4 is with Rsync/Osync, as per the article below? https://wiki.samba.org/index.php/Bidirectional_Rsync/osync_based_SysVol_replication_workaround I have 3 Samba 4 DC. Regards, M?rcio Bacci

Hello fellow Samba users, I have a question that is related to sysvol replication. I have for now two Samba DC's that are functioning as DNS and Active Directory roles in my network. As samba for now does not support sysvol replication, I am replicating sysvol shares via rsync with -XAavz attributes as suggested in samba wiki. The issue is that getfacl on these two servers return different user ids and when I replicate these folders with rsync, the secondary DC is using wrong IDs, and at the end, I can't access sysvol folder on second dc (via share). On FSMO master "get...

ok, I've investigated the problem more closely. First of all, I didn't mention that I have 2 domain controllers: dc(initial) and bdc (backup). Rsync command /usr/bin/rsync -XAavz --delete-after dc:/usr/local/samba/var/locks/sysvol/* /usr/local/samba/var/locks/sysvol/ fires every 5 minutes on bdc. However, if I try to gpupdate from bdc I get the above error. Gpupdating from dc works fine. The strangest thing is that when I try reseting sysvol on bdc I get root at bdc:/lib...

...licate a samba-4.3 DC [192.168.8.65] to a newly joined samba-4.10 DC. I am using rsync as described in the samba wiki, excepting that I am using a remote shell (ssh) with the root user and password-less logins. When I run the command below from the 4.10 DC I get acl errors as shown below. rsync -XAavz --delete-after --rsh='ssh' [192.168.8.65]:/var/db/samba4/sysvol /var/db/samba4 receiving file list ... done rsync: set_acl: sys_acl_set_file(sysvol, ACL_TYPE_ACCESS): Invalid argument (22) . . . many more errors. On DC1 I see this: getfacl /var/db/samba4/sysvol/brockley-2016.harte-lyne.ca...

...extended) acls?? > > MJ > Exactly, rsync should map user and group names if the demon on the destination runs as root. But this does not work. I tested it with an group named test with gid 1000 on server #1 and gid 1001 on server #2. It works if rsync is used via ssh like this rsync -vv -XAavz -e ssh root at server2:/var/lib/samba/private/sysvol/ /var/lib/samba/private/sysvol/ Seems to be an issue with rsync causing trouble with sysvols. achim~

...bind nss info = rfc2307 [netlogon] path = /var/lib/samba/sysvol/ad.domain.tld/scripts read only = No [sysvol] path = /var/lib/samba/sysvol read only = No That's the same on all DC. We synchronize sysvol directory using rsync with the following command: rsync -XAavz --delete-after --password-file=/var/lib/samba/private/rsync_client.secret rsync://sysvol-replication at dc200/SysVol/ /var/lib/samba/sysvol/ And we get issue with Linux ACLs: they are not the same because some BUILTIN users and/or groups do not have same id mapping on all DC. How to force all DC...

...interfaces = 192.168.56.21 bind interfaces only = yes [netlogon] path = /var/lib/samba/sysvol/example.net/scripts read only = yes [sysvol] path = /var/lib/samba/sysvol read only = yes - ------------- This is the replication-command: - ------------- rsync -XAavz --delete-after --password-file=/etc/samba/rsync.pass rsync://sysvol-repl at sambabuch/sysvol/ /var/lib/samba/sysvol/ - ------------- I can reproduce this on any installation on any distribution. So is it a bug? Stefan -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iEYEARECAAY...

...also an problem with the rsync method described in the samba wiki, user and group mapping does not work at all. Even for normal groups in /etc/group with different gid's on different servers. Rsync always simply copies the gid's (uid's). An workaroud is to use rsync via ssh (rsync -XAavz -e ssh root at dc1:/var/lib/samba/sysvol/ /var/lib/samba/sysvol/). But for the sysvol share this will only map the builtin groups correct. For gpo's the access rights are stored in the active directory tree using the groups sid's. If you run "samba-tool ntacl sysvolreset" on the...

...xrwx---+ 4 domain admins domain admins????????? 4096 Apr 24 10:17 {B9C07E8F-54C3-4FA0-8C39-E357E068D393} check these strange rights.. Because of the " domain admins domain admins?"? rights, and why is user root here created as "domain admins" ? when i now run : /usr/bin/rsync -XAavz --log-file /var/log/sysvol-sync.log --delete-after -f"+ */" -f"- *"? /home/samba/sysvol root at dc2:/home/samba? &&? /usr/bin/unison ? im getting these errors:? ? rsync: set_acl: sys_acl_set_file(sysvol/internal.domain.tld/Policies/{B9C07E8F-54C3-4FA0-8C39-E357E068D393}...

...cmint.com/samba4-ad-dc-sysvol-replication/) that even > mentions what permissions should be used when replicating SysVol. , > and that suggests using 775 permission set during replication ie: Go on, I give in, what is wrong with the official Samba documentation ? > > rsync --dry-run -XAavz --chmod=775 --delete-after --progress > --stats /var/lib/samba/sysvol/ root at ad2:/var/lib/samba/sysvol/ > > Perhaps its just me but that seems an excessively promiscuous? And it doesn't really matter, the important permissions are dealt with by the '-XAavz' part, so to an...